Staff Cyber Security Engineer

$104,300 - $208,500/Yr

Abbott Laboratories - Los Angeles, CA

posted 3 months ago

Full-time - Mid Level
Remote - Los Angeles, CA
10,001+ employees
Miscellaneous Manufacturing

About the position

This position works out of our Sylmar, CA location or can be performed remotely within the Cardiac Rhythm Management division. As a global leader in Cardiac Rhythm Technologies, Abbott focuses on innovative technologies that can improve the way doctors treat people with heart arrhythmias, or irregular heartbeats. As the Staff Cyber Security Engineer, you will be on the front lines of the emerging area of medical device cybersecurity manufacturing. You will be an integral member and technical leader within a team responsible for creating, deploying, and monitoring cybersecurity and information security solutions for medical devices. This role involves interacting with both external and internal cybersecurity researchers to identify and remediate vulnerabilities within products and manufacturing systems. You will work directly with Research and Development (R&D) and Information Technology teams to ensure that all relevant security risks are identified and evaluated, and that appropriate and well-balanced solutions are implemented. Additionally, you will develop project security management deliverables for regulatory bodies to comply with standards and guidance documents, create and implement plans to address new standards and guidance, and successfully communicate cybersecurity technology to customers, regulatory bodies, and other stakeholders. In this role, you will lead and perform product manufacturing cybersecurity-related activities ranging from incident response to vulnerability assessments and mitigation implementation. You will develop and perform manufacturing intrusion detection activities, lead manufacturing risk assessments in conjunction with product R&D teams, and develop and recommend specific security controls for product/system-wide security needs. It is essential to ensure that recommended security controls are feasible for embedded and constrained environments, including prototyping where appropriate. You will also participate in the creation and testing of product manufacturing security-related requirements and processes, evaluate and test security risks on programs across the entire development life cycle, and manage security-related deliverables for regulatory bodies, ensuring compliance with key standards and guidance documents. Working with third-party manufacturers to ensure appropriate manufacturing cybersecurity processes are in place will also be part of your responsibilities. You will contribute to the understanding of current industry best practices and how they can be applied to the Cardiac Rhythm Management products, develop advanced technical ideas, and guide their development into final products. Furthermore, you will execute and assist activities to sustain and develop internal and external partner security testing capabilities in alignment with testing strategies, maintain a high level of technical knowledge on security, and champion consistent implementation of the Security Development Life Cycle across projects.

Responsibilities

  • Lead and perform product manufacturing cybersecurity-related activities ranging from incident response to vulnerability assessments to mitigation implementation.
  • Develop and perform manufacturing intrusion detection activities.
  • Lead manufacturing risk assessments in conjunction with product R&D teams and develop and recommend specific security controls for product/system-wide security needs.
  • Ensure recommended security controls are feasible for embedded/constrained environments, including prototyping where appropriate.
  • Participate in the creation and testing of product manufacturing security-related requirements and processes.
  • Evaluate and test security risks on programs across the entire development life cycle, including market-released products.
  • Manage security-related deliverables for regulatory bodies, ensuring compliance with key standards/guidance documents.
  • Work with third-party manufacturers to ensure appropriate manufacturing cybersecurity processes are in place.
  • Contribute to the understanding of current industry best practices and how they can be applied to the CRM Products.
  • Develop advanced technical ideas and guide their development into final products.
  • Execute/Assist activities to sustain/develop internal and external partner security testing capabilities in alignment with testing strategies.
  • Maintain a high level of technical knowledge on security.
  • Champion consistent implementation of the Security Development Life Cycle across projects.

Requirements

  • Bachelor's in engineering or sciences.
  • 7+ years of related experience with a BS Degree in Engineering or Sciences.
  • 5+ years of related experience with an MS Degree in Engineering or Sciences.
  • Experience as an analyst, engineer, developer, or architect with core cybersecurity responsibility and knowledge in two or more of the following areas: IoT (embedded) devices and systems, Cloud systems architecture and security, Enterprise and local network infrastructure security, Large-scale application architecture and security, Mobile device application architecture and security.
  • Programming skills in one or more of the following: C, C++, Python, Java, .NET, Go, Ruby, Scala, and/or Bash.
  • OS systems-level experience within one or more of the following: Linux, Windows, Android, iOS.

Nice-to-haves

  • Medical device manufacturing experience.
  • CISSP Certification.
  • Security incident management experience.
  • PKI Key management.
  • Token-based authentication systems.
  • Medical device technology understanding of information security practices, risk management processes, cybersecurity principles, and incident response methodologies.
  • Ability to develop and grow productive, trusting, and open relationships with a wide variety of constituencies.
  • Leadership and collaboration skills with the ability to communicate complexity in a clear manner with internal and external stakeholders.

Benefits

  • Free medical coverage for employees via the Health Investment Plan (HIP) PPO.
  • An excellent retirement savings plan with high employer contribution.
  • Tuition reimbursement, the Freedom 2 Save student debt program, and FreeU education benefit - an affordable and convenient path to getting a bachelor's degree.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service