Sr Mgr Product Security
Lakewood, CO, US
Full Time Senior-level / Expert USD 174K - 218K
Terumo Blood and Cell Technologies
A global leader in blood management, blood safety, therapeutic apheresis, cell therapy and cell collections. Terumo BCT believes in the potential of blood to do even more for patients than it does today.Requisition ID: 32120
At Terumo Blood and Cell Technologies, our 7,000+ global associates proud to come to work each day, knowing that what we do impacts the lives of patients around the world.
We make medical devices and related products that are used to collect, separate, manufacture and process various components of blood and cells. With our innovative technologies and service offerings, we touch a patient’s life every second of every day and are committed to continuing to increase the number of patients we serve.
With some of the best and brightest minds in the industry, an unmatched global footprint, comprehensive benefits and a distinct culture, Terumo Blood and Cell Technologies is a great place to work, grow and be part of a team that is focused on making a difference. Consider joining our team and unlock your potential.
JOB TITLE: Senior Manager of Product Security
JOB SUMMARY
Work as a part of the Global Cybersecurity leadership team providing support for both pre-market and post-market medical device systems and software products. Participate in a highly collaborative and diverse environment working closely with partners throughout the company and with the information security professional community of practice, particularly as it relates to medical devices and the healthcare ecosystem.
ESSENTIAL DUTIES
- Leads global product security practices, gives practice guidance to systems, hardware, embedded device software, and application software teams
- Leads the Implementation of roadmaps and project plans to support continuous improvement for product development teams
- Leads the development of standard operating procedures and work instructions for Secure-By-Design software development
- Educates and influences the engineering leadership and product development teams on good cyber practices and their role as a steward of product security. Provides thought leadership on and evangelizes to make cybersecurity a mindset embraced throughout the product development lifecycle
- Governs and enforces the effective implementation of product security practices in new product development and sustaining domains, including emphasis on security requirements and oversight/approval during design and other phase-gate related security reviews
- Develops and drives approaches to identify and mitigate security vulnerabilities early in the development process in an automated scalable manner and works with engineering to deploy and utilize these approaches
- Oversees and leads post-market product cybersecurity activities such as coordinating customer communications, responding to customer product security assessments and questionaires, and directing incident response activities
- Collaborates with industry information sharing and analysis organizations (ISAO) for the sharing of cybersecurity threat intelligence and cyber best practices
- Ensures monitoring of industry cybersecurity threat intelligence
OTHER DUTIES AND RESPONSIBILITIES
- Provides technical leadership to team members, mentoring staff on the latest security technology
- Supports vendor management as needed
MINIMUM QUALIFICATION REQUIREMENTS
Education
Bachelor’s degree or, equivalent of education and experience sufficient to successfully perform the essential functions of the job may be considered.
Experience
Minimum 8 years’ experience
- Experience leading teams comprised of both technical and non-technical personnel
- Experience with FDA and other global regulators cybersecurity guidance for medical devices
- Experience with developing standard operating procedures (SOPs)
- Experience with medical device product cybersecurity regulatory submission requirements (globally)
- Familiarity with secure software-by-design lifecycle principles and practices
Skills
- Working knowledge of modern software development practices, strongly preferred
- Experience leading product and/or cyber security practices in a regulated industry or environment; knowledge of global standards and frameworks (ISO, NIST, FDA, ITIL, EUMDR, etc.) strongly preferred
- Professional certification in cybersecurity practices (CISSP or similar) preferred
- Demonstrates creativity and takes initiative in problem solving
- Experience using risk analysis and mitigation methodologies
- Quality and continuous improvement mindset
- Demonstrated ability to communicate effectively both verbally and in writing
-Or-
An equivalent competency level acquired through a variation of these qualifications may be considered.
PHYSICAL REQUIREMENTS
Typical Office Environment requirements include: reading, speaking, hearing, close vision, walking, bending, sitting, and occasional lifting up to 20 pounds.
The physical demands described here are representative of those that must be met by an associate to successfully perform the essential duties of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential duties.
Target Pay Range: $174,600.00 to $218,300.00 - Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant, internal equity, and alignment with market data
Target Bonus on Base: 20.0%
At Terumo Blood and Cell Technologies, we provide competitive total reward offerings that consist of compensation, benefits, recognition, along with a wealth of other well-being, work-life and recognition programs which support in unlocking the potential for you and your family. Included in our expansive list of benefits offerings are multiple group medical, dental and vision plans, a robust wellness program, life insurance and disability coverages, also a variety of voluntary programs such as group accident, hospital indemnity, critical illness, pet insurance and much more. To help you save for retirement, we offer a 401(k) plan with a matching contribution and for work-life balance we have vacation and sick time programs for associates. For us, it’s about protecting the personal welfare of our associates and their families, helping to achieve personal goals and offering those extra touches for convenience, security and overall peace of mind.
- Terumo Blood and Cell Technologies is part of Terumo Group, founded in 1921 and headquartered in Tokyo, Japan.
- In 2019, Terumo Blood and Cell Technologies reached $1 billion in revenue.
- We employ nearly 7,000 associates globally, with global headquarters in Lakewood, CO, U.S., and regional headquarters in Brussels, Buenos Aires, Singapore and Tokyo.
- We manufacture devices, disposable sets and solutions at our facilities in Belgium, India, Japan, Northern Ireland, the U.S. and Vietnam. Our global presence enables us to serve customers in more than 130 countries.
- Our core values help set our direction, guide our actions and keep us true to our corporate mission of contributing to society through healthcare.
- Respect – Appreciative of others
- Integrity – Guided by our mission
- Care – Empathetic to patients
- Quality – Committed to excellence
- Creativity – Striving for innovation
- We contribute to the Leukemia and Lymphoma Society (LLS), raising $1.3 million USD since 2007.
We are proud to be an Equal Opportunity Affirmative Action Employer. All applicants will be afforded equal opportunity without discrimination because of race, color, religion, sex, gender identity or expression, sexual orientation, marital status, order of protection status, national origin or ancestry, citizenship status, age, physical or mental disability unrelated to ability, military status or an unfavorable discharge from military service.
Terumo Blood and Cell Technologies is committed to providing a safe, healthy and secure working environment. Our Colorado campus locations are tobacco-free workplaces, and we maintain a drug-free workplace and perform pre-employment substance abuse testing and detailed background verification.
Tags: CISSP Incident response ITIL Monitoring NIST Product security Risk analysis Security assessment Threat intelligence Vendor management Vulnerabilities
Perks/benefits: Career development Competitive pay Equity Health care Insurance Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs