Senior Architect, Product Security
Role details
Job location
Tech stack
Job description
You'll lead the secure design, architecture, implementation, operation, and maintenance across the product ecosystem. This includes cloud technologies, connected web and mobile applications, embedded devices, and systems. Ideal candidates possess both broad and deep technical knowledge. This is a highly collaborative role, and you will work in close collaboration with product management, software engineering, data intelligence & engineering, UX, R&D, quality, regulatory, and global IT to embed security into every stage of the product lifecycle., * Serve as the technical lead and subject matter expert for product security initiatives
- Develop defined product security best practices and architectural models to ensure compliance with enterprise-wide product security policies and standards
- Lead security architecture for products spanning cloud platforms, web/mobile apps, and embedded devices.
- Define and implement secure design principles and patterns for product development.
- Partner with product teams to integrate security into requirements, design, and development.
- Partner with DevSecOps, embedding security into CI/CD pipelines, cloud, and data platforms.
- Oversee cloud security architecture (AWS) for product platforms.
- Conduct threat modeling, risk assessments, and security reviews for new features and releases.
- Develop security frameworks and reusable components for consistent implementation.
- Stay ahead of emerging threats and technologies to proactively strengthen product security posture.
- Collaborate with Quality, Regulatory, and Compliance teams to meet industry standards (FDA, IEC, NIST)
- Design, document or improve key processes for the service function
- Develop methodology and framework for the product security service or processes, to make the outcomes repeatable, consistent, and standard
- Serve as a business liaison and advisor for various business units
Requirements
- Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, or related field plus 8 years of related experience, or equivalent work experience based on Edwards criteria
- AWS Security Certification or hands-on expertise
- Product Security hands-on expertise
What else we look for (Preferred):
- Hands-on experience in product security architecture for cloud-based and connected products
- Proven ability to work across product teams and influence secure design decisions.
- Experience with one or more of the following cybersecurity areas: Secure design, product security, application security, cloud security, system security, platform security
- Extensive experience with AWS Security
- Experience with NIST 800-53 requirements.
- Product Security experience in the Medical Device industry
- Certifications such as CISSP, CISM, CSSLP, GIAC, MCSE, or CCSP
- Secure Software Development Life Cycle (SSLDC) experience
- Knowledge of FDA guidelines
- Writing testable cybersecurity requirements
- Risk management lifecycle experience
- Excellent verbal and written communication skills.
- Experience drafting technical documentation
- Familiarity with IEC-80001-2-2 standards
Benefits & conditions
Aligning our overall business objectives with performance, we offer competitive salaries, performance-based incentives, and a wide variety of benefits programs to address the diverse individual needs of our employees and their families.
For California, the base pay range for this position is $145,000 to $205,000 (highly experienced).
