Plus
Включить Plus
Назад
Company hidden
2 дня назад

Staff Product Security Engineer (Medtech)

151 000 - 196 000$
Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Staff Product Security Engineer (Medtech): Safeguard medical devices by identifying, assessing, and mitigating security risks unique to healthcare technology with an accent on embedding security across PDLC and SDLC in alignment with FDA cybersecurity requirements. Focus on leading threat modeling, risk management, secure architecture design, and vulnerability operations.

Location: Fully Remote - US

Salary: $151,000 - $196,000

Company

Leading digital healthcare company creating wearable biosensors, cloud-based analytics, and algorithms for cardiac health monitoring.

What you will do

  • Provide senior-level cybersecurity leadership, influencing secure design decisions and driving Secure Product Development Framework adoption.
  • Lead threat modeling, Cybersecurity Risk Assessments, and security design reviews for embedded systems, applications, cloud, and IoMT platforms.
  • Oversee vulnerability management, scanning, remediation, and incident response using tools like Veracode and Snyk.
  • Manage SBOM, third-party risks, and software supply chain security.
  • Ensure compliance with FDA, HIPAA, GDPR through documentation and cross-functional partnerships with Product, R&D, Quality, and Regulatory teams.

Requirements

  • Bachelor’s degree in Computer Science, Information Security, or related field.
  • 12+ years in product security or cybersecurity roles.
  • Deep expertise in securing software-driven, safety-critical systems, threat modeling, vulnerability management, and SDLC practices.
  • Experience in regulated environments (FDA, HIPAA, GDPR) and frameworks like NIST, ISO 14971, IEC 62304.
  • Location: Fully Remote - US.
  • Proven ability to influence cross-functional teams; experience with medical devices or IoMT.

Nice to have

  • Certifications: CISSP, CISM, CRISC.
  • CI/CD security tooling (SAST, DAST, SCA), shift-left practices.
  • Global standards (EU MDR, ISO/IEC 81001-5-1), SBOM programs, PSIRT, penetration testing.

Culture & Benefits

  • Collaborative environment focused on innovation, patient-first impact, and career growth.
  • Inclusive workforce celebrating diverse backgrounds; Equal Opportunity Employer.
  • Reasonable accommodations for disabilities; competitive compensation based on experience.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →