Job Title:
Product Security Manager, Threat Research
About the Role:
This role requires a dynamic leader with a deep understanding of threat hunting, threat research, and cybersecurity vulnerabilities specific to the healthcare industry.
You will lead a specialised team dedicated to proactive threat research, analysing emerging cyber threats, and testing and identifying potential vulnerabilities in our deployed devices.
Main Responsibilities:
1. Evolve and enhance our continuous monitoring and analysis of threat intelligence sources to identify potential security risks proactively.
2. Maintain detailed records of threat research activities, vulnerability assessments, and incident responses.
3. Oversee the identification, assessment, and mitigation of vulnerabilities in products and infrastructure.
4. Perform risk assessments to evaluate the potential impact of vulnerabilities and prioritise remediation efforts.
5. Coordinate with Product Security Officers, development, engineering, and support teams to resolve identified vulnerabilities promptly.
6. Ensure all post-market vulnerability management practices comply with relevant regulatory requirements and industry standards (e.g., FDA, ISO/IEC 27001).
7. Foster strong relationships with internal R&D teams, external partners, and industry organisations to stay informed about the latest cybersecurity trends and developments.
8. Provide expert guidance and support to cross-functional teams on security best practices and vulnerability management.
9. Produce regular reports on the status of post-market vulnerability management efforts and key performance metrics.
10. Ensure the continuous improvement of threat intelligence processes, tools, and technologies.
11. Establish performance metrics, baseline team activity and work to continuously improve operations.
12. Cultivate strong team unity and ensure alignment with organisational goals through effective communication, motivation, and leadership.
About You:
1. Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field; a master's degree is a distinct advantage.
2. 3+ years of management experience in cybersecurity, with a focus on threat hunting and threat research.
3. Strong knowledge of cybersecurity threats, vulnerabilities, and attack vectors.
4. Experience with threat intelligence platforms, threat hunting tools, and cybersecurity frameworks.
5. Strong understanding of development languages including: C# and the .NET framework with additional experience in either Python, JavaScript, or C/C++.
6. Excellent leadership, communication, and interpersonal skills.
7. Ability to work in a fast-paced, dynamic environment and prioritise multiple priorities.
8. Strong analytical and problem-solving abilities.
9. Relevant certifications such as CISSP, CISM, CEH, or GIAC are a plus.