Contract Program Security Officer for 2 Circle Consulting Inc. Develops and administers security programs while ensuring compliance with US Government regulations in a Hybrid work setting.
About the role
- Product Security Manager overseeing cybersecurity architecture and engineering at Smith+Nephew. Ensuring robust cyber security controls throughout product development and collaborating with R&D and Compliance Teams.
Responsibilities
- Encourage the development and advancement of personnel on their team
- Help develop and mature Global Product Security Strategy and Secure-Software Development Life Cycle (S-SDLC)
- Oversee the definition and support the implementation of cybersecurity requirements and controls
- Lead the creation and maintenance of Product Cybersecurity Risk Registers and Threat Models
- Lead the execution and integration of cybersecurity testing and assessment activities
- Support best practice product cyber security incident response (IR) activities
- Provide technical leadership and competency in communications with stakeholders outside of Smith + Nephew
Requirements
- Bachelor's degree in life science, computer science, information systems and/or equivalent formal training or work experience
- 5+ years in hands-on cybersecurity experience
- 2+ years people management experience
- Strong ability to influence and think strategically
- Clear understanding of mitigating security controls, vulnerability management, penetration testing, and code security
- FDA and other medical device regulators
- Knowledge of cyber security standard frameworks such as HIPAA, FDA, ISO 27001/2, NIST CSF, and OWASP
- Understanding of network infrastructure, including firewalls, web proxy and/or email architecture- particularly as they apply in a mitigating control functionality
- Experience with different cloud computing platforms and the cloud security framework
- Ability to design, recommend, plan, guide, and support implementation of innovative security solutions
- Current CISM, CISSP, CRISC, or equivalent certification preferred.
Benefits
- medical, dental, and vision coverage
- 401k
- tuition reimbursement
- medical leave programs
- variety of wellness offerings
- 401k Matching Program
- 401k Plus Program
- Discounted Stock Options
- Flexible Personal/Vacation Time Off
- Paid Holidays
- Flex Holidays
- Paid Community Service Day
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Contract Program Security Officer at 2 Circle Consulting Inc. overseeing government security compliance and managing personnel clearances. Administering security programs and policies in a hybrid role.
Cybersecurity Third - Party Risk Management Consultant leading risk assessments and compliance tracking for NIH/HHS systems. Managing third - party risk with a focus on federal cybersecurity mandates.
Entry - Level Network Security Engineer assisting IT security team with firewall implementation and monitoring. Focused on maintaining network integrity in a hybrid work environment.
Cybersecurity Designer executing and proposing process improvements at Bancolombia. Collaborating on cybersecurity functions to enhance client protection and information security.
Microsoft Security Specialist role at Syntax focused on delivering Microsoft security workshops and advisory engagements. Collaborating on technology implementation while ensuring customer security success.
Cybersecurity Specialist developing IT resilience and disaster recovery concepts for a global scale in secure IT services. Collaborating across borders in shaping organizational security standards.
Senior Cybersecurity Scrum Master focusing on release management at AT&T, collaborating across teams and managing production change requests with an Agile mindset.
BISO responsible for planning and executing enterprise - wide information security initiatives at Elsevier. Driving cybersecurity awareness and managing technical risk assessments for organizational improvements.
Develop innovative Cloud architectures on Microsoft Azure platforms. Secure cloud infrastructure and applications against various threats while working in a project team.