About the position
Innovation starts from the heart. At Edwards Lifesciences, we're dedicated to developing ground-breaking technologies with a genuine impact on patients' lives. At the core of this commitment is our investment in cutting-edge information technology. This supports our innovation and collaboration on a global scale, enabling our diverse teams to optimize both efficiency and success. As part of our Product Security team, your expertise and commitment will help facilitate our patient-focused mission by developing and enhancing technological solutions. Many structural heart patients suffer from heart failure with limited options. Our Implantable Heart Failure Management (IHFM) team is at the forefront of addressing these unmet patient needs through pioneering technology that enables early, targeted therapeutic intervention. Our innovative solutions are not just transforming patient care but also creating a unique and exciting environment for our team members. It's our driving force to help patients live longer and healthier lives. Join us and be part of our inspiring journey.
Responsibilities
- Provide design and architecture guidance for product level cyber security initiatives
- Serve as the technical lead and subject matter expert for product security initiatives
- Design and implement robust security measures in collaboration with security professionals
- Oversee AWS Security (Amazon Web Services Security) practices to protect cloud-based infrastructure
- Conduct regular security assessments and audits to identify and mitigate risks
- Stay updated with the latest security trends and threats to proactively address potential vulnerabilities
- Develop security design patterns and architectural models that ensure repeatable consistent architecture
- Develop defined information security best practices and architectural models to ensure compliance with enterprise-wide product security policies and standards
- Serve as business liaison and lead advisor for multiple business units; coordinate with cross-disciplinary teams
Requirements
- Bachelor's Degree in related field + 8 years of related experience in IT / Computer Science / networking engineering / R&D
- AWS Security Certification or hands-on expertise
- Product Security hands-on expertise
- Strong AWS, DevOps, and Cloud experience
Nice-to-haves
- 7+ years' experience with one or more of the following cybersecurity areas: Secure design, product security, application security, cloud security, system security, platform security
- Extensive experience with AWS Security
- Experience with NIST 800-53 requirements
- Product Security experience in the Medical Device industry
- Expertise in DevSecOps/DevCloudSecOps, integrating security into CI/CD pipelines and cloud environments
- Certifications such as CISSP, CISM, CSSLP, GIAC, MCSE, or CCSP
- Experience advising startups in the med tech and pharma industries
- Secure Software Development Life Cycle (SSLDC) experience
- Knowledge of FDA guidelines
- Writing testable cybersecurity requirements
- Risk management lifecycle experience
- Proficiency in software development, integration, and debugging
- Excellent verbal and written communication skills
- Experience drafting technical documentation
- Familiarity with IEC-80001-2-2 standards
- Experience with Microsoft Visual Studio using C# under .Net
- Experience with Windows Embedded OS and its cybersecurity toolkit
Benefits
- Competitive salaries
- Performance-based incentives
- Wide variety of benefits programs to address the diverse individual needs of our employees and their families
