This position is with our client which is one of the world’s leading medical technology companies.
Job Description
Experienced and motivated professional who is ready to take
challenges and work with globally distributed teams to provide cyber security
recommendations and solutions for cutting-edge medical devices
Skill Set
Primary
·
4-6 years’ experience in Security Architecture, Data security,
Mobile Security and Web Application Security
·
1-2 years’ experience in Intrusion prevention system (IPS) and
Penetration Testing
·
Understanding of Authentication Strategies, Firewalls, IPSec VPN
appliances
·
Sound knowledge on Malware Analysis and Vulnerability Assessment
·
Understanding of one or more security standards/frameworks like
NIST 800-53, IEC80001-2-8, IEC 27002, ISO 27799, IEC 15408-2, IEC 62443-3-3
·
Knowledge around Hardening Windows and Linux operating systems
·
Knowledge of one or more programming languages, scripting etc.
Additional
·
Understanding of network infrastructure including routers,
switches, firewalls, iSCSI storage systems and SSL
·
Understanding of Quality standards e.g. IEC 62304, IEC 60601,
21CRF 820
·
Certifications from vendors including Microsoft, VMware, Dell
SonicWALL and others
·
Knowledge of Computer Forensics
·
Knowledge of Cloud base environments like Azure and Amazon Web
Services
·
Published white papers/ blogs on Security Research
·
Strong written and oral communication skills
Role & Responsibilities
·
Perform risk analysis and develop mitigation strategies
·
Work closely with cross-functional teams including Quality and
Marketing in driving alignment around product Cybersecurity and HIPAA
compliance objectives
·
Provide input to project management on scheduling, milestone
achievement, and project challenges
·
Manage all facets of infrastructure and device security,
including systems hardening, automated and manual penetration testing,
automated vulnerability scanning for Compliance and issue remediation
·
Perform manual and automated code review for complex Desktop,
Web and Mobile applications to identify security flaws
·
Integrate automated security testing into all phases of SDLC
·
Provide security training and education to developers,
management, technical staff and users
·
Discover anomalies, trends and potential threats within the data
·
Automate routine tasks and extract valuable data using various
scripting languages such as PowerShell, Ruby or Python
·
Support device HIPAA features and design considerations
·
Configure and maintain security systems, including firewalls,
web application firewalls, IDP/IPS systems, VPN appliances and multi-factor
authentication
·
Handle documentation requests from legal and sales e.g. MDS
forms etc. on an as needed basis.
·
Additional Job Description
Education:
·
B.Tech/B.E/M.C.A/M.Tech/MS. - Computers, Electronics/Telecommunications
Experience: 8 -10 Years