Product Security Manager

Product Security Manager, