| Job Description :: Security Architect :: Hercules, CA (Onsite) at Hercules, California, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=2191275&uid= Hi, Hope you are doing well I have a great opportunity matching your profile please let me know. Job Title: Security Architect Job Location: Hercules, CA (Onsite) Job Type: Contract Job Description Key Responsibilities: Security Architecture Development Develop and maintain comprehensive architecture and artifacts for multiple device platforms with the help of respective platform R&D team: Global System View: High-level design illustrating interconnected systems and data flows. Multi-Patient Harm View: Analyze and mitigate potential security threats leading to risks for multiple patients. Updateability/Patchability View: Ensure systems support secure and timely updates/patches to address vulnerabilities. Security Use Case View: Define security requirements and controls based on specific use cases and threat models. Collaborate with cross-functional teams (Product, DevOps, IT, Regulatory) to integrate security into the product lifecycle. Product Security Incident Response Team (PSIRT) Lead the PSIRT process for R&D alongside PSIRT lead for IT, ensuring swift response and mitigation of product vulnerabilities. Establish incident playbooks and coordinate root cause analysis (RCA) for reported security incidents. Work with engineering teams to implement fixes and ensure long-term improvements. Risk Assessment & Compliance Perform risk analyses to evaluate security threats, especially those with potential impacts on patient safety. Ensure compliance with FDA cybersecurity guidelines, including premarket and postmarket regulatory expectations. Collaborate with Quality and Regulatory teams to provide security input for FDA submissions and audits. System Updateability & Patchability Design architecture that prioritizes efficient, secure software updates and patch management across deployed systems. Establish automated processes for vulnerability scanning and remediation. Collaboration & Stakeholder Communication Provide technical leadership and mentoring to engineering and operations teams on secure design principles. Communicate security risks, incidents, and mitigations to senior leadership and external regulators. Required: Bachelors degree in Computer Science, Information Security, or a related field. 7+ years of experience in cybersecurity, including architecture design in a regulated environment (preferably FDA, healthcare, or medical devices). Proven experience leading PSIRT processes, vulnerability management, and incident response. Expertise in developing security architecture views and artifacts for complex systems. Strong understanding of FDA cybersecurity requirements, standards (e.g., IEC 81001, NIST, OWASP, IMDRF etc.). Experience with risk analysis methodologies focused on patient safety and multi-patient harm scenarios. Knowledge of updateability/patchability frameworks and secure development lifecycle (SDLC). Preferred: Masters degree in a technical field. Certifications: CISSP, CSSLP, CISM, or equivalent. Experience with cloud-based systems, IoT security, or medical device security. Key Competencies: Strong analytical and problem-solving skills with a focus on patient safety. Ability to create detailed technical artifacts and communicate them effectively to both technical and non-technical stakeholders. Leadership and project management skills in cross-functional, collaborative environments. Excellent written and verbal communication skills What the candidate brings Bachelors degree in Computer Science, Information Security, or a related field. 7+ years of experience in cybersecurity, including architecture design in a regulated environment (preferably FDA, healthcare, or medical devices). Proven experience leading PSIRT processes, vulnerability management, and incident response. Expertise in developing security architecture views and artifacts for complex systems. Strong understanding of FDA cybersecurity requirements, standards (IEC 81001, NIST, OWASP, IMDRF etc.). Experience with risk analysis methodologies focused on patient safety and multi-patient harm scenarios. Knowledge of updateability/patchability frameworks and secure development lifecycle (SDLC). Thanks & Regards Abhay Dubey Sr. US Technical Recruiter Phone: 771-333-7731 Codinix Technologies Inc. www.codinix.com -- Keywords: rlang information technology California Job Description :: Security Architect :: Hercules, CA (Onsite) [email protected] http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=2191275&uid= |
| [email protected] View All |
| 07:36 PM 20-Feb-25 |