Principal Product Security Engineer Apply
Title: Principal Product Security Engineer
Location: Greater Salem, MA (It could be 100% Remote For Super Star Candidate)
Duration: FTE
Type: Hybrid (3 Days Office)
Location: Greater Salem, MA (It could be 100% Remote For Super Star Candidate)
Duration: FTE
Type: Hybrid (3 Days Office)
The Challenge:
Our client is seeking a passionate Principal Product Security Engineer to join newly formed Product Security team. In this exciting role, you'll play a key role in ensuring the security of our medical devices by design, from pre-market development to post-market support.
Our client is seeking a passionate Principal Product Security Engineer to join newly formed Product Security team. In this exciting role, you'll play a key role in ensuring the security of our medical devices by design, from pre-market development to post-market support.
Roles & Responsibilities
Collaborate with engineering teams to implement and maintain robust product security practices.
Develop and improve processes for secure product development throughout the entire lifecycle.
Provide expert guidance on cybersecurity matters to development teams.
Champion the integration of security considerations into all phases of product development, from product roadmaps to corrective actions.
Create critical security documentation, including threat models, security requirements, and risk management plans.
Manage post-market vulnerability discovery and remediation, adhering to strict timelines.
Support compliance efforts for industry standards like SOC2, FedRAMP, and ISO 27001.
Stay up-to-date on the latest compliance requirements and best practices, integrating them into our programs.
Foster strong relationships with security information-sharing organizations.
Guide teams in balancing business needs with the paramount importance of medical device security.
Work effectively across departments and demonstrate empathy towards both internal and external customers.
Collaborate with engineering teams to implement and maintain robust product security practices.
Develop and improve processes for secure product development throughout the entire lifecycle.
Provide expert guidance on cybersecurity matters to development teams.
Champion the integration of security considerations into all phases of product development, from product roadmaps to corrective actions.
Create critical security documentation, including threat models, security requirements, and risk management plans.
Manage post-market vulnerability discovery and remediation, adhering to strict timelines.
Support compliance efforts for industry standards like SOC2, FedRAMP, and ISO 27001.
Stay up-to-date on the latest compliance requirements and best practices, integrating them into our programs.
Foster strong relationships with security information-sharing organizations.
Guide teams in balancing business needs with the paramount importance of medical device security.
Work effectively across departments and demonstrate empathy towards both internal and external customers.
Essential Skills & Requirements
Bachelor's degree required (any field).
5+ years of experience in information security.
Solid understanding of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR).
Experience with security risk management methodologies.
Excellent organizational skills, meticulous attention to detail, and the ability to manage multiple tasks simultaneously.
Strong commitment to working efficiently and embracing new challenges.
Effective communication and interpersonal skills.
Bachelor's degree required (any field).
5+ years of experience in information security.
Solid understanding of regulatory standards and compliance frameworks (e.g., NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR).
Experience with security risk management methodologies.
Excellent organizational skills, meticulous attention to detail, and the ability to manage multiple tasks simultaneously.
Strong commitment to working efficiently and embracing new challenges.
Effective communication and interpersonal skills.
Bonus points:
Experience working in a regulated environment, particularly FDA-regulated industries.
Experience working in a regulated environment, particularly FDA-regulated industries.
