iRhythm Technologies, Inc.
1001 - 5000 employés
Fondée en 2006
⚕️ Assurance santé
🧬 Biotechnologie
Healthcare Insurance • Biotechnology • Medical Technology
iRhythm Technologies, Inc. est une entreprise de technologies médicales spécialisée dans les solutions de surveillance cardiaque. Leur produit phare, le moniteur ECG Zio, est conçu pour le confort et la compliance du patient, permettant aux prestataires de soins de santé de fournir des diagnostics d'arythmie précis grâce à une analyse de données avancée et à l'IA. Le service complet d'iRhythm transforme l'expérience de surveillance cardiaque, facilitant de meilleurs résultats pour les patients et des flux de travail efficaces pour les professionnels de santé à travers le monde.
Senior Product Security Engineer
Emploi pas sur LinkedIn
🕒 il y a 1 mois
🇺🇸 États-Unis – Télétravail
💵 $127 000 - $165 000 / an
⏰ Temps Plein
🟠 Senior
👮♂️ Cybersécurité / Ingénieur Sécurité
🗣️🇺🇸🇬🇧 Anglais requis
📊 Vérifiez votre score de CV pour ce poste
Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.
iRhythm Technologies, Inc.
1001 - 5000 employés
Fondée en 2006
⚕️ Assurance santé
🧬 Biotechnologie
Healthcare Insurance • Biotechnology • Medical Technology
iRhythm Technologies, Inc. est une entreprise de technologies médicales spécialisée dans les solutions de surveillance cardiaque. Leur produit phare, le moniteur ECG Zio, est conçu pour le confort et la compliance du patient, permettant aux prestataires de soins de santé de fournir des diagnostics d'arythmie précis grâce à une analyse de données avancée et à l'IA. Le service complet d'iRhythm transforme l'expérience de surveillance cardiaque, facilitant de meilleurs résultats pour les patients et des flux de travail efficaces pour les professionnels de santé à travers le monde.
Description
• Ensure compliance with FDA cybersecurity guidance and regulations in collaboration with Cybersecurity, Regulatory, Quality, and Systems Development teams. • Conduct comprehensive security risk assessments, including Cybersecurity Risk Assessments (CSRAs), to identify vulnerabilities and threats across device hardware, firmware, software, and cloud components. • Develop and maintain device-specific cyber threat models, factoring in patient safety, data privacy, and operational continuity. • Demonstrate familiarity with Software Bill of Materials (SBOM) and effectively communicate technical details. • Create and maintain cybersecurity documentation for pre- and post-market activities, ensuring regulatory alignment. • Produce detailed data flow diagrams to support the threat modeling process. • Participate in design reviews of medical device architectures and implementations, providing actionable recommendations for system security requirements. • Perform and support vulnerability analysis and coordinate the vulnerability management program, including scanning, patching, and remediation for medical devices. • Leverage and maintain application and threat detection tools (Veracode, Snyk, GitLab, or equivalent) to identify security flaws early in the SDLC. • Support investigation and remediation of device-related security incidents, minimizing impact and preventing recurrence. • Partner with the Privacy Team to ensure adherence to HIPAA, GDPR, and other data protection regulations.
🎯 Exigences
• Bachelor’s degree in Computer Science, Information Security, or related field. • 6+ years of experience in information security, with direct focus on product security for medical devices. • Strong understanding of security principles, methodologies, and tools within the PDLC and SDLC. • Demonstrated experience conducting Cybersecurity Risk Assessments (CSRAs), vulnerability analysis, and working with modern threat detection tools (Veracode, Snyk, GitLab, or similar). • Familiarity with NIST Cybersecurity Framework, NIST SP 800-171, and deeper controls/frameworks such as NIST SP 800-53 (Security and Privacy Controls), NIST SP 800-92 (Log Management), and NIST SP 800-63 (Digital Identity Guidelines). • Hands-on experience with vulnerability identification and threat modeling within healthcare using methodologies such as STRIDE. • Experience operating in a regulated environment (FDA, HIPAA, GDPR, international regulatory frameworks). • Experience with medical device hardware or Software as a Medical Device (SaMD). • Experience with medical device software development and regulatory processes. • Excellent problem-solving, analytical, and communication skills, able to take a multi-siloed approach. • Ability to understand intro dependencies of teams across; mobile applications, hardware and cloud environments. • Demonstrated experience supporting 510(k) submissions, with a focus on product security documentation, risk assessments, and regulatory compliance.
🏖️ Avantages
• Health insurance • 401(k) matching • Flexible work hours • Professional development opportunities
Postuler MaintenantEmplois Similaires
🕒 il y a 1 mois
Federated Security Engineer focused on secure application access management and integration at Emory University. Collaborating with Cybersecurity and IAM teams for efficient onboarding and compliance.
🇺🇸 États-Unis – Télétravail
⏰ Temps Plein
🟡 Intermédiaire
🟠 Senior
👮♂️ Cybersécurité / Ingénieur Sécurité
🦅 Parrain de Visa H1B
🗣️🇺🇸🇬🇧 Anglais requis
🕒 il y a 1 mois
AGFA HealthCare
1001 - 5000
Information Security Leader defining and executing the cybersecurity vision across all business units at AGFA HealthCare. Providing enterprise-wide security leadership focused on cloud-native and SaaS platforms.
🗣️🇺🇸🇬🇧 Anglais requis
🕒 il y a 1 mois
Senior Advisor overseeing cybersecurity operations and improving security practices at Boomi. Managing security tools, incident responses, and compliance efforts in a cloud environment.
🇺🇸 États-Unis – Télétravail
💵 $130 000 - $162 000 / an
⏰ Temps Plein
🟠 Senior
👮♂️ Cybersécurité / Ingénieur Sécurité
🦅 Parrain de Visa H1B
🗣️🇺🇸🇬🇧 Anglais requis
🕒 il y a 1 mois
Federated Security Engineer managing secure application access for Emory University. Collaborating with technical teams on IAM processes and cybersecurity compliance.
🇺🇸 États-Unis – Télétravail
⏰ Temps Plein
🟡 Intermédiaire
🟠 Senior
👮♂️ Cybersécurité / Ingénieur Sécurité
🦅 Parrain de Visa H1B
🗣️🇺🇸🇬🇧 Anglais requis
🕒 il y a 1 mois
Software Security Engineer developing secure platforms and services for corporate security at Wiz. Collaborating cross-functionally to manage enterprise security practices effectively.
🇺🇸 États-Unis – Télétravail
💵 $204 000 - $281 000 / an
⏰ Temps Plein
🟡 Intermédiaire
🟠 Senior
👮♂️ Cybersécurité / Ingénieur Sécurité
🦅 Parrain de Visa H1B
🗣️🇺🇸🇬🇧 Anglais requis
