Key Responsibilities
• Assess existing security architecture and practices for digital and cloud environments, identifying gaps and improvement areas.
• Define and recommend integration strategies with IT systems and broader enterprise ecosystems.
• Develop and drive regulatory compliance roadmaps, including standards such as ISO, SOC 2 Type II, and SOC 3.
• Support onboarding of hospitals and clinics into the Medtronic portal and digital ecosystem by ensuring adherence to security requirements.
• Identify common compliance-related queries from healthcare providers (HCPs) and design automated response mechanisms.
• Perform threat modeling and risk assessments for digital and cloud platforms.
• Conduct vulnerability assessments, including signal monitoring and risk identification.
• Implement and align cybersecurity standards and frameworks such as NIST, SOC 2, GDPR, and ISO.
• Design and maintain secure architecture for digital and cloud ecosystems.
• Manage security risk assessment and vulnerability management processes.
• Support customer security requirements, including responding to compliance questionnaires, providing demonstrations, and integrating security controls.
Mandatory Skills & Expertise
• Application Security (SAST, DAST, Secure Coding) - Expert, hands-on experience required
• OWASP Tools & Practices - Expert, strong knowledge of OWASP Top 10
• NIST Security Framework - Expert, implementation & compliance experience
Preferred Skills
• Experience with healthcare or medical device industry security requirements
• Familiarity with cloud platforms (Azure, AWS, Google Cloud Platform) security architecture
• Strong understanding of GDPR and data privacy regulations
• Excellent communication and stakeholder management skills
Qualifications
• Bachelor&s or Master&s degree in Computer Science, Information Security, or related field
• Relevant certifications such as CISSP, CISM, CEH, or equivalent are preferred
For applications and inquiries, contact:
[email protected]