You will support compliance and information security through internal control assessments, auditing, risk management, and mitigation.
Responsibilities
Conduct threat and risk analysis to evaluate the business impact of new and existing systems.
Implement and maintain security controls, standards, guidelines, and procedures.
Support audit readiness during internal and external audit activities.
Assist with incident response, including triage, remediation, and documentation.
Review and evaluate compliance issues to ensure alignment with laws, regulations, and industry best practices.
Required Skills
Minimum 4 years of cybersecurity experience, specifically within mobile and embedded software cybersecurity.
Proficiency with Mobile and embedded software cybersecurity, Business Continuity, Quality Management, OWASP, CVSS, and TCP/IP.
Proven experience with audit and certification processes.
Demonstrated knowledge of General Computer Controls, including Information Security, System Operations, Vendor Management, Networks, and Application Development.
Ability to translate laws and regulations into actionable security programs and controls.
Strong analytical skills for determining security violations and inefficiencies.
Bachelor’s Degree or an Associate's degree with equivalent work experience.
Hold one or more cybersecurity certifications or relevant completed coursework.
Preferred Skills
Medical device product security experience.
Experience with data privacy regulations including US HIPAA and EU GDPR.