Director of Product Security

Instrumentation Laboratory Bedford, MA

Company

Instrumentation Laboratory

Location

Bedford, MA

Type

Full Time

Job Description

Overview

Job Summary 
This position will lead the Product Cyber Security Organization.  Director of Product Security will set overall strategy for the product cyber security program, align security initiatives within business goals, and ensure integration of key product security initiatives into other business support functions across IL.  Together with other team members, Director of Product Security will be responsible for the cyber security matters of all IL on-market and pre-market products, processes (governance and compliance) and managing consistent communication to Werfen locations and the field.
 
This position will be within the Cybersecurity Organization reporting to the CISO.  The Director of Product Security will have frequent interaction with the Senior Management Team as well as a cross functional team including, but not limited to, product development teams, marketing teams, and regulatory and quality assurance teams to define, align and drive security initiatives. 

Want more jobs like this?

Get jobs in Bedford, MA delivered to your inbox every week.

By signing up, you agree to our Terms of Service & Privacy Policy.

Responsibilities

Key Accountabilities 
  • Responsible for leading cross functional team members to complete all aspects of product cyber security and privacy initiatives.
  • Responsible for secure software development for all Werfen on-market and pre-market products.
  • Represent cyber security within product development teams to ensure cyber security is being designed into products.
  • Responsible for cyber security threat management.  Complete continuous technical analysis and monitoring for cyber security signals.
  • Responsible for customer assurance.  Manage key interface contacts with customers.  May include completion of security inquiries, intake of vulnerability reports, provide consistent guidance to staff and customers.
  • Responsible for governance, risk and compliance of Werfen processes.  Establish product security policy and governance, documentation of process for all domains.  Conform compliance to existing industry policies and guidelines.
Essential Functions: 
  • Responsible for leading cross functional team members to complete all aspects of product cyber security and privacy initiatives.
  • Responsible for secure software development for all Werfen on-market and pre-market products.
  • Represent cyber security within product development teams to ensure cyber security is being designed into products.
  • Responsible for cyber security threat management. Complete continuous technical analysis and monitoring for cyber security signals.
  • Responsible for customer assurance. Manage key interface contacts with customers. May include completion of security inquiries, intake of vulnerability reports, provide consistent guidance to staff and customers.
  • Responsible for governance, risk and compliance of Werfen processes. Establish product security policy and governance, documentation of process for all domains. Conform compliance to existing industry policies and guidelines.
Networking/Key relationships
To be determined based on department needs, to include interactions such as:
  • Supervises and coordinates technical aspects with the different team technical leads.
  • Other internal interfaces TBD based on departmental needs.

Qualifications

Minimum Knowledge & Experience for the position: 
  • Education: Requires Bachelor’s degree in Computer Science, Computer Engineering or the equivalent combination of related training, proficiency and experience.  MBA or Master’s degree preferred.
  • Experience:
    • Minimum of 8 years of experience leading product cyber security teams and projects and risk management activities - in medical device or healthcare domain.
    • Cyber security training and certification such as CISSP/CISM.
    • Experience in cross-functional cyber security activities including intrusion detection, security tools and technology, regulation compliance, audit/control processes and customer assurance.
    • Experience in incident handling and response.
    • Experience in writing policy and managing compliance.
    • Experience in designing software development products using SDLC (e.g.:  Agile, DevOps) 
Skills & Capabilities: 
  • Familiar with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.:  FDA cyber security guidelines, 95/46/ED, HIPPA, GDPR, ISO/TS 14265, 21CFR820, SB1386, etc.)
  • Understanding of Windows and Linux operating systems and networking preferred.
  • Domain specific standards and approaches on privacy and product security (e.g.:  HL7, ASTM, POCT-1A) preferred.
  • Language: English
  • Leadership, Managing Vision and Purpose, Developing Direct Reports and others (e.g.:  holds people accountable, teamwork, delegation, communication, impact and influencing, etc.), Time Management, Project Management, Oral and Written Communications.
 
Travel requirements: 
Minimal domestic and international travel required - <20% of time 
 
 

Apply Now

Date Posted

01/21/2025

Views

0

Back to Job Listings ❤️Add To Job List Company Info View Company Reviews
Positive
Subjectivity Score: 0.8

Similar Jobs

Senior Network Engineer - InterSystems

Views in the last 30 days - 0

InterSystems is seeking a Senior Network Engineer to support the deployment and maintenance of network infrastructure for their HealthShare and IRIS p...

View Details

Platform Owner - Network Reliability - Takeda

Views in the last 30 days - 0

Takeda is seeking a Platform Owner for Network Reliability Engineering to join their Global Network Platform team The role involves developing framewo...

View Details

IT Solution - Product Engineer - Takeda

Views in the last 30 days - 0

Takeda Development Center Americas Inc is seeking an IT Solution Product Engineer with a Bachelors degree in Engineering or a related field and 3 year...

View Details

Senior Software Engineer (Full Stack, Platform) - WHOOP

Views in the last 30 days - 0

WHOOP is seeking a Senior Software Engineer to join their Platform team in Boston MA The role involves driving largescale architecture projects collab...

View Details

SOC Analyst - InterSystems

Views in the last 30 days - 0

InterSystems is seeking a security operations analyst to join their expanding SOC and security team The role involves enhancing analytic capabilities ...

View Details

Senior Technology Governance Analyst - Geode Capital Management

Views in the last 30 days - 0

Geode is hiring for a Senior Technology Governance Analyst position in Boston Massachusetts The role involves developing and implementing IT governanc...

View Details