Software Security Architect - Cardiac Diagnostics
Boston Scientific
- Arden Hills, MN
- Permanent
- Full-time
The Software Security Architect will collaborate with software development and cross-functional teams to safeguard our medical device software systems. This role involves leading the design and implementation of robust security measures to protect patient data and ensure the safe operation of our medical devices. The architect will also design and develop system architectures, define key capabilities and performance requirements, and establish technology maturity constraints in line with mission requirements. They will develop an approach for systems implementation and operational concepts, as well as create models and architectural guidelines for current and future systems development, focusing on product security. This role is pivotal in maintaining the integrity and security of our medical devices.Your responsibilities will include:
- Develop and implement security architectures for medical device software systems, which include embedded software, firmware, and cloud applications.
- Conduct comprehensive security assessments and risk analyses to identify and mitigate potential vulnerabilities and threats.
- Collaborate closely with cross-functional teams, including software engineers, quality assurance specialists, and regulatory experts, to integrate security best practices throughout the software development lifecycle.
- Define and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements, such as FDA guidelines and medical device cybersecurity standards.
- Stay up-to-date on industry trends and emerging threats in medical device cybersecurity to continuously enhance our security posture.
- Provide guidance and training to development teams on secure coding practices and techniques specific to medical device software.
- Minimum of a bachelor's degree in computer science, electrical engineering, biomedical engineering, or related field
- Minimum of 7 years of experience in software architecture with some of those years being in medical device software security architecture
- Deep understanding of security principles, protocols, and technologies relevant
- Experience conducting security assessments and penetration testing
- Excellent communication and collaboration skills, with the ability to work effectively with interdisciplinary teams
- Master's degree
- Medical device software security architecture experience
- Familiarity with medical device software development and cybersecurity standards and regulations, such as IEC 62304, IEC 62366, IEC 81001, ISO 13485, and ISO 14971
- Relevant certifications, such as Certified Information Systems Security Professional (CISSP) or Certified Medical Device Security Professional (CMDSP)