Product Cybersecurity Purple Team Leader

Description

Position Summary & Responsibilities:

This role is based in Salt Lake City, UT and cannot be fully remote.

As the Product Cybersecurity Purple Team Leader, you will lead a team of cybersecurity professionals to enhance the security posture of our products. You will combine the offensive strategies of red teaming with the defensive tactics of blue teaming to identify vulnerabilities and improve our security measures. This senior role involves overseeing and managing cybersecurity activities, coordinating a team of 2 within a global team of 10, without direct personnel and HR responsibilities. The position will report directly to the North American Associate Director of Cybersecurity.

• Product Security:
  • Optimize and standardize third-party penetration tests as a service to our product development teams.
  • Coordinate annual post-market penetration tests across all devices.
  • Coordinate in-project penetration tests of all systems under development.
  • Enhance the vulnerability detection and monitoring process by optimizing active scanning, configuration monitoring, and the passive monitoring of software bills of material
  • Optimize KPI and detailed reporting from all testing and monitoring activities for the medical devices within scope
  • Ensure product development teams are adequately empowered and supported in their security by design and post market activities
• Enterprise Security:
  • Manage annual third-party penetration tests.
  • Conduct preliminary forensic investigations as requested
  • Engage in threat hunting activities.
  • Support the Security Operations Center (SOC) passive monitoring program, including North American remediation efforts and exception management as needed
  • Augment annual third-party testing with ad-hoc internal red team activities as directed
• Cross-Domain Responsibilities, Security by Design:
  • Work closely with product development teams to integrate security best practices into the product lifecycle.
  • Collaborate with Analysts and Architects of product and enterprise solutions to enhance security by design
  • Provide pragmatic suggestions for the mitigation and control of any vulnerabilities and security risks identified
  • Assist in Cybersecurity Risk Assessment and Risk Management processes.
• Leadership:
  • Lead and mentor a team of cybersecurity experts, fostering a collaborative environment.
  • Coordinate a team of 2 within a global team of 10.
  • Contribute to the budget and resource management of all activities with scope
  • Manage the activities of external partners and consultants as needed
• Continuous Improvement: Stay updated with the latest cybersecurity trends and technologies to continuously enhance the team's capabilities.

Education, Skills, & Experience:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field (Advanced degree preferred) with 5 years’ experience in cybersecurity with at least 2 years in a leadership role
  • In lieu of degree, High School Diploma/GED with 10 years of experience in cybersecurity, with at least 2 years in a leadership role, also accepted
  • People management experience is not required
• Strong knowledge of both offensive and defensive security techniques.
• Proficiency in vulnerability assessment tools and methodologies.
• Excellent problem-solving and analytical skills.
• Strong communication and interpersonal skills.
• Relevant certifications such as CISSP, CEH, OSCP, or similar are highly desirable.

#LI-US