Senior Director, Product Security (Remote/Flexible)

Insulet Corporation-posted 8 months ago
$219,000 - $328,500/Yr
Full-time • Senior
Remote • Acton, MA
Miscellaneous Manufacturing
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Sr Director of Product Security will be responsible for developing and executing a comprehensive product security strategy that aligns with our business objectives and regulatory requirements. This role requires a dynamic leader with a deep understanding of cybersecurity in the medical device industry, experience managing large teams, and the ability to collaborate effectively with senior security leaders and cross-functional teams.

  • Implement and refine the product security strategy and maturity effort, while tightly partnering and communicating with product delivery teams to ensure secure product launches and continuous risk reduction.
  • Foster a tightknit team by motivating, mentoring, and aligning their day-to-day activities with security and business objectives.
  • Promote education and awareness across the organization.
  • Communicate across potential board-level meetings to technical engineering discussions to ensure visibility and alignment of security risks, impacts, and mitigating actions.
  • Provide managed and repeatable application and Cloud security engineering services in support of the company's products and services, including threat modeling, risk management, and vulnerability testing.
  • Collaborate with various technical teams to architect secure cloud environments and mobile application products.
  • Support the development and testing of standard cybersecurity design requirements for medical device products.
  • Collaborate with Cybersecurity and Quality Teams to ensure cybersecurity processes are fully integrated with the company's Quality Management System (QMS).
  • Support the publication of documentation related to the management of cybersecurity in medical device FDA submissions.
  • Ensure continuous threat and vulnerability assessments against all products in the field, manage the company's Coordinated Disclosure Program, and participate in Information Sharing and Analysis Organizations (ISAOs).
  • Support and provide input into best practices related to medical device cybersecurity incident management processes.
  • Develop and monitor risk registers for all medical device products.
  • Develop, implement, train, and maintain the Secure Software Development Lifecycle (S-SDLC) program.
  • Lead Penetration testing and continuous application vulnerability assessment efforts.
  • Partner with cybersecurity teams to support the identification, development, and maintenance of Identity and Access Management solutions.
  • Collaborate with cybersecurity teams to evaluate and document the cybersecurity posture of applications.
  • Provide innovative and creative solutions to mitigate business or technical cybersecurity issues.
  • Ensure compliance with all regulatory, audit, security, and risk management requirements.
  • Partner to integrate IT systems development and vulnerability management with security policies.
  • Support IT systems security architecture design and review.
  • Work with stakeholders to translate security requirements into operational security practices.
  • Provide leadership, training opportunities, and guidance to personnel.
  • 7+ years of people management experience.
  • Bachelor's degree or higher, or substantial verifiable experience in application development, application security engineering, or application penetration testing.
  • Knowledge of FDA requirements.
  • Knowledge of web and mobile application architecture patterns, concepts, distributed environments, and database technologies.
  • Practical experience with OWASP, CVSS3.0, STRIDE framework, CVE, and CWE.
  • Practical experience with Android and iOS development techniques and patterns.
  • Program Management/Agile Scrum experience.
  • Relevant security certifications (e.g., CISSP, CEH).
  • Relevant development certifications (e.g., AWS, Scrum).
  • IAM experience.
  • Experience with data integration technologies (e.g., RESTful, SOAP, HL7).
  • Strong understanding of encryption, cryptography, and secrets (key) management.
  • Experience with cloud compute infrastructure (e.g., AWS, Azure).
  • Experience with security threat modeling.
  • Collaborative and inclusive work environment.
  • Opportunities for innovation and professional growth.
  • 100% remote working arrangements available.
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Senior Product Manager Resume Examples
Senior Product Manager Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service