Job#: 3020987 Job Description: JOB SUMMARYWork independently to provide security support for product lifecycle activities, industry information sharing and coordinated disclosure activities with medical device and software products. Participate in a highly collaborative and diverse environment working closely with partners throughout the company and with the information security professional community of practice, particularly as it relates to medical devices and the healthcare ecosystem.
ESSENTIAL DUTIES- Consults on the implementation and configuration of cybersecurity capabilities for proprietary products, the application of cybersecurity requirements for those products, the implementation of mitigation of cybersecurity defects and risks, and project deliverables such as threat modes and project plans.
- Works with the Research & Development product teams on projects, executes product security capabilities such as threat intelligence, scanning (SAST, DAST, SCA, Network), and coordination of penetration testing with certified 3rd parties, maintains the product security test lab environment, and does research and education to keep current on cybersecurity topics.
- Facilitates risk management activity, such as risk management reports, and risk / vulnerability reporting.
- Engages oversight when a deviation from program requirements is identified.
- Performs product security incident response activities.
- Monitors industry threat intelligence feeds for cybersecurity issues in the healthcare industry
- Manages and monitors the Coordinated Vulnerability Disclosure process ensuring closed-loop feedback to security researchers and internal product development stakeholders.
- Collaborates with product teams for development of MDS2 forms to streamline the process for future customer inquiries.
- Accountable for customer risk & security assessments for all Terumo Blood and Cell Technologies products (devices and software solutions).
- Responsible for coordinating the customer notification process when global cybersecurity threats are identified.
- Work closely with the product security program leader to drive product security program initiatives forward.
- Provide escalation support for the commercial team (sales, technical support) for cybersecurity inquiries.
OTHER DUTIES AND RESPONSIBILITIES- May be required to travel to other company locations on occasion.
MINIMUM QUALIFICATION REQUIREMENTSEducationBachelor's degree or, equivalent of education and experience sufficient to successfully perform the essential functions of the job may be considered.
ExperienceMinimum 5 years' experience
- Experience with FDA cybersecurity guidance for medical devices
- Experience with developing standard operating procedures (SOPs)
- Experience with medical device product cybersecurity regulatory submission requirements (globally)
Skills- Demonstrated ability to communicate effectively both verbally and in writing
Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click for more details.
Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.
Never miss an opportunity! Create an alert based on the job you applied for.