Jobs
>
Sunnyvale

    Senior Product Security Analyst - Sunnyvale, United States - Intuitive

    Intuitive
    Intuitive Sunnyvale, United States

    3 weeks ago

    Default job background
    Full time
    Description

    Company Description

    At Intuitive, we are united behind our mission: we believe that minimally invasive care is life-enhancing care. Through ingenuity and intelligent technology, we expand the potential of physicians to heal without constraints.
    As a pioneer and market leader in robotic-assisted surgery, we strive to foster an inclusive and diverse team, committed to making a difference. For more than 25 years, we have worked with hospitals and care teams around the world to help solve some of healthcare's hardest challenges and advance what is possible.
    Intuitive has been built by the efforts of great people from diverse backgrounds. We believe great ideas can come from anywhere. We strive to foster an inclusive culture built around diversity of thought and mutual respect. We lead with inclusion and empower our team members to do their best work as their most authentic selves.
    Passionate people who want to make a difference drive our culture. Our team members are grounded in integrity, have a strong capacity to learn, the energy to get things done, and bring diverse, real world experiences to help us think in new ways. We actively invest in our team members to support their long-term growth so they can continue to advance our mission and achieve their highest potential.
    Join a team committed to taking big leaps forward for a global community of healthcare professionals and their patients. Together, let's advance the world of minimally invasive care.

    Job Description

    Primary Function of Position

    The Product Security Analyst is primarily responsible for conducting security analysis of Intuitive Surgical products, developing, and documenting the cybersecurity threat models, recommending security mitigations, and deriving security requirements for surgical systems in Intuitive Surgical product portfolio, including SinglePort, MultiPort daVinci Surgical Systems, ION system and associated peripherals and instruments.

    Essential Job Duties

  • Work closely with the product teams and understand our products in depth to review and document the security attack surface, trust boundaries and data flows.
  • Develop threat models that enumerate cybersecurity risks and threats.
  • Document and verify the existing security mitigations and identify if additional mitigations are required for our products.
  • Work with the product teams to provide guidance during mitigation design and development.
  • Contribute to development and implementation of security test and verification protocols. Assist in conducting security verification and validation efforts.

    • Qualifications

    Required Skills and Experience

  • Minimum bachelor's or higher degree in Engineering or Computer Science, with minimum of 5 years of experience on conducting product security analysis.
  • In-depth knowledge of security concepts regarding embedded systems, operating systems, firmware, and software security. Understanding of current and emerging security technologies and threats.
  • In-depth knowledge of security risks and threats associated with wired and wireless device interfaces including USB, JTAG, serial ports, UART, SPI, Ethernet, Bluetooth and Wi-Fi.
  • Proficient with methodologies, tools, best practices, and processes across various cybersecurity areas.
  • Knowledge of common security flaws and resolution as published by SANS, MITRE (CVE, CWE).
  • Proven experience with threat modeling and risk analysis with ability to understand and score using the CVSS method
  • Ability to work with Software Bill of Material (SBOM) and vulnerability assessment of components in the SBOM
  • Ability to gather written and verbal information from multiple sources, assess and consolidate risks to provide appropriate recommendations.
  • Hands-on experience with penetration testing and vulnerability analysis frameworks and tools.
  • Experience in developing test routines and protocols to validate security mitigations.
  • Excellent documentation and communication skills
  • Experience with security analysis of medical devices and products is a plus.
  • Experience with medical device cybersecurity regulations (FDA, NMPA, EU MDR, MDCG, HIPAA) is a plus.
  • Experience in Cybersecurity related data analytics, machine learning, anomaly detection and incident response is a plus

    • Additional Information

    Due to the nature of our business and the role, please note that Intuitive and/or your customer(s) may require that you show current proof of vaccination against certain diseases including COVID-19. Details can vary by role.

    Intuitive is an Equal Employment Opportunity Employer. We provide equal employment opportunities to all qualified applicants and employees, and prohibit discrimination and harassment of any type, without regard to race, sex, pregnancy, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status, genetic information or any other status protected under federal, state, or local applicable laws.

    We will consider for employment qualified applicants with arrest and conviction records in accordance with fair chance laws.

