Neuropace - Mountain View, CA

posted about 2 months ago

Full-time - Mid Level
Mountain View, CA
Computer and Electronic Product Manufacturing

About the position

The Cybersecurity Analyst at NeuroPace will play a crucial role in managing and developing security measures for software applications and hardware devices. This position involves collaboration with cross-functional teams to integrate security into the design and development processes, ensuring the protection of sensitive information and compliance with regulatory standards. The analyst will also be responsible for monitoring security vulnerabilities, conducting threat assessments, and responding to security incidents, all while supporting the advancement of NeuroPace's Cybersecurity program.

Responsibilities

  • Participate in the design and develop security measures for software applications and hardware devices.
  • Assist with the security by design principles for enhancements and development of NeuroPace products.
  • Collaborate with cross-functional teams, including Research & Development, Quality and Regulatory affairs to integrate security measures into the design and development processes.
  • Work with IT Operations and Research & Development teams to help cybersecurity strategy for enterprise security architecture and the implementation of appropriate safeguards and controls.
  • Integrate security tools and frameworks into the development lifecycle.
  • Regularly monitor official CVE databases and Microsoft security advisories for new vulnerabilities related to Windows operating systems.
  • Analyze CVE reports to assess the severity and potential impact on the organization's IT infrastructure.
  • Prioritize CVEs based on risk, exposure, and relevance to the organization's environment.
  • Coordinate with IT and Research & Development teams to schedule and deploy Windows updates and patches that address identified CVEs.
  • Ensure timely application of security patches to mitigate vulnerabilities in the Windows ecosystem.
  • Maintain detailed records of identified CVEs, remediation actions, and patch deployment activities.
  • Perform regular security assessments and vulnerability testing.
  • Assist with comprehensive threat modeling and cybersecurity risk assessment for medical devices in alignment with FDA guidelines and best practices.
  • Identify and recommend remediations for security vulnerabilities in systems and applications.
  • Perform risk assessments of internal and external applications/solutions to determine their adherence to security controls, NeuroPace's policies, standards and industry best practices, and maintain ongoing safeguards and controls.
  • Stay updated with the latest security threats and develop strategies to counteract them.
  • Monitor security alerts with AWS Security Hub and other software, conduct thorough investigations, and respond to alerts in a timely manner.
  • Conduct root cause analysis of security incidents and provide comprehensive reports.
  • Develop and maintain incident response plans and procedures.
  • Work closely with IT, development teams, and other stakeholders to ensure security best practices are followed.
  • Provide training and guidance on security protocols and procedures.
  • Assist in the development of security policies and compliance initiatives.
  • Support the advancement of NeuroPace's Cybersecurity program to ensure consistent detection, analysis, response, and monitoring of cybersecurity threats.
  • Maintain detailed documentation of security measures, incidents, and solutions.
  • Generate regular reports on security status, vulnerabilities, and remediation efforts.

Requirements

  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
  • Minimum of 2-4 years of experience in information security or related field.
  • Knowledge of security tools and platforms (AWS Security Hub, Microsoft Purview).
  • Proven experience with security tools and technologies (e.g., IDS/IPS, SIEM).
  • Understanding of information security regulatory requirements (e.g., HIPAA, FDA, CISA).
  • Strong understanding of encryption methods, authentication, and access control.
  • Experience with cloud security solutions (e.g., AWS, Azure).
  • Familiarity with security frameworks (e.g., NIST, ISO 27001).
  • Understanding of security certifications (e.g., HITRUST, SOC 2).
  • Excellent analytical and problem-solving abilities.
  • Strong communication and interpersonal skills.
  • Ability to work independently and as part of a team.

Nice-to-haves

  • Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable.

Benefits

  • Medical, Dental & Vision Insurance
  • Voluntary Life
  • 401K
  • RSU
  • 529 plan
  • ESPP Program
  • Health & Wellness Program
  • Generous Paid Time Off plus eleven paid holidays
  • FSA & Commuter Benefits
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service