Product Cybersecurity Expert (m/f/d) \\xe2\\x80\\x93 DevSecOps / ISO27000 series / Network technology / CISSP / English
Project: For our customer Roche Diagnostics International AG based in Rotkreuz we are looking for a highly qualified Product Cybersecurity Expert (m/f/d)
Background:
We are passionate about transforming patients\\xe2\\x80\\x98 lives and we are fearless in both decision and action \\xe2\\x80\\x93 we believe that good business means a better world. That is why we come to work each day. We commit ourselves to scientific rigor, unassailable ethics, and access to medical innovations for all. We do this today to build a better tomorrow.
As a Product Cybersecurity Expert you will be part of the Product Security & Privacy Operations department in the Product Security Engineering team. The main goal of PSPO is to deliver product security and privacy that our regulators require, customers expect and our patients deserve.
The perfect candidate: We are seeking a highly motivated professional with experience in security and privacy to join our dynamic team. As a PSPO member, you will help with SDLC activities such as threat modeling, cybersecurity risk management and laying out remediation strategies for vulnerability to ensure an effective implementation of cybersecurity in Roche Diagnostics products. You will be working together with product teams with interdisciplinary backgrounds especially during design and development phases of the product life cycle, providing cybersecurity subject matter expertise.
Tasks & Responsibilities:
- End-to-end activities that belong to the secure software development lifecycle for our products. Defining adequate cyber security mitigations, identifying threats, assessing risks, definition of security testing methods and scope, and track remediation actions of security findings during development
Conduct planning and execution of 3rd party review activities (Verification & Validation) related to Cybersecurity and Software Architecture
Proactively identify flaws in our product security, assess patient safety and business risk, and advise product managers on remediation steps
Advice product teams to plan and implement adequate cybersecurity maintenance activities throughout the product\\xe2\\x80\\x99s lifecycle
Support development and maintenance of processes and tools for threat modeling, cybersecurity risk assessment, security testing with penetration testing tools, like Kali Linux, OWASP ZAP, Nessus and others
Must Haves:
- Minimum 5 years of related work experience in product security, with demonstrated experiences in areas such as: SDLC in Software Development, Network technology, Cryptography, Cloud computing technologies, DevSecOps methodologies etc. threat modeling, attack surface analysis, risk management, security testing, penetration testing and remediation activities. security by design and default concepts, OS hardening system and cloud infrastructure hardening and monitoring
Preferable certifications: CISSP
Working knowledge of security controls, guidelines and standards (e.g.ISO27000 series, OWASP, CSA CCM, CIS 20 Critical Security Controls, SOC 2, and NIST)
Good understanding of privacy and data protection regulations (e.g., HIPAA, EU GDPR)
Demonstrated soft skills: problem solving, leadership, communication, teamwork,
flexibility and adaptability
strong communication skills in English(min. C1 Level), German would be a plus
Nice to have:
- experience in a medical device company Reference Nr.: 922833TP Role: Product Cybersecurity Expert (m/f/d) Industrie: Pharma Workplace: Rotkreuz Pensum: 80-100% Start: 01.10.2023 Duration: 12++ Deadline: 27.08.2023
If you are interested in this position, please send us your complete dossier via the link in this advertisement. If this position does not fit your profile and you wish to be considered for another position directly, you can also send us your dossier via this ad or to jobs[at]itcag[dot]com.
Contact us for more information about our company, our positions or our attractive Payroll-Only programme: +41 41 760 77 01.
About us:
ITech Consult is an ISO 9001:2015 certified Swiss company with offices in Germany and Ireland. ITech Consult specialises in the placement of highly qualified candidates for recruitment in the fields of IT, Life Science & Engineering.
We offer staff leasing & payroll services. For our candidates this is free of charge, also for Payroll we do not charge you any additional fees.
The post Product Cybersecurity Expert (m/f/d) appeared first on ITech Consult.