Senior Cloud Risk Security Specialist

3 days ago

Apply Now

Receive Emails with Similar Jobs

ResMed

WebsiteLinkedInAll Job Openings

Healthcare Insurance • SaaS

ResMed is a global leader in sleep technology and respiratory care, focused on improving out-of-hospital care to enhance the health and quality of life for individuals with chronic diseases. With over 30 years of innovation, ResMed develops life-changing technology and provides software platforms that support medical professionals and caregivers in helping patients manage their health from home or in preferred care settings. The company is committed to diversity and inclusion, supporting a wide range of professionals in building meaningful careers, and shaping the future of connected health care with the goal of impacting 250 million lives worldwide.

5001 - 10000 employees

Founded 1989

⚕️ Healthcare Insurance

☁️ SaaS

💰 Post-IPO Debt on 2019-07

📋 Description

• Lead security engagement across global projects, ensuring alignment of security practices with business and technical goals. • Conduct end-to-end security risk assessments for cloud-native and hybrid deployments, including architecture and control reviews for new implementations and managed services. • Evaluate third-party (SaaS, PaaS, IaaS) products during onboarding and integration to ensure security and compliance requirements are met. • Lead security reviews of AI/ML-based products, focusing on secure product design, guardrail enforcement, and risk mitigation. • Collaborate with project managers, product owners, architects, and developers to embed security throughout the SDLC. • Communicate security risks and mitigation strategies in business-relevant language. • Produce and maintain high-quality documentation, including risk assessments, security summaries, and remediation recommendations. • Track risks and controls using GRC tools, ensuring traceability and accountability. • Stay current with emerging technologies, threats, and best practices in information security. • Contribute to the continuous improvement of internal security frameworks and processes.

🎯 Requirements

• 7+ years in Information Security, with at least 3 years in risk assessment or security advisory roles. • Proven ability to independently lead security reviews across diverse technologies. • Strong understanding of key security domains, including: Secure access, Data encryption, Application and Network security, Data loss prevention, Endpoint protection, CSPM, CASB, PAM, ZTNA, Logging, Monitoring, Vulnerability management, and Incident response. • Experience in evaluating AI/ML systems from a security and ethical risk perspective. • Familiarity with third-party/vendor risk management practices. • Working knowledge of frameworks such as ISO27001, NIST CSF, CIS Controls, and Benchmarks. • Exceptional verbal and written communication skills with a proven ability to produce concise and actionable reports.

🏖️ Benefits

• Competitive salary • Flexible working hours • Professional development opportunities