Sr Manager, Penetration Testing & Research

About The Position

Requirements

• Deep knowledge of IoT and digital device research methods, including analysis, testing, and documentation.
• Understanding of cryptography, authentication, authorization, network security protocols, and application security.
• Exposure to application security standards such as OWASP TOP 10 and CSC 20.
• Familiarity with regulations surrounding medical devices and IoT, including FDA cybersecurity requirements.
• Bachelor's Degree in Information Assurance, Information Security, or related field; Master's Degree preferred.
• Relevant technical certificates (OSCP, SANS, GIAC) are a plus.
• 5+ years of experience in security consulting, product security, secure software development, risk assessment, or vulnerability management.
• Strong interpersonal and documentation skills.
• Ability to explain and promote technical concepts.
• Attention to detail and strong organizational skills.
• Excellent verbal and written communication skills.

Nice To Haves

• Hands-on experience in Hardware System Integration, Signal and Power Integrity, RF Systems, Wi-Fi, Bluetooth, Wireless Communications, TCP/IP, Network and Application Penetration Testing.

Responsibilities

• Perform penetration testing activities on products and infrastructure to resolve vulnerabilities and validate remediation.
• Develop comprehensive mentorship for frequently encountered vulnerabilities and corresponding remediation strategies.
• Build and improve existing methodologies for penetration testing based on industry standards.
• Coordinate security risk assessments for new and existing products with pre- and post-market teams.
• Build partnerships with product development leaders to drive secure development practices.
• Collaborate with architecture and development teams to create shared security frameworks.
• Educate key partners on security risks and the importance of security in products and environments.
• Work with cross-functional teams to identify and fix security issues in products and infrastructure.
• Mentor others on secure product activities.
• Coordinate and perform design reviews, peer reviews, and code reviews.
• Ensure consistency, documentation, and process across all programs.
• Collaborate with departments to direct compliance issues for investigation and resolution.
• Create security bulletins to address new or evolving threats.

Benefits

• Choice of national medical and dental plans, and a national vision plan.
• Employee assistance and family support programs, including commuter benefits and tuition reimbursement.
• At least 120 hours paid time off (PTO) and 10 paid holidays annually.
• Paid parental leave (3 weeks for bonding and 8 weeks for caregiver leave).
• Accident and life insurance, and short- and long-term disability.
• Retirement and savings programs, including a competitive 401(k) plan.
• Employees' Stock Purchase Plan (ESPP) allowing purchase of company stock at a discount.