Senior Manager Enterprise Cybersecurity

About The Position

Requirements

• BA/BS in Business, Engineering, Computer Science, or related disciplines.
• Overall 10+ years’ experience with 5+ years of experience working in Engineering or Cyber support.
• Strong understanding of Enterprise Cybersecurity and the relationship between threat, vulnerability and potential customer risk in the context of risk management.
• Familiarity with FDA and other countries Regulatory bodies on Cybersecurity guidelines for medical devices and corporate enterprise network
• Understanding industry standards such as the NIST Cybersecurity Framework, FedRAMP, RMF, TIR-57 Principles for medical device security risk management, etc.

Nice To Haves

• Master’s degree is desirable.
• Previous work experience in an Enterprise Cybersecurity role is preferred.
• Understanding medical product safety risk and the relationship with product Cybersecurity risk
• Familiarity with design of enterprise networks and diagnostic medical devices is a plus
• Experience with medical device certifications from government agencies is preferred
• Certifications such as CISA, CISM, CRISC, CISSP, CPP or CFE are preferred
• Knowledge of the latest methodologies for enterprise and product cybersecurity risk assessment and vulnerability management and technologies and tools used within the security domain is desired
• Effective Communication skills and collaboration skills.

Responsibilities

• Maintain divisional compliance with applicable Corporate and Divisional Policies and procedures including training.
• Collaborate with division cross-functional teams to develop and maintain enterprise and product cybersecurity risk management and vulnerability management processes and procedures.
• Lead and support Divisions with enterprise, product, and manufacturing cybersecurity to include risk assessments, threat modeling, and mitigation plans.
• Collaborate with division functional teams to develop and maintain operational procedures for the assessment of Manufacturing and Distribution cybersecurity programs
• Process and technical support for commercial deployments of products worldwide to include into restricted (e.g. China, Russia) environments, ensuring compliance with regional cybersecurity and data protection requirements.
• Build and maintain relationships with internal stakeholders, external partners, and customers to enable successful execution of the division product and enterprise cybersecurity program.
• Serve as a trusted advisor and effectively communicate cybersecurity risks with technical and non-technical internal and external stakeholders, including senior leadership.
• Ensures that user community understands and adheres to necessary procedures to maintain security.
• May require familiarity with identity and access management (IAM), domain structures, user authentication mechanisms, and digital certificate/signing solutions.
• Maintains working knowledge and oversight of network security controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), secure network architecture, and internet protocols.
• Balance business objectives with cybersecurity risks by providing risk-based recommendations and clearly articulating trade-offs to leadership for informed decision-making.
• Lead, mentor, and develop cybersecurity professionals, providing coaching, technical guidance, and career development support across the team.

Benefits

• Employees can qualify for free medical coverage in our Health Investment Plan (HIP) PPO medical plan in the next calendar year.
• An excellent retirement savings plan with a high employer contribution
• Tuition reimbursement, the Freedom 2 Save student debt program, and FreeU education benefit - an affordable and convenient path to getting a bachelor’s degree.