Manager at PwC contributing to digital transformation in Utilities through technology consulting and stakeholder management. Focused on creating strategies and providing technology solutions in a data - driven world.
About the role
- Staff Product Security Engineer focused on implementing cybersecurity in medical device design and development at Johnson & Johnson. Contributing to new product development teams and ensuring patient safety.
Responsibilities
- Identify threats and vulnerabilities to patient safety and product integrity, assess current security controls and determine potential impact of a threat and the risk level associated with threat/vulnerability pairs.
- Drive architecture, requirements, and design to ensure that decisions incorporate security considerations.
- Advise embedded system security software to ensure system hardening and secure coding practices.
- Support all stakeholders on patch management, vulnerability handling, and SBOM scanning
- Document designs and specifications per design control processes and conform to Industry Standards for Medical Device Software (IEC 62304)
Requirements
- Bachelor’s degree in Computer Science, Computer Engineering, Cybersecurity or related degree
- 6+ years’ experience (or 4+ with M.S.) establishing security architecture or implementing security solutions in consumer products or medical devices
- 3+ experience in a software engineering or software architectural role in a New Product Development (NPD) environment
- Proven experience with threat modeling and risk assessments for connected products or medical devices
- Ability to work autonomously and proactively seek out security opportunities within the different surgical robotics teams
- Ability to think big picture and have attention to detail – aligning strategic objectives with tactical implementation.
- Proven experience with electrical and embedded software design
- Experience developing software for embedded Real-Time Operating Systems (RTOS)
- Experience developing embedded software systems using Modern C++ (preferably standards 17+)
- A results and performance driven demeanor with strong sense of accountability
- Understanding of penetration testing, vulnerability scanning, and/or other general security testing principles
- Experience with FDA, data governance, and privacy standards (HIPAA, ISO 27001, UL 2900)
- Work experience with Systems Engineering activities: requirements management and development, risk management, and verification
- Strong collaboration, proven technical leadership capabilities, and conflict resolution skills
- A security certification from an accredited body is preferred and may be considered in lieu of a portion of required years of experience
- Ability to travel up to 10% domestic US and Internationally
Benefits
- medical
- dental
- vision
- life insurance
- short- and long-term disability
- business accident insurance
- group legal insurance
- consolidated retirement plan (pension)
- savings plan (401(k))
- long-term incentive program
- Vacation – up to 120 hours per calendar year
- Sick time - up to 40 hours per calendar year
- Holiday pay, including Floating Holidays – up to 13 days per calendar year
- Work, Personal and Family Time - up to 40 hours per calendar year
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Research Associate conducting advanced research in iOS security within a leading institute for applied cybersecurity. Emphasis on secure application development and vulnerability analysis.
Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.