Lead Security Architect at Synchrony focusing on Zero Trust networking across various environments. Partnering with teams to design and implement secure connectivity and policies.
About the role
- Product Security Expert in a hybrid role focusing on cybersecurity implementation for medical devices at Fresenius Medical Care in Germany. Collaborating with cross-functional teams to enhance product security.
Responsibilities
- Execution of the Product Security Program
- Maintain and continuously update the Cybersecurity Risk Register for all products in the portfolio
- Execute the Post-Market Surveillance process for cybersecurity, including analysis of security-related complaints, incidents, and vulnerabilities
- Operate the Coordinated Vulnerability Disclosure and Incident Response process, including triage, coordination, tracking, and documentation.
- Act as the primary coordinator for product-related cybersecurity activities, working closely with R&D and system engineering teams to ensure secure product development
- Contribute to the development and rollout of cybersecurity-related policies, SOPs, and guidelines, ensuring alignment with the overall QMS and evolving regulatory requirements
- Define and maintain Cybersecurity Management Plans and Security Verification Plans for CE products throughout the development lifecycle
- Support Security Risk Management activities, including threat and risk analysis, countermeasure definition, and evaluation of residual cybersecurity risks
- Support the preparation of risk/benefit assessments for cybersecurity risks to enable informed decision-making and documentation
- Collaborate in product roadmap planning, contributing cybersecurity input and supporting alignment with the state of the art in security technologies and practices
Requirements
- Successfully completed bachelor’s or master’s degree in computer science, information technology or similar field
- At least 5 years of professional experience in IT Security, cybersecurity (e.g. embedded systems, risk management, regulatory requirements)
- In-depth knowledge of enabling technologies and technical solutions in the field of cybersecurity
- Experience in R&D in medical devices or other industries with international exposure
- Solid knowledge of the whole development cycle for products from regulated industries
- Knowledge of relevant cybersecurity regulations and guidelines such as (FDA pre-market and post-market guidance, Section 2.4b CFR, IEC 81001-5-1, IEC 62443-4-1, JSP 2.0)
- Relevant cybersecurity certifications are an advantage
- Knowledge of cybersecurity relevant tools (e.g. Microsoft Threat Modelling Tool, BlackDuck Binary Analysis Tool, Kali Linux)
- Good and professional relationship to and communication with international colleagues and superiors
- Fluent English, in written and spoken, German language is a plus.
Benefits
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Enterprise Account Specialist engaging with key clients to design customized solutions within sales. Conducting market research and driving contract renewals for mid - to - large accounts.
Senior Product Go - to - Market & Partner Strategy role at Fortinet involving business development and product management in the cybersecurity sector.
Cybersecurity professional executing the cybersecurity program at Nightwing Intelligence Solutions. Responsible for RMF documentation, vulnerability assessments, and incident response in Sterling, VA.
Senior Network Security Engineer driving Zero Trust security fabric design and optimization at CRC Group. Hands - on role managing Zscaler and Palo Alto implementations across multi - cloud environments.
Lead Cybersecurity Engineer driving security testing automation at AT&T. Collaborating with teams to enhance security across telecom networks and systems.
Lead Business Analyst in the IAM Intake & Enablement team within Global Security. Driving IAM initiatives and enhancing access management at RBC.
Cybersecurity Intern supporting the Information Security team at Toyota Insurance. Assisting in developing security programs and conducting risk assessments for enterprise systems.
Cyber Security Intern contributing to security initiatives and real projects at Luminor Group in Estonia. Opportunity to learn and grow within a dynamic banking environment supporting Pan - Baltic operations.
Cyber Security Intern contributing to real projects in a dynamic banking environment with Luminor. Collaborating with interns and building practical skills through meaningful work.