    We provide market-competitive compensation packages, inclusive of base pay, incentives, benefits, and equity. It would not be typical for someone to be hired at the top end of range for the role, as actual pay will be determined based on several factors, including experience, skills, and qualifications. The target salary ranges are listed.

    Due to the nature of our business and the role, please note that Intuitive and/or your customer(s) may require that you show current proof of vaccination against certain diseases including COVID-19. Details can vary by role.

    Intuitive is an Equal Employment Opportunity Employer. We provide equal employment opportunities to all qualified applicants and employees, and prohibit discrimination and harassment of any type, without regard to race, sex, pregnancy, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status, genetic information or any other status protected under federal, state, or local applicable laws.

    We will consider for employment qualified applicants with arrest and conviction records in accordance with fair chance laws.

    Preference will be given to qualified candidates who do not reside, or plan to reside, in Alabama, Arkansas, Delaware, Florida, Indiana, Iowa, Louisiana, Maryland, Mississippi, Missouri, Oklahoma, Pennsylvania, South Carolina, or Tennessee.

    We provide market-competitive compensation packages, inclusive of base pay, incentives, benefits, and equity. It would not be typical for someone to be hired at the top end of range for the role, as actual pay will be determined based on several factors, including experience, skills, and qualifications. The target salary ranges are listed.

  • eGain Corporation

    FedRAMP Security Analyst

    3 days ago

    eGain Corporation Sunnyvale, United States

    Hundreds of global brands trust eGain to automate customer engagement and empower employees in a digital-first world. Powered by knowledge and AI, our solution is top-rated by Gartner and Forrester. · We dream big and sweat details. We are diverse, optimistic, and tenacious. We t ...

  • Fortinet

    Security and Compliance Analyst

    3 weeks ago

    Fortinet Sunnyvale, United States

    Job Summary: We are seeking a highly skilled and motivated Security and Compliance Analyst to join our dynamic team. The ideal candidate will play a crucial role in ensuring the security and compliance of our organization by supporting the implementation of ISO 27001 and conducti ...

  • Fortinet

    IT Security and Compliance Analyst

    23 hours ago

    Fortinet Sunnyvale, United States

    Security and Compliance Analyst · Job Summary: We are seeking a highly skilled and motivated Security and Compliance Analyst to join our dynamic team. The ideal candidate will play a crucial role in ensuring the security and compliance of our organization by supporting the implem ...

  • The Fountain Group

    Security Analyst

    4 weeks ago

    The Fountain Group Santa Clara, United States

    Title: Security Analyst · Location(s): Remote · Bid rate: $37 hourly. · Fast hire - 2-3 month assignment · W2 only, no C2C opportunities for this position. · JOB DESCRIPTION · Test application (ex, facebook, gmail, zoom,...) using browsers and/or mobile devices. · Capture the ...

  • Maxonic

    Sr. Information Security Analyst

    1 week ago

    Maxonic Santa Clara, United States

    Maxonic maintains a close and long-term relationship with our direct client. In support of their needs, we are looking for a · Sr. Information Security Analyst · Job Description: · Job Title: · Sr. Information Security Analyst · Job Type: · Contract to Hire · Job Location: ...

  • Sibylline Americas

    Embedded Security Analyst

    2 weeks ago

    Sibylline Americas Mountain View, United States

    Job Description · Embedded Security Analyst · Sibylline is looking for a motivated early-career intelligence analyst to join us in an embedded role within a globally dispersed intelligence team. The role will based onsite in Mountain View, CA. Using the latest industry technolo ...

  • Knightscope

    Remote Security Analyst

    3 weeks ago

    Knightscope Mountain View, United States

    Remote Security Analyst · The Security Surveillance Analyst will be responsible for assisting the CX Manager of National Accounts in monitoring and maintaining the security of Knightscope's autonomous robots, while providing premium customer service experience. The role involves ...

  • Sibylline Americas

    Embedded Security Analyst

    3 weeks ago

    Sibylline Americas Mountain View, United States

    Job Description · Embedded Security Analyst · Sibylline is looking for a motivated early-career intelligence analyst to join us in an embedded role within a globally dispersed intelligence team. The role will based onsite in Mountain View, CA. Using the latest industry technolo ...

