Job Title: Cybersecurity Lead
Location: Milwaukee, WI (Onsite)
Duration: Long Term
Job Summary
We are seeking a highly skilled and experienced Cybersecurity Lead to join our team in Milwaukee, WI. The ideal candidate will have a deep understanding of MedTech security processes and procedures and will serve as a subject matter expert on cybersecurity activities. This role involves close collaboration with engineering teams, internal cross-functional teams, and external partners to ensure the security of our MedTech products throughout their development lifecycle.
Key Responsibilities
- Subject Matter Expertise: Develop a comprehensive understanding of MedTech security processes and procedures to serve as a subject matter expert on cybersecurity activities.
- Collaboration: Partner with engineering teams to drive adherence to the MedTech product security program during product development, testing, and release phases.
- Project Management: Work with external partners and internal cross-functional teams to manage and drive cybersecurity project deliverables.
- Risk Identification: Collaborate with product development teams to identify potential cybersecurity risks during the pre-market phase.
- Documentation: Deliver detailed documentation for pre-market development activities, including security plans, architecture and data flow diagrams, threat models, requirements, SBOM, and risk documentation.
- Vulnerability Management: Monitor and drive post-market vulnerability management activities with strict adherence to timelines.
- Security Measures: Recommend and execute security measures to mitigate identified risks and enhance product security.
- Guidance and Decision Making: Guide teams to make decisions that balance business needs with security objectives, thinking across organizational boundaries and empathizing with both internal and external customers.
- Additional Responsibilities: Perform other related duties and responsibilities as assigned.
Education And Experience
- Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent practical experience).
- Minimum of 6 years of experience in cybersecurity, with a focus on pre-market product security.
- In-depth knowledge of pre-market product security and industry best practices.
- Experience with security risk management techniques and tactics.
- Expertise in assessing pre-market cybersecurity risks, vulnerability testing, and implementing security measures.
- Strong understanding of secure software development lifecycles (SDLC) and related processes.
- Working knowledge of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR). Experience in FDA-regulated environments is preferred.
Preferred Qualifications
- Advanced Education: Master's degree in Cybersecurity, Computer Science, or a related field.
- Certifications: Relevant cybersecurity certifications such as CISSP, CISM, CEH, or equivalent.
- Regulated Environment Experience: Prior experience working in FDA-regulated environments.