Senior Product Security Analyst

Senior Product Security Analyst page is loaded## Senior Product Security Analystlocations : San Francisco, CAtime type : Full timeposted on : Posted Yesterdayjob requisition id : JR704

• Career-defining. Life-changing.
• At iRhythm, you’ll have the opportunity to grow your skills and your career while impacting the lives of people around the world. iRhythm is shaping a future where everyone, everywhere can access the best possible cardiac health solutions. Every day, we collaborate, create, and constantly reimagine what’s possible. We think big and move fast, driven by our commitment to put patients first and improve lives. We need builders like you. Curious and innovative problem solvers looking for the chance to meaningfully shape the future of cardiac health, our company, and your career
• About This Role :
• Key Responsibilities
• FDA Cybersecurity Compliance
• : Ensure compliance with FDA cybersecurity guidance and regulations in collaboration with Cybersecurity, Regulatory, Quality, and Systems Development teams.
• Risk Assessments & CSRAs
• : Conduct comprehensive security risk assessments, including
• Cybersecurity Risk Assessments (CSRAs)
• , to identify vulnerabilities and threats across device hardware, firmware, software, and cloud components.
• Threat Modeling
• : Develop and maintain device-specific cyber threat models, factoring in patient safety, data privacy, and operational continuity.
• SBOM Management
• : Demonstrate familiarity with Software Bill of Materials (SBOM) and effectively communicate technical details.
• Security Documentation
• : Create and maintain cybersecurity documentation for pre- and post-market activities, ensuring regulatory alignment.
• Data Flow Diagrams
• : Produce detailed data flow diagrams to support the threat modeling process.
• Security Design Reviews
• : Participate in design reviews of medical device architectures and implementations, providing actionable recommendations for system security requirements.
• Vulnerability Analysis & Management
• : Perform and support
• vulnerability analysis
• and coordinate the vulnerability management program, including scanning, patching, and remediation for medical devices.
• Threat Detection Tools
• : Leverage and maintain
• application and threat detection tools
• (Veracode, Snyk, GitLab, or equivalent) to identify security flaws early in the SDLC.
• Incident Response
• : Support investigation and remediation of device-related security incidents, minimizing impact and preventing recurrence.
• Data Privacy Compliance
• : Partner with the Privacy Team to ensure adherence to HIPAA, GDPR, and other data protection regulations.
• Location :
• San FranciscoActual compensation may vary depending on job-related factors including knowledge, skills, experience, and work location.
• Estimated Pay Range
• $141,450.00 - $184,000.00As a part of our core values, we ensure an inclusive workforce. We welcome and celebrate people of all backgrounds, experiences, skills, and perspectives. iRhythm Technologies, Inc. is an Equal Opportunity Employer. We will consider for employment all qualified applicants with arrest and conviction records in accordance with all applicable laws.iRhythm provides reasonable accommodations for qualified individuals with disabilities in job application procedures, including those who may have any difficulty using our online system. If you need such an accommodation, you may contact us at taops@irhythmtech.com
• About iRhythm Technologies
• iRhythm is a leading digital healthcare company that creates trusted solutions that detect, predict, and prevent disease. Combining wearable biosensors and cloud-based data analytics with powerful proprietary algorithms, iRhythm distills data from millions of heartbeats into clinically actionable information. Through a relentless focus on patient care, iRhythm’s vision is to deliver better data, better insights, and better health for all.
• Make iRhythm your path forward. Zio, the heart monitor that changed the game.
• There have been instances where individuals not associated with iRhythm have impersonated iRhythm employees pretending to be involved in the iRhythm recruiting process, or created postings for positions that do not exist. Please note that all open positions will always be shown here on the iRhythm Careers page, and all communications regarding the application, interview and hiring process will come from a @irhythmtech.com email address. Please check any communications to be sure they come directly from @irhythmtech.com email address. If you believe you have been the victim of an imposter or want to confirm that the person you are communicating with is legitimate, please contact taops@irhythmtech.com. Written offers of employment will be extended in a formal offer letter from an @irhythmtech.com email address
• ONLY
• .For more information, see andAt iRhythm, you'll have the opportunity to grow your skills and your career while impacting the lives of people around the world. Together, we are reimagining the way cardiac arrhythmias are diagnosed. We need curious problem solvers like you. With opportunities remotely, at our office, in manufacturing, and in locations across the globe, this is your chance to meaningfully shape the future of cardiac health, our company, and your career.
• Driven By Purpose
• Cardiac health touches the lives of people all around us. Providing life-changing healthcare solutions that impact patients around the world drives us to bring our best every single day.
• Growth Means Opportunity
• We are growing rapidly. And with that growth comes a wealth of opportunities to learn and advance at iRhythm. The potential to deepen your impact, seek new opportunities, and advance your career is yours to pursue.
• Build the Future
• We are a boundary-pushing organization that values innovative thinking and impacts healthcare at a global level. The expectation is to think big and build the future you see for iRhythm, our patients, and yourself.### Get In TouchIntroduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match.

#J-18808-Ljbffr