Manager - Product Security Operations Center, Digital Unit

Working Location: MINNESOTA, BROOKLYN PARK; MASSACHUSETTS, WESTBOROUGH; PENNSYLVANIA, CENTER VALLEY 

Workplace Flexibility: Hybrid

Are you looking for a company that cares about people’s lives and health, including yours? Let’s inspire healthier lives, together.

Olympus, a leading medical technology company, has focused on making people’s lives better for over 100 years.

Our Purpose is to make people’s lives healthier, safer, and more fulfilling.

Our Core Values are reflected in all we do: Integrity – Empathy – Agility – Unity – Long-Term View

We deliver on our purpose and our core values by staying True to Life.

Job Description

The Digital Unit is developing new software-based products that will require active Security Operations. The Product Security Operations Center (pSOC) Manager at Olympus Corporation's Digital Unit will develop, design, and lead the Product Security Operations, including the oversight of a third-party team responsible for monitoring, detecting, and resolving security issues across our product portfolio, infrastructure, cloud environment, etc. This role combines technical expertise, leadership, and strategic thinking to ensure security and resilience of our developing and future digital products.

Job Duties

• Direct and supervise the third-party SOC team, ensuring adherence to service level agreements (SLAs), quality of work, and continuous improvement.
• Provide guidance, mentorship, and professional development opportunities for team members to enhance their skills and capabilities.
• Oversee regular monitoring of security signals, proactively identifying potential threats, and promptly initiating response protocols.
• Collaborate with cross-functional teams to swiftly address and mitigate security incidents, minimizing impact and implementing remediation strategies.
• Partner with other Digital Unit Security personnel to develop and execute the Product Security Operations strategy aligned with business objectives and evolving security standards.
• Establish and maintain incident response playbooks, ensuring their relevance and effectiveness in addressing emerging threats.
• Manage the relationship with third-party vendors providing Security Operations services.
• Conduct regular performance evaluations and risk assessments of vendors to maintain high-quality service delivery.
• Drive continuous improvement initiatives within the SOC, leveraging technological advancements and industry best practices.
• Ensure compliance with regulatory requirements, industry standards, and internal policies governing Product Security Operations.
• Monitor and understand security trends, regulations, guidance, and standards globally, including US, Japan, and EU.   Establish mechanisms in collaboration with R&D Hardware Product Security to effectively monitor, identify, communicate, and resolve potential security incidents.
• Participate in external cybersecurity forums as appropriate.

Job Qualification

Required:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related field. 
• Bachelor’s degree in information technology, cybersecurity, computer engineering or related area preferred with equivalent experience acceptable.
• 8+ years’ experience in Information Technology and / or Cybersecurity with focus on the medical device industry and Security Operations strongly preferred. 

Preferred:

• Advanced certifications (CISSP, CISM, CISA, etc.) preferred.
• Demonstrated experience in understanding complex, global regulations impacted the healthcare environment.
• Knowledge of Coordinated Vulnerability Disclosure programs.
• Developed / managed security incident response programs.
• Expertise in incident detection, response, and resolution in diverse digital environments (Product Security, infrastructure, cloud, etc.).
• Experience with embedded technology and software security.
• Experience in managing and overseeing outside consultants and technical 3rd parties.
• Strong leadership skills with a track record of effectively managing and developing teams.
• In-depth knowledge of security frameworks, regulations, and best practices in healthcare and technology sectors.
• Effective communicator and ability to manage several complex tasks while keeping leadership updated on key status.
• Experience or knowledge of government and industry standards, guidance’s and frameworks applicable to product software development such as NIST Cybersecurity Framework, OWASP, HIPAA, SANS/CWE and/or CERT, EU MDR, STIG, FDA, NIST; ISO, GDPR and PCI. 

Why join Olympus?

Here, people matter—our health, our happiness, and our lives.

• Competitive salaries, annual bonus and 401(k)* with company match
• Comprehensive Medical, Dental, Visions coverage effective on start date
• 24/7 Employee Assistance Program
• Free virtual live and on-demand wellness classes
• Work-life balance supportive culture with hybrid and remote roles
• 12 Paid Holidays
• Educational Assistance
• Parental Leave and Adoption Assistance
• Volunteering and charitable donation match programs
• Diversity & Inclusion Programs including Colleague Affinity Networks
• On-Site Child Daycare, Café, Fitness Center**

*US Only

**Limited locations

We care about your health and financial well-being and offer the resources you need to feel vital, confident and ready for wherever life takes you. Learn more about our benefit offerings at https://www.olympusamerica.com/careers/benefits-perks.

The anticipated base pay range for this full-time position working at this location is $123,778.00 - $173,289.00 / year, plus potential for annual bonus (subject to plan eligibility and other requirements). Olympus considers a variety of factors when determining actual compensation for this position including: level of experience, working location, and relevant education and certifications. 

About us:

Our Medical business uses innovative capabilities in medical technology, therapeutic intervention, and precision manufacturing to help healthcare professionals deliver diagnostic, therapeutic, and minimally invasive procedures to improve clinical outcomes, reduce costs, and enhance the quality of life for patients and their safety.

Headquartered in Tokyo, Japan, Olympus employs more than 31,000 employees worldwide in nearly 40 countries and regions. Olympus Corporation of the Americas, a wholly owned subsidiary of Olympus Corporation, is headquartered in Center Valley, Pennsylvania, USA, and employs more than 5,200 employees throughout locations in North and South America.  For more information, visit www.olympusamerica.com.

Olympus is dedicated to building a diverse, inclusive and authentic workplace

We recognize diversity in people, views and lifestyle choices and emphasize the importance of inclusion and mutual respect. We strive to continue to foster empathy and unity in the workplace so that our employees can fully contribute and thrive.

Let’s realize your potential, together.

It is the policy of Olympus to extend equal employment and advancement opportunity to all applicants and employees without regard to race, color, national origin (including language use restrictions), citizenship status, religious creed (including dress and grooming practices), age, sex (including pregnancy, childbirth, breastfeeding, medical conditions related to pregnancy, childbirth and/or breastfeeding), gender, gender identity and expression, sexual orientation, marital status, disability (physical or mental) and/or a medical condition, genetic information, ancestry, veteran status or service in the uniformed services, and any other characteristic protected by applicable federal, state or local law.

Posting Notes: || United States (US) || Minnesota (US-MN) || Brooklyn Park || Research and Development