Senior Product Security Engineer

🕒 April 15

🧀 Wisconsin – Remote

🧀 Wisconsin – Remote

💵 $120k - $140k / year

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

HistoSonics, Inc.

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2009

🧬 Biotechnology

💊 Pharmaceuticals

Healthcare • Biotechnology • Pharmaceuticals

HistoSonics, Inc. is a pioneering medical technology company that has developed a non-invasive sonic beam therapy platform using a treatment called histotripsy. This innovative approach harnesses focused ultrasound to mechanically destroy targeted liver tumors at a sub-cellular level. HistoSonics is dedicated to advancing the science of histotripsy, aiming to provide transformative benefits for patients and physicians worldwide, particularly through its ongoing clinical trials and educational programs.

📋 Description

• Execute and document risk assessments of the cybersecurity stature of various subsystems and components within the Edison system • Guide product engineering teams to drive inherent risk remediation via documenting and implementing requirements and adoption of best practices to reduce residual risk and improve the cybersecurity stature of the Edison system • Support FDA premarket submissions by preparing cybersecurity documentation including risk management reports, threat model, MDS2 and cybersecurity whitepaper • Support cyber lifecycle management activities including vulnerability monitoring, assessment, and documentation needs • Maintain a positive, results-oriented work environment, building partnerships and modeling teamwork, communicating to team members in an open, balanced, and objective manner • Create/ maintain a clean, safe, and effective work environment.

🎯 Requirements

• 8 years of combined professional experience in Information Security, Risk Management, and or/IT-centric cybersecurity roles is required • Bachelor’s degree in an engineering, science, or technical discipline preferred • Expertise with cybersecurity vulnerability analysis methodologies including CVSS is required • Expertise with cybersecurity methodologies for identifying design weaknesses is required (threat modeling/STRIDE, CWE) • Familiarity with cybersecurity, information security, and medical device standards regulations is required (HIPAA, FDA, ISO 27001) • Familiarity with methodologies for assessing cybersecurity residual risk is required (CVE analysis, review of technical design documentation, compensating controls analysis, CVSS MD rubric) • Relevant security certifications are preferred. • In-depth, systemic technical knowledge of complex, dynamic, and varying medical device systems. • Excellent written and verbal communication skills, with the ability to participate in engineering discussions. • Strong analytical, critical thinking, and problem-solving skills with an attention to detail.

🏖️ Benefits

• health, dental, and vision insurance • life • short-term and long-term disability insurance • 401(k) • paid time off • comprehensive benefits package for full-time employees