System Security Architect in Davie, FL at Stryker Corporation

掲載日付: 3/25/2020



Stryker is one of the world’s leading medical technology companies and is dedicated to helping healthcare professionals perform their jobs more efficiently while enhancing patient care. The Company offers a diverse array of innovative medical technologies, including reconstructive, medical and surgical, and neurotechnology and spine products to help people lead more active and more satisfying lives. We are currently seeking a System Security Architect located in Davie, Florida

Who we want

Collaborative partners. People who build and leverage cross-functional relationships to bring together ideas, information, use cases, and industry analyses to develop best practices.

Strategic thinkers. People who enjoy analyzing data or trends for the purposes of planning, forecasting, advising, budgeting, reporting, or sales opportunities.

Analytical problem solvers. People who go beyond just fixing to identify root causes, evaluate optimal solutions, and recommend comprehensive upgrades to prevent future issues.

What you will do

  • The System Security Architect will be responsible for Cybersecurity oversight for medical and non-medical products Robotics division.
  • The System Security Architect primary duties will include complete ownership of cybersecurity and medical device security features, cybersecurity risk assessments of medical devices & network systems, cybersecurity complaint handling for medical devices, monitor and manage cybersecurity risk profile of field-deployed medical devices and network systems used by medical devices.
  • The System Security Architect will conduct, or assist with conducting, designing, planning, implementing and operationalization of all networked medical device technologies as related to the infrastructure, including selection and deployment of cybersecurity technologies, orchestration cybersecurity functions such as secure medical device connectivity to the network cloud system and data security in the network cloud.
  • The System Security Architect will be the primary R&D interface to manage inter-divisional post-market cybersecurity queries and communication.
  • Assume complete ownership of the medical device and non-medical device (network data system) security feature ownership,
  • Participate in the creation and testing of product security-related requirements and processes.
  • Work directly with R&D teams to ensure all relevant security risks are identified, evaluated, and appropriate and well-balanced solutions are implemented
  • Review, analyze, and report on emerging technologies and their effect on the cybersecurity posture of Medical Devices
  • Evaluate medical device manufacturers cybersecurity questionnaire for accuracy and completion
  • Identify and implement process improvements in the architecture and/or infrastructure of existing systems in the area of cybersecurity
  • Coordinate with the division R&D teams to assess security on medical devices & services by conducting technical testing to identify and address security vulnerabilities
  • Act as a primary R&D interface for communication and resolution for Post-Market complaints about medical devices
  • Build and maintain executive relationships necessary for the successful execution of the division product cybersecurity program.
  • This includes: Developing and maintaining external and internal relationships to influence product cybersecurity policy, standards, and program
  • Alignment with and incorporation of regulatory requirements
  • Enhancing secure interoperability and communications with extended entities (internal and external)
  • Stay abreast of changes in the business and product environment as well as the evolving regulatory and threat landscape

What you need 

  • BA/BS Degree in cybersecurity, information security, engineering (e.g., mechanical or electrical engineering), computer science, information technology, information management, information sciences, business administration, or related field preferred
  • Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., NIST CSF, ISO 27001)
  • 5 years of cybersecurity or cyber risk management experience
  • A minimum of 3 years designing security for infrastructure, network, and application architectures
  • Demonstrate advanced understanding and cyber risk management in at least two of the following areas: Product and/ or Medical Device Security, Internet of Things (IOT) Architecture and/or Security, Embedded Systems Security, IT Security

Work From Home: No

Travel Percentage: Up to 25%

Stryker Corporation is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status. Stryker is an EO employer – M/F/Veteran/Disability.

Stryker Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.