Crothall Healthcareposted 5 months ago
$70,000 - $85,000/Yr
Full-time - Mid Level
Remote - Mooresville, NC
10,001+ employees
Administrative and Support Services
About the position
The Medical Device Cybersecurity Specialist at Crothall Healthcare is responsible for supporting the organization's cybersecurity initiatives, particularly in relation to medical devices. This role involves monitoring cybersecurity alerts, conducting audits and risk assessments, and collaborating with clients and internal stakeholders to ensure compliance with regulatory standards. The specialist will also engage in threat intelligence gathering and contribute to the development of best practices for managing connected medical devices.
Responsibilities
- Support Crothall's overall cybersecurity initiatives and day-to-day managed services activities.
- Respond to cybersecurity alerts and ensure Client KPIs are met.
- Perform audits and risk assessments of medical devices.
- Provide subject matter expertise for medical device cybersecurity.
- Monitor and respond to findings from Crothall's medical device asset and cybersecurity management platform.
- Engage with Client's IT department regarding network security tools.
- Conduct GAP analysis on discovered medical devices with Crothall's CMMS.
- Triage and respond to work orders generated from Crothall's CMMS cybersecurity module.
- Research and engage OEMs for approved patches and firmware upgrades.
- Maintain a database of approved patches and firmware upgrades.
- Collaborate with Clients to coordinate mitigating steps for medical devices.
- Identify organizational needs or gaps and develop appropriate cybersecurity strategies.
- Maintain operational security metrics to measure effectiveness of security controls.
- Contribute to Crothall's cybersecurity training and threat intelligence gathering.
- Assist in the development and implementation of best practices for connected medical devices.
- Ensure compliance with regulatory standards governing medical devices.
Requirements
- Bachelor's degree in Information Technology or Biomedical Engineering required.
- CompTIA Security+ certification required.
- 2+ years of proven experience in healthcare cybersecurity.
- Knowledge of the operation and maintenance of a variety of medical equipment and systems.
- Experience with process improvement.
- General knowledge of Biomedical and Diagnostic Imaging.
- Knowledge of Computerized Maintenance Management Systems (CMMS).
- Knowledge of connected medical device asset discovery and risk analysis platforms.
Nice-to-haves
- BMET and CISSP certifications preferred.
- 5 years of healthcare experience preferred.
Benefits
- Commuter assistance
- Dental insurance
- Disability insurance
- Employee assistance program
- Employee discount
- Flexible spending account
- Health insurance