  • Sibylline Ltd

    Embedded Security Analyst

    2 weeks ago

    Sibylline Ltd Mountain View, United States

    Mountain View, California, United States · Sibylline Ltd · Global Risk Analysis - Embed Operations - Threat monitoring and reputation risk services. Sibylline is a strategic advisory firm, dedicated to helping decision-makers identify opportunities and mitigate risks in their o ...

  • Intellectt Inc

    Cyber Security Analyst

    2 weeks ago

    Intellectt Inc Milpitas, United States

    Cybersecurity Analyst (Medical Device) · Location: Milpitas, CA (Onsite) · Job description: · This person will need to go through existing System and Software architecture documents, proactively reach out to Milpitas SMEs to clarify questions and understanding and prepare/update ...

  • hire

    Cyber Security Analyst

    2 weeks ago

    hire Milpitas, United States

    Title : Cybersecurity Analyst · Location : Milpitas, CA (Onsite) · Duration : 6-12 months Contract · Note: cyber security we specifically need someone with product · security experience and strong source code and threat modelling experience · Job description · Experiences 8-9 ye ...

  • Adobe

    Information Security Analyst

    3 weeks ago

    Adobe San Jose, United States Full time

    Our Company · Changing the world through digital experiences is what Adobe's all about. We give everyone—from emerging artists to global brands—everything they need to design and deliver exceptional digital experiences We're passionate about empowering people to create beautiful ...

  • Intellectt Inc

    Cyber Security Analyst

    2 weeks ago

    Intellectt Inc Milpitas, United States

    Title – Cybersecurity Analyst · Location – Milpitas, CA (Onsite) · Visa – Any valid visa · Top Skills · VAPT Testing for web and mobile APP · Threat modeling form the architecture · Secure code analysis using tools · Additional Skills · API Security testing · AWS solution securit ...

  • Sibylline Americas

    Embedded Security Analyst

    3 weeks ago

    Sibylline Americas Mountain View, United States

    Job Description · Job DescriptionCompany Description · About Sibylline · Sibylline is a leading intelligence and strategic risk consultancy in the security sector. Since 2010 we have supported businesses, governments and NGOs through the provision of high-quality risk analysis, d ...

  • eGain

    FedRAMP Security Analyst Sunnyvale, California North America

    3 days ago

    eGain Sunnyvale, United States

    Hundreds of global brands trust eGain to automate customer engagement and empower employees in a digital-first world. Powered by knowledge and AI, our solution is top-rated by Gartner and Forrester. · We dream big and sweat details. We are diverse, optimistic, and tenacious. We t ...

  • PRI Global

    IT Security Analyst

    4 weeks ago

    PRI Global Newark, United States

    Vertical Description: · We are currently seeking an IT Security Analyst who will be monitoring computer networks for security issues. This person will also investigate cyber security incidents as well as security breaches. Our ideal candidate exhibits a can-do attitude and approa ...

  • Intuitive Surgical

    Senior Product Security Analyst

    1 month ago

    Intuitive Surgical Sunnyvale, United States OTHER

    Job Description · Primary Function of Position · The Product Security Analyst is primarily responsible for conducting security analysis of Intuitive Surgical products, developing, and documenting the cybersecurity threat models, recommending security mitigations, and deriving sec ...

  • HII

    Industrial Security Analyst

    1 day ago

    HII Mountain View, United States

    Requisition Number: 19405 · Required Travel: 0 - 10% · Employment Type: Full Time/Salaried/Exempt · Security Clearance: TS/SCI · Level of Experience: Mid · **Meet HII's Mission Technologies Division** · **Who we are** · **Key Responsibilities**: · - Provide personnel security (PE ...

  • A10 Networks, Inc

    Principal Cyber Security Analyst

    4 minutes ago

    A10 Networks, Inc San Jose, United States

    A Principal Cyber Security Analyst is a seasoned, hands-on role responsible for monitoring an organization's networks, systems, applications, external industrial events, and trends for security threats. This role involves analyzing security data, identifying Vulnerabilities, and ...

  • Hire LLC

    Cyber Security Analyst

    13 hours ago

    Hire LLC Milpitas, United States

    Title : Cybersecurity Analyst · Location : Milpitas, CA (Onsite) · Duration : 6-12 months Contract · Note: cyber security we specifically need someone with product · security experience and strong source code and threat modelling experience · Job description · Experiences 8-9 y ...