Product Security Engineer
About the role
The Product Security Engineer 3 position within our DevSecOps Engineering Center of Excellence (R&D) department is pivotal in building and enhancing security in our products and services. This role involves monitoring industry security threats, performing vulnerability assessments, assisting with product development, developing and executing test procedures, educating sales and service forces, and interacting with engineering and field service resources.
Responsibilities
- Maintain awareness of emerging cybersecurity threats and assess risks to Hologic products.
- Conduct and document vulnerability assessments to identify malicious attacks on Hologic products and provide support to product teams.
- Collaborate with product development teams to address security and network vulnerability issues.
- Create and automate test procedures for OS patches and anti-virus software based on lab environments.
- Educate sales and service teams on network security and virus protection.
- Work with software engineers to define and implement security requirements.
- Communicate directly with engineering and field service resources to ensure Hologic networked products meet customer expectations for performance.
Requirements
- Master’s or Bachelor’s degree in Computer Science, Management Information Science, Engineering, or a related technical field with 4-8 years of relevant experience in computer and network security, computer networking administration, Microsoft Windows and Linux operating systems, software application testing and maintenance, and cybersecurity risk assessment.
- Experience in enterprise computer network infrastructure.
- Good understanding of network design concepts and working knowledge of security analysis and protection tools.
Qualifications
- Desirable but not essential: Medical information system administration, software verification in a regulated industry, PACS, DICOM, ASTM, HL7, EMR, EHR, medical informatics, technical support to field service and/or end-users.
- Certifications in security-related studies are strongly preferred (e.g., CISSP).
- OS (i.e., Windows, Linux) and networking (i.e., Cisco) certifications are preferred.
- Experience in the healthcare industry (provider or medical equipment vendor) is preferred.
Pay
The annualized base salary range for this role is $109,900 to $171,800 and is bonus eligible. Final compensation packages will ultimately depend on factors including relevant experience, skillset, knowledge, geography, education, business needs, and market demand.
Schedule
Final schedule details will be discussed during the interview process.