"Alerted.org

Job Description

We are seeking a Cybersecurity Engineer to join a cutting-edge team developing Class III implantable medical devices. This role is critical to ensuring the security, privacy, and integrity of life-sustaining technologies, including implantable pulse generators, external controllers, and cloud-connected platforms.

Design and implement cybersecurity controls for implantable and external medical devices in compliance with FDA premarket and post-market cybersecurity guidance, ISO/IEC 27001, and UL 2900 standards.

Conduct threat modeling, vulnerability assessments, and penetration testing across embedded systems, mobile apps, and cloud interfaces.

Collaborate with R&D, Software, Systems, and Regulatory teams to integrate secure-by-design principles throughout the product development lifecycle.

Develop and maintain security risk assessments, SBOMs (Software Bill of Materials), and incident response plans.

Support regulatory submissions by preparing cybersecurity documentation and responding to agency inquiries.

Monitor emerging threats and vulnerabilities relevant to implantable devices and recommend mitigation strategies.

Contribute to security architecture reviews, code reviews, and secure firmware/software development practices.

This position pays $80 hourly

We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to Human Resources Request Form (https://airtable.com/app21VjYyxLDIX0ez/shrOg4IQS1J6dRiMo) . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Skills and Requirements

Bachelors or Masters degree in Cybersecurity, Computer Engineering, Electrical Engineering, or related field.

5+ years of experience in cybersecurity engineering, with at least 2+ years in the medical device or regulated industry.

Deep understanding of embedded systems security, wireless communication protocols (e.g., BLE, NFC), and cryptographic methods.

Familiarity with FDA cybersecurity guidance, IEC 62304, ISO 14971, and risk management frameworks (e.g., NIST RMF, MITRE ATT&CK).

Experience with penetration testing tools (e.g., Metasploit, Burp Suite), static/dynamic code analysis, and secure boot/firmware validation.

Strong documentation and communication skills for cross-functional collaboration and regulatory engagement.

Certifications such as CISSP, CEH, or GIAC are a plus. null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to [email protected].