'Develop deep understanding of security processes and procedures to serve as a subject matter expert on cybersecurity activities
· Partner with engineering teams (console, pump, etc.) to drive successful adherence to product security program during product development, testing, and release phases.
· Work with external partners as well as collaborate with internal cross functional teams to own and drive cybersecurity project deliverables.
· Collaborate with product development teams to identify potential cybersecurity risks during the pre-market phase.
· Deliver documentation for pre-market development activities including security plans, architecture and data flow diagrams, threat models, requirements, SBOM, and risk documentation.
· Monitor and drive post-market vulnerability management activities, with adherence to strict timelines.
· Recommend and execute security measures to mitigate identified risks and improve product security.
· Guide teams to make decisions that balance business needs with security objectives.
· Think across organizational boundaries and empathizes with customers, both internal and external.
· Perform other related duties and responsibilities, as assigned.
Good to have C/C++ experience so he/she can check the code implementation to validate functionality (no need for this person to do coding)
Experience on industry standard threat modeling tools is a must
Experience using tools for Data Flow Diagram (SmartDraw etc)
Must be able to build DFD such as the following example, but for Surgical Equipment