Cybersecurity Specialist - Saint Paul - DivIHN Integration Inc

Description

DivIHN (pronounced "divine") is a CMMI ML3-certified Technology and Talent solutions firm.

Please make an application promptly if you are a good match for this role due to high levels of interest.

Driven by a unique Purpose, Culture, and Value Delivery Model, we enable meaningful connections between talented professionals and forward-thinking organizations.

Since our formation in 2002, organizations across commercial and public sectors have been trusting us to help build their teams with exceptional temporary and permanent talent.

Visit us at to learn more and view our open positions.

Please apply or call one of us to learn more For further inquiries regarding the following opportunity, please contact our Talent Specialist, Vijay Raj Jayachandran at (63 r Saravanakumar at Title:
Cybersecurity Specialist Duration: 6 Months with strong possibility of extension or full-time Location: St.

Paul, MN or Abbott Park (North Chicago)

Travel:
Very limited, possibly 1 2 times during the 6 month period, likely none.

Work Schedule: 8 hours/day, 5 days/week Only W2 candidates are eligible for this position.

Third-party or C2C candidates will not be considered Role Overview The role has a strong focus on medical devices, IoT/sensor-based products, mobile applications, and backend systems, including building security standards, guidance, dashboards, and validating the effectiveness of cybersecurity controls.

Description:

As a Senior Cyber Specialist Digital Enablement, you will play an important role in ensuring that Client product technologies leveraged by healthcare providers and consumers are secure-by-design.

These technologies range from regulated medical devices to e-commerce and customer loyalty solutions.

You will evaluate the cybersecurity posture of new and existing product technologies, identify risks, recommend mitigation strategies, and ensure timely remediation and closure.

You will bring deep expertise in security risks, controls, mitigations, and global cybersecurity standards to Client product teams.

This role is expert-driven and guidance focused, requiring strong technical depth, excellent communication skills, and a proven ability to navigate a large, global environment.

You will partner closely with internal product owners, developers, engineers, security architects, and external collaborators to evaluate solutions, strengthen governance, and guide secure product development.

Your work will directly contribute to the delivery of scalable, compliant, and secure product technologies, cloud services, and connected applications.

The role focuses on consultative responsibilities rather than hands on development or cybersecurity operations.

Primary Responsibilities Develop and maintain security guidance documentation, including standards and frameworks Conduct full-stack architecture reviews of products and platforms, including consumer identity platforms Perform cybersecurity threat modeling and prepare outputs for review by internal and external stakeholders Establish, document, and monitor compliance with risk based and regulatory-informed cybersecurity requirements for individual products Collaborate with product designers and developers to ensure security considerations are integrated early into product design discussions Validate the security of product software supply chains and product deployment pipelines Develop risk mitigation strategies and recommend appropriate security controls Assess and prioritize product security risks through detailed evaluation of vulnerability assessments and penetration testing results Evaluate the effectiveness of product cybersecurity controls Identify and effectively communicate cyber risk trends Ensure risk management plans are clearly documented, actionable, and accurately reflect the organization's risk tolerance Track and ensure product compliance with defined vulnerability remediation SLAs.

Participate in governance forums, architecture reviews, and technical discussions as a representative of

Product Cybersecurity Required:
At least 5 years of experience but typically 7 plus years of experience is required.

Possess expertise in valuing and implementing industry standards such as the ISO 27001/2, SOC 2, HITRUST and FedRAMP Information Security standard and the ISO 22301 Business Continuity Standard.

Experience with implementation and operational use of GRC toolsets (Governance Risk and Compliance).

Possess CISSP certification (or similar) and be knowledge of national and international regulatory compliances and frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS.

Ability to influence policy/standards for emerging tech (AI, quantum, cloud).

About You 7 years of experience in cybersecurity or technology architecture, assessment, or consulting with a focus on the development of secure digital product technologies Experience conducting risk assessments, control assessments, and governance reporting Ability to clearly articulate cybersecurity risks and recommended mitigations to product development teams Strong understanding of modern technology stacks, including cloud native architectures and API-driven services Understanding of core concepts related to identity and access management, secure software development, network security, and cryptography Familiar with device to device, service to service, and consumer identity and access management practices Familiarity with modern phishing-resistant authentication technologies, including WebAuthn and Passkeys Understanding of cybersecurity risks associated with emerging technologies, including quantum computing and artificial intelligence Knowledge of global medical device regulatory frameworks Excellent analytical, problem-solving, and communication skills Working knowledge of security frameworks and standards (e.g., NIST, ISO/IEC 27001, PCI DSS) Strong collaboration and influencing skills, with the ability to work effectively across technical and business teams Exceptional written and verbal communication skills, with the ability to tailor complex information for diverse audiences Strong analytical and problem solving skills, with the ability to work independently and manage multiple priorities Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Information Assurance, Software Engineering, or a related field Preferred Qualifications Strong preference for candidates with cybersecurity experience across e commerce, mobile apps, IoT, or medical devices.

Preferred certifications include CISSP, HCISPP, CISM, CCSP, SABSA Foundation, CISA, or similar industry-recognized certifications Background in application security, product security, and secure development practices.

Experience supporting mobile applications, sensors, and backend operational systems.

Ability to draft, influence, and operationalize cybersecurity policies and standards.

Reading Static Application Security Testing (SAST)/Dynamic Application Security Testing (DAST) outputs, pen test results; collaborating with teams; no major required internal tools.

Interview Process:

One Teams Video interview About us: DivIHN, the 'IT Asset Performance Services' organization, provides Professional Consulting, Custom Projects, and Professional Resource Augmentation services to clients in the Mid-West and beyond.

The strategic characteristics of the organization are Standardization, Specialization, and Collaboration.

DivIHN is an equal opportunity employer. xhuatnn

DivIHN does not and shall not discriminate against any employee or qualified applicant on the basis of race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status.