Desired start date: 02/15/2024
Location: US (Onsite)
We believe the future of the operating room lies in the hands of the empowered surgeon. They are bolstered with complete control, renewed confidence, and technology adaptable to any situation.
Our Maestro System delivers this empowerment, resulting in improved operating room efficiency and surgical care for patients - We are using tomorrow's technology to change surgery today.
Our blended French-American team is passionate about building this future. Together we are pushing the boundaries in a fast-paced yet focused and deliberate environment. We challenge ourselves often and celebrate our achievements. We believe that communication and planning are as important as execution.
🎉 The Role
Your Core Responsibilities
We are looking for a Product Security Engineer to join our growing multi-disciplinary team. You will be the team’s first dedicated member to expand our Product and Cloud security efforts.
As an early engineer building the Product Security infrastructure at Moon Surgical, you will:
- Implement and maintain an SPDF (Secure Product Development Framework) to identify and reduce vulnerabilities in Maestro, and associated services, throughout its life-cycle. Ensure that the SPDF processes are integrated with existing product and software development, risk management, and quality systems. SPDF processes include, but are not limited to, Threat Modeling, Penetration Testing, SBOM reviews etc.
- Implement and document design controls for the Maestro system focused on Cyber-security Risk, ensuring all aspects of device design, development, and distribution are covered. Support documentation efforts to demonstrate the assurance of safety and effectiveness in compliance with FDA guidelines.
- Ensure Maestro device design incorporates key security objectives such as authenticity, authorization, availability, confidentiality, and secure remote software updates. This would be integrated throughout it’s architecture, including AI/ML and cloud-based services.
- Manage the disclosure of cyber-security information necessary for the integration and maintenance of Maestro’s cyber-security over its life-cycle. This includes addressing communication interfaces, third-party software risks using SBOMs, and providing sufficient information for secure configuration and updates.
- Regularly monitor the cyber-security landscape for emerging threats and vulnerabilities. Update and improve cyber-security measures in response to these evolving risks, ensuring the ongoing safety and effectiveness of medical devices.
How You’ll Fit In
- You will be joining the Data Intelligence group in the R&D organization, where you will be provided guidance and management on your short-, mid- and long-term projects within the organization through weekly 1-1 meetings.
- On a daily basis, you will be working as part of a cross-functional & dynamic team covering and supporting various functional areas like R&D, Product, Marketing, Clinical and Operations.
- You will be expected to be in constant communication with all our team members globally, with national and international travel on an as-needed basis.
- You will be expected to work with 3rd party teams and consultants, to utilize commercially available products and tools to speed up development.
🧠Qualifications, Skills & Attributes
-
BS or MS in Computer Science, Computer Engineering, or related discipline, preferably with an emphasis on Cybersecurity.
-
4+ years of experience in Product Security related functions in IoT (Internet of Things) like devices. Medical device experience is desirable.
-
Knowledge of network security, encryption technologies, and secure communication protocols.
🧮 Compensation, Benefits & Other Details
-
25 Days of Paid Vacation
-
10 Paid Holidays
-
401k with matching
-
Competitive Vision, Dental, and Health benefits
-
Regular national and international travel required
https://noteforms.com/forms/candidate-pipeline-9-3-34