Sr. CyberSecurity Analyst

Overview

JOB SUMMARY:

At Spacelabs Healthcare, we are on a mission to provide continuous innovation in healthcare technology for better clinical and economic outcomes. Our scalable solutions deliver critical patient data across local and remote systems, enable better-informed decisions, increase efficiencies, and create a safer environment for patients.

Why work at Spacelabs? Because lives depend on you

We are looking for an experienced and driven Senior Cybersecurity Analyst who is looking to put their cybersecurity, software engineering, audit and compliance experience, technical expertise knowledge to execute and deliver on existing and strategic compliance activities related to Spacelabs' cloud and medical device product compliance. As a Senior Cybersecurity Analyst, you will play a key role in continuing to build and maintain scalable and efficient processes related to control assessments with auditors, control remediation, and continuous monitoring. You will also be responsible for monitoring any changes to regulatory and industry standards security requirements.

You will work with all functions of this rapidly evolving business whose products save lives. You will work directly with key stakeholders to drive continuous improvement, communication, and education with Spacelabs' internal and external customers. The right person will be excellent at communicating vertically and horizontally across the company and will be comfortable explaining Spacelabs' compliance posture to both internal and external customers, auditors, and providing technical and creative guidance to technical teams.

Responsibilities

Cybersecurity Program:

Collaborate with our partners, Government Accreditors, Sales Team, and Accreditors to effectively communicate our compliance position and program.Build relevant management dashboards and actively contribute technical expertise to compliance reporting and analyses.Identify potential compliance gaps and lead work streams needed to address them.Participate in security risk management process and maintain our cloud risk register.Coordinate cybersecurity projects and with other R&D and QA/RA Projects.Periodically provide project updates and security compliance/risk health scorecards to key stakeholders in a timely fashion.Drive improvements in existing processes and develop new innovative and efficient solutions.Communicate gaps to cybersecurity management and coordinate with cross functional team meetings to remediate and close control gaps.Build relationships with internal and external stakeholders.Accurately and effectively communicate our compliance position and programs to customers.Support privacy initiatives (such as HIPAA, GDPR)Lead efforts to respond to customer or sales inquiries related to cyber security capabilities associated with our products. Work to develop standard collateral that describes the cyber security capabilities and optimum implementation guidelines to ensure products are secure.

Product Security Program:

Prepare and document local Standard Operating Procedures (SOP) and protocols to help ensure the continued security by supporting and usedEnsure that defined processes address effective and efficient integration of cyber security engineering with engineering design and Quality control functions. A in management of security-related risks, including reporting on outcomes and proposing further security improvements.Lead efforts to respond to customer or sales inquiries related to cyber security capabilities associated with our products. Work to develop standard collateral that describes the cyber security capabilities and optimum implementation guidelines to ensure products are secure. Coordinate customer technical reviews, and/or requests for technical assessments.Coordinate customer communications with legal, marketing, service, and sales related to cyber security announcements. Prepare and document standard operating procedures and protocols to help ensure the security of our products as they are designed, developed, supported, and used.Mentor the cybersecurity team members.All other duties as assigned.Qualifications

Who You Are?  

10+ years' experience in an equivalent technology risk and compliance related role and manage upto 3-4 members teamExtensive knowledge and experience with security certification and accredition programs.Strong experience working with cybersecurity and privacy regulatory compliance/audit initiatives.Subject Matter Expert cybersecurity, privacy and cloud computing and the acronyms that come with it - Amazon Web Services (AWS), SaaS, IaaS, PaaS, etc.Knowledgeable about software development processes and SW development tools such as JIRA, Confluence, Azure DevOPs.Team Player who can demonstrate the ability to collaborate both internally and externally.Excellent written, verbal communication and presentation skills.Find creative solutions from broadly defined problems or directives.Willingness to wear different hats and work on areas where needed.Amazing organizational skills with a drive to succeed in a fast-paced environment.Demonstrate ability to work as part of a team and independently.Demonstrate ability to performing under pressure when working to tight deadlines.Able to calmly coordinate activities when working under short turnaround times.Experience performing Project Management responsibilities to plan and track execution of assigned workload.Ensure that all project tasks and deliverables conform to the appropriate processes and procedures.Uphold the Company's core values of Integrity, Innovation, Accountability, and Teamwork.Demonstrate behavior consistent with the Company's Code of Ethics and Conduct. Ability to hustle, get stuff done, and has strong integrity - make mom proudPosition will require working evening hours (support morning hours of Pacific Standard Time).

Duties may be modified or assigned at any time to meet the needs of the business.

Big audit firm Experience or Management Consulting Experience preferred.CISA, CISM, CIA, CISSP or other related certifications a plus.Cybersecurity, Information Security and/or Privacy certification.Project Management Certification.Experience in working in a healthcare delivery organization or a medical device manufacturer is desirable.

---