Instrumentation Laboratory - Bedford Product Cyber Security Officer in Bedford, Massachusetts

Founded in 1959, Instrumentation Laboratory (IL) is a global leader in the development, manufacturing and distribution of diagnostic solutions for Acute Care Diagnostics, patient blood management and Hemostasis testing. Our success comes from a specific focus in these rapidly evolving diagnostic areas, our commitment to customers, and our dedication to innovation and quality. We’re passionate about providing medical professionals the most valuable and complete solutions to enhance patient care.

As an integral part of Werfen, a global healthcare company dedicated to delivering the highest quality in vitro diagnostic products, IL is supported by significant resources, outstanding scientific expertise and a tremendous knowledge base. IL is headquartered in Bedford, MA, USA.

If you are interested in constantly learning and being challenged on a daily basis we encourage you to submit your resume or CV.

Position Summary

This position will lead the Product Cyber Security Organization. The Product Cyber Security Officer will set overall strategy for the product cyber security program, align security initiatives within business goals, and ensure integration of key product security initiatives into other business support functions across IL. Together with other team members, the Product Cyber Security Officer will be responsible for the cyber security of IL on-market and pre-market products, processes (governance and compliance) and managing consistent communication to IL locations and the field.

This position reports to the Director of Software Engineering within the Research and Development (R&D) Organization. The Product Cyber Security Officer will have frequent interaction with the Senior Management Team as well as a cross functional team including, but not limited to, product development teams, marketing teams, and regulatory and quality assurance teams to define, align and drive security initiatives.

Key Accountabilities include but are not limited to:

  • Responsible for leading cross functional team members to complete all aspects of product cyber security initiatives.

  • Responsible for secure software development for all IL on-market and pre-market products.

  • Represent cyber security within product development teams to ensure cyber security is being designed into products.

  • Responsible for cyber security threat management. Complete continuous technical analysis and monitoring for cyber security signals.

  • Responsible for customer assurance. Manage key interface contacts with customers. May include completion of security inquiries, intake of vulnerability reports, provide consistent guidance to staff and customers.

  • Responsible for governance, risk and compliance of IL processes. Establish product security policy and governance, documentation of process for all domains. Conform compliance to existing industry policies and guidelines.

Budget managed:

  • Manage headcount

  • Expense & capital budget

Internal Networking/Key relationships

  • Supervises and coordinates technical aspects with the different team technical leads.

  • Other internal interfaces

Skills & Capabilities:

  • Leadership

  • Managing Vision and Purpose

  • Developing Direct Reports and others (e.g.: holds people accountable, teamwork, delegation, communication, impact and influencing, etc.)

  • Time Management

  • Project Management

  • Oral and Written Communications

Min Knowledge & Experience required for the position:

  • Requires Bachelor’s degree in Computer Science, Computer Engineering or the equivalent combination of related training, proficiency and experience. MBA or Master’s degree preferred.

  • Minimum of 5 years of experience leading product cyber security teams and projects and risk management activities – in medical device or healthcare domain.

  • Cyber security training and certification such as CISSP/CISM.

  • Experience in cross-functional cyber security activities including intrusion detection, security tools and technology, regulation compliance, audit/control processes and customer assurance.

  • Experience in incident handling and response.

  • Experience in writing policy and managing compliance.

  • Experience in designing software development products using SDLC (e.g.: Agile, DevOps)

  • Familiar with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines, 95/46/ED, HIPPA, GDPR, ISO/TS 14265, 21CFR820, SB1386, etc.)

  • Understanding of Windows and Linux operating systems and networking required.

  • Domain specific standards and approaches on privacy and product security (e.g.: HL7, ASTM, POCT-1A) preferred.

International Mobility:

  • Required: No

Travel requirements:

  • Minimal domestic and international travel required (<20% time)

If you are interested in constantly learning and being challenged on a daily basis we encourage you to submit your resume or CV.

Instrumentation Laboratory appreciates and values diversity. We are an Equal Opportunity/Affirmative Action Employer M/F/D/V

Werfen is a global leader in in vitro diagnostics (IVD) in the specialties of Hemostasis, Acute Care Diagnostics and Autoimmunity. Our core business is dedicated to R&D, manufacturing and distribution of diagnostic systems for hospitals and clinical laboratories. Our other areas of expertise include Original Equipment Manufacturing, Clinical Software, Clinical Chemistry, Infusion Therapy, and Medical Devices and Scientific Instrumentation Distribution.

We operate directly in over 30 countries and in more than 100 territories through distributors. In 2016, our turnover was approximately 1.2 billion euros and we had an average workforce of 4,400 people. Currently, we are over 5,000 employees.

www.instrumentationlaboratory.com/

Job ID: 2019-2363

Shift: 1st

Street: 180 Hartwell Road