Product Security Engineer

Sunrise Systems Inc

San Diego, CA(remote)

JOB DETAILS
SKILLS
Analysis Skills, Architectural Design, Cloud Computing, Communication Skills, Computer Engineering, Computer Science, Computer Security, Configuration Management, Cross-Functional, Design Evaluation, Detail Oriented, DevOps, Dynamic Analysis, External Audit, FDA (Food and Drug Administration), FDA Requirements, Healthcare, Healthcare Software, ISO (International Organization for Standardization), Identity Data Management, Incident Response, Internal Audit, Internet Security, Manufacturing, Market Tracking, Medical Equipment, Network Security, Presentation/Verbal Skills, Privacy Controls, Privacy Regulations, Product Engineering, Product Lifecycle, Product Management, Regulations, Regulatory Compliance, Regulatory Submissions, Risk Analysis, Risk Management, SDL (Specification and Description Language), Security Analysis, Security Architecture, Security Auditing, Security Design, Software Development Lifecycle (SDLC), Static Analysis, Support Documentation, Technical Writing, Threat Modeling, Threat and risk analysis (TRA), U.S. National Institute of Standards and Technology (NIST), Vulnerability Scanners, Writing Skills
LOCATION
San Diego, CA
POSTED
3 days ago
Our client, a leading Medical Device Manufacturing Company is looking for Product Security Engineer and This is for an initial duration of 06 MonthsContractRemote
 
Job Title: Product Security Engineer
Job Id: 26-03328
Location: Remote
Duration: 06 Months Contract
Position Type: Hourly Contract Position (W2 only)
Job Description 
  • The Product Security Engineer will support the security architecture, design review, and risk management activities for medical devices and Software as a Medical Device (SaMD) platforms.
  • This role focuses on ensuring the security, privacy, and regulatory compliance of medical devices.
  • The candidate will work cross-functionally with engineering, quality, regulatory, and DevOps teams to implement secure design practices. Large portion of this job requires performing threat modeling, and support cybersecurity risk management activities aligned with FDA guidance.
  • This position contributes to security documentation supporting 510(k) submissions, post market cybersecurity management, and secure development lifecycle (SDL) activities.
Essential Job Functions: 
  • Perform product security risk assessments and threat modeling for medical devices and SaMD platforms.
  • Support cybersecurity documentation for FDA regulatory submissions including 510(k), cybersecurity risk management files, and SBOM requirements.
  • Conduct security architecture reviews for medical platforms.
  • Evaluate system designs against secure architecture principles, regulatory expectations, and cybersecurity frameworks.
  • Develop and maintain Product Security Risk Management Plans, Vulnerability Management Plans, and Incident Response Plans.
  • Participate in secure software development lifecycle (SSDLC) activities including design reviews and security validation.
  • Analyze results of static code analysis, dynamic analysis, and vulnerability scanning tools.
  • Support SBOM generation and third party software risk analysis.
  • Assist in investigation and remediation of security vulnerabilities affecting medical device or cloud infrastructure environments.
  • Collaborate with DevOps and engineering teams to implement secure configurations, identity management, and network security controls.
  • Participate in product security incident response activities and post-market cybersecurity monitoring.
  • Support internal and external security audits related to FDA, ISO 13485, ISO 27001, TIR-57 and healthcare cybersecurity requirements.
Job Requirements: 
  • Requires a BS degree preferably Cybersecurity, Computer Science, Computer Engineering, a related Engineering discipline and 5+ years' experience in cybersecurity, product security, or cloud security roles.
  • Experience supporting FDA cybersecurity documentation or 510(k) submissions strongly preferred.
  • Experience working with regulated medical devices or healthcare software environments
  • Strong written and verbal communication skills.
  • Strong analytical thinking and attention to detail.
  • Experience working in cross functional engineering environments.
  • Familiarity with Threat Modeling, vulnerability scanning and remediation processes.
  • Experience reviewing technical documentation and regulatory artifacts.
  • Knowledge of NIST Cybersecurity Framework and NIST 800-series security controls.
  • Familiarity with OWASP Top 10 and secure software development lifecycle practices.

Qualified candidates please send your word format updated resume at the earliest to Pavan:

Pavan.p@sunrisesys.com

[732-395-4444].
 
Thank You.
 

About the Company

S

Sunrise Systems Inc

Sunrise Systems was founded in 1990 with a clear vision to deliver world-class staffing service solutions in all labor categories, including IT consulting and solutions; all with the commitment to provide service that exceeds expectations and become the most trusted name in the industry. More than two and a half decades later, we pride ourselves on being at the forefront of the staffing industry. Combining our deep industry expertise, insights, and global resources, we have partnered with our clients to connect them with top professionals across several different industries.

We provide cost-effective Managed Staffing Solutions, Information Technology and Information Technology Consulting Services to several Fortune 500 companies and U.S. Government agencies. We provide our clients with flexible engagement models and customized products that are budget and time specific. Understanding the challenges that every business faces, we offer our services either on-site at the clients' site or from one of our globally distributed technology centers. Our onshore and offshore development capabilities ensure that we excel at meeting customer requirements every single time.

Our collective business experience spans over two and a half decades and ranges from:

  • Business, management, and technical fields
  • Information technology consulting and software solutions.
  • Providing strategic support for the development and long-term growth of new business ventures across several industries including but not limited to; accounting, banking, finance, and recruitment.
  • Motivating technology staff and establishing partnerships with Fortune 500 companies

Sunrise Systems has a vast range of competence in:

  • Design, development, and support of cloud-based solutions from simple to highly complexed
  • Database administration of multi-platform applications, complex databases, and web-based environments that include all aspects of installation, planning, maintenance, and monitoring.
  • Data processing and data migration
  • Application re-engineering and platform migration
  • Working with the Information Systems and end-user communities at all levels to resolve issues and establish consensus.
COMPANY SIZE
100 to 499 employees
INDUSTRY
Staffing/Employment Agencies
FOUNDED
1990
WEBSITE
http://www.sunrisesys.com/