Manager, Threat Intel & Product Security

My client foster an inclusive culture and are currently looking for diverse, talented people to join their team. As a Manager of Threat Intelligence and Product Security you’ll be supporting the Research & Development, you will be trusted with technical leadership of the Threat Intelligence function that includes vulnerability identification, verification of patches and ongoing testing, and standardizing technology for medical devices and digital solutions.

In this role you will drive the standardization and execution of tools, technologies, testing, and ongoing threat intelligence across all medical devices and digital solutions.

The Manager, Threat Intelligence Product Security should be proficient in understanding industry threats, applicable vulnerabilities, and execution of security testing for assigned products including hardware, software, user interfaces, and connected devices. In this role.
 

• Building and leading team of product security experts to implement the threat intelligence function and prioritization of vulnerabilities for remediation
• Strong collaboration with cross-functional stakeholders and teams across the product development lifecycle.
• Standardizing security testing from planning, test cases, execution, and reporting addressing end-to-end security for assigned medical device(s) and solution
• Creating security test specifications/clinical security use cases products including applicable regulatory and compliance needs (FDA, MDR, GDPR, HIPAA, etc.)
• Contributing to security test methods, processes, and security development processes etc.
• Contributing to the security program practices including standards, process improvements, automation etc.
• Building and developing common automated test scripts and tools as applicable
• Participating in security requirements development, threat modeling, and technical implementation
• Supporting incident response processes and PSIRT as required in addressing the identified incidents time to time
• Leading, executing and supporting the penetration testing (internal/external), vulnerability testing, patch management etc.,
• Managing bug bounty programs (internal/external) with security leadership guidance
•  Presenting threat intelligence program status and results at regular cadence to senior leadership and relevant stakeholders