Sign upLog in
JobsJobs in MassachusettsJobs in Boston, MASecurity JobsSecurity Analysis Jobs

Hybrid Principal Software Cybersecurity Engineer - Andover, MA

Michael Page International

Boston, MA

Apply
JOB DETAILS
SKILLS
Analysis Skills, Architectural Design, Authentication, Bill of Materials (BOM), Clinical Information Systems, Code of Federal Regulations, Communications Protocols, Computer Engineering, Computer Firmware, Computer Science, Computer Security, Cryptography, Customer Service Software, Data Quality, Data Storage, Digital Signatures, Dynamic Analysis, Embedded Software, Embedded Systems, FDA (Food and Drug Administration), FDA Requirements, ISO (International Organization for Standardization), Information/Data Security (InfoSec), International Electro-Technical Commission (IEC), Internet Security, JavaServer Pages (JSP), Maintain Compliance, Medical Equipment, Needs Assessment, Operating Systems, Organ Transplant, Penetration Testing, Realtime Operating System, Regulations, Regulatory Compliance, Risk, Risk Analysis, SSL-TLS (Secure Socket Layer - Transport Layer Security), Security Analysis, Security Protocols, Software Administration, Software Development, Software Engineering, Software Patches, Software Specification, Static Analysis, Testing, Threat Modeling, U.S. National Institute of Standards and Technology (NIST)
LOCATION
Boston, MA
POSTED
1 day ago
  • Join a medical device company truly making a difference
  • Excellent base salary & bonus on offer


About Our Client

The company is a commercial-stage publicly traded medical technology company transforming organ transplant therapy for patients worldwide.

Job Description

The suitable Principal Software Cybersecurity Engineer's responsibilities will include but not be limited to:
  • Work with relevant stakeholders to determine customer needs for secure embedded and digital software application
  • Elicitate cybersecurity software requirements to support customer need
  • Perform end-to-end system security risk analysis activitie
  • Perform threat modeling, vulnerability assessments, pen tests, and static/dynamic analysis (SAST/DAST
  • Ensure regulatory compliance with FDA pre-market/post-market guidelines, NIST SP 800-series, IEC 62304, and ISO 1497
  • Implement cryptographic controls, secure boot, authentication, and hardened operating system
  • Create software requirement specs, risk assessments, and secure architecture design
  • Manage Software Bill of Materials (SBOM) to analyze third-party component risk
  • Support patching and remediation of security vulnerabilities on connected device
  • Participate in cybersecurity assessment and ensure a secure architecture and desig
  • Develop and maintain software development procedures per regulatory standards, e.g., FDA guidance, IEC 62304
  • Support quality audits and the development of FDA submissions

MPI does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, marital status, or based on an individual's status in any group or class protected by applicable federal, state or local law. MPI encourages applications from minorities, women, the disabled, protected veterans and all other qualified applicants.

The Successful Applicant

The suitable Principal Software Cybersecurity Engineer will have:
  • BS/MS in Computer Science, Computer Engineering, or equivalent combination of education and experience.
  • 10+ years of related experience in real-time embedded software, digital clinical software, medical device development, or product cybersecurity.
  • Experience in implementing security controls and features in firmware and embedded software, such as secure boot, cryptographic services, and secure data storage.
  • Experience in implementing protections for sensitive data stored on or transmitted by embedded devices.
  • Experience in implementing digital signatures to verify the authenticity and integrity of data.
  • Experience in applying secure hashing and generating and managing cryptographic keys.
  • Experience in employing secure communication protocols like TLS/SSL.
  • Experience in medical device security risk assessment, evaluation, and control.
  • Experience in preparing and maintaining SBOM
  • Knowledge of relevant cybersecurity regulations and guidelines (FDA pre-market and post-market guidance, section 2.4b CFR, IEC 81001-5-1, IEC 62443-4-1, JSP 2.0).
  • Knowledge of cybersecurity relevant methods and tools (threat modeling, STRIDE, static/dynamic code analysis, system hardening, penetration testing, etc.).


What's on Offer

Compensation details for the Principal Software Cybersecurity Engineer include:
  • A fantastic base salary depending on experience
  • Annual Bonus Target
  • Generous PTO
  • Hybrid work schedule
  • Matching 401k Plan


Contact

Joshua Kerslake

Quote job ref

JN-994

About the Company

M

Michael Page International

Michael Page is one of the world's leading professional recruitment consultancies, specializing in the placement of candidates in permanent, contract, temporary and interim positions with clients around the world. Our business was established in Canada in 2005 when we opened our Toronto office. Our role is to work with employers and job seekers to facilitate a successful match. This can range from advising a global company on a candidate sourcing strategy to helping a job seeker find their dream job. In Canada, we focus on recruiting for the following areas: Banking and financial services Digital and e-commerce Engineering and manufacturing Finance and accounting Human resources Information technology Marketing Oil and gas Procurement and supply chain Property and construction Sales An Established Brand The Group has established a leading presence in many of the key markets for professional recruitment around the world and has positioned itself in certain other markets, which offer the opportunity for future growth. Within its current largest markets, Michael Page has also built a regional presence, including in the UK, France and Australia. Consequently, the Michael Page brand is among the most widely recognized brands in the professional recruitment industry. A Market Leader The role of a recruitment consultancy is to act as an intermediary, identifying and sourcing suitably qualified candidates on behalf of its clients. Candidates are recruited either for permanent or contract positions (typically for a fixed term) or on a temporary basis. Within the overall recruitment industry, the market for professional recruitment services is a specialist sector which has developed more recently. Michael Page is widely recognized as leading the development of this market around the world. Learn the benefits of working with Michael Page yourself. Submit your resume or contact a Michael Page recruitment consultant today.
COMPANY SIZE
10,000 employees or more
INDUSTRY
Staffing/Employment Agencies
WEBSITE
https://www.michaelpage.ca/

Resume Resources

Free Resume TemplatesFree Resume Builder