Cybersecurity Engineer - Dallas, United States - Spectral MD

    Spectral MD
    Spectral MD Dallas, United States

    1 month ago

    Default job background
    Description
    Job Description

    Job Description


    Position Summary:
    Spectral MD, Inc. is seeking a cybersecurity engineer to join our growing team in Dallas, TX.

    The cybersecurity engineer should have experience in analyzing, identifying, and measuring the security related threats and vulnerabilities for the protection of data, software application systems and device network connectivity, both on premise and in the cloud.

    A successful candidate will play a key role in the planning and execution of security testing, including threat mitigation, vulnerability scanning, security requirements testing, and penetration testing.

    This individual will own the cybersecurity risk management process and documentation as required by FDA's medical device cybersecurity guidance and other applicable industry standards.

    The candidate must have excellent oral and written communication skills and work effectively as a team member in a highly collaborative and cross-functional setting.


    Essential Duties and Responsibilities:


    Identify, analyze, and evaluate the threats and vulnerabilities existing in the data, software application systems and networks, both on premise and in the cloud.

    Own and drive cyber risk management documentation, including threat models, security architecture, cybersecurity risk

    assessment/estimation,

    vulnerability identification, security requirements/risk controls.
    Implement security requirements and risk control measures according to the cybersecurity risk assessments and security architecture.
    Perform vulnerability scans and testing, software composition analysis and penetration testing required by FDA's medical device cybersecurity guidance.
    Own creation of a security risk management process for both pre-market (during product development) and post-market.

    Responsible for writing or supporting the security-related testing documents including cybersecurity test plan, test protocols for threat mitigation, vulnerability testing and penetration testing, and related testing reports.

    Regularly participate into software design and development process to inject security by design throughout software development lifecycle.

    Qualifications:

    Required education and experience:
    A Bachelor's degree in Cyber Security, Computer Science, Software Engineering, or related major, advanced degree preferred
    8+years of experience in cyber security or information security fields, medical device field preferred.
    Experience in identifying and characterizing security -related issues via the vulnerability testing and penetration testing.
    Experience in implementing the security methods, procedures, and practices to mitigate the threats and risks.
    Experience in cybersecurity standards and regulations applicable to medical devices.

    Knowledge, Skills and Abilities:


    Demonstrated broad knowledge of information security frameworks and best practices, including vulnerability management, risk management, network intrusion detection, data, and endpoint protection technologies.

    Ability to write Security related documents such as threat models, cybersecurity risk assessments, security architectures, cybersecurity test plans, protocols, and reports.

    Ability to define cybersecurity requirements and propose design implementation options to ensure patient and proprietary data are reliable and secure in storage and transit.

    Ability to apply the industrial standards and regulatory guidance into practical work is a plus (knowledge of cybersecurity standards and regulations applicable to medical products such as United States Pre-Market and Post-Market Guidance, HIPAA, EUMDR, ISO 13485, IEC , IEC 62304, ISO 14971, AAMI TIR 57, UL 2900-1, FDA guidance, ISO 27000 Series)
    Strong ability to work with time / date deadlines.
    Excellent analytical and problem-solving skills.
    Excellent verbal and written communication skills.


    Physical Requirements:


    The physical demands described below are representative of those that must be met by an individual to successfully perform the essential functions of this job.

    Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
    Prolonged periods of sitting at a desk and working on a computer.


    Equal Employment Opportunity:
    Spectral MD, Inc. is an equal opportunity and affirmative action employer.

    All applicants will be considered for employment without regard to race, color, ancestry, national origin, sex, gender, sexual orientation, marital status, religion, age, disability, gender identity, results of genetic testing, protected veteran status, or any other characteristic protected by applicable federal, state, or local laws.

    #J-18808-Ljbffr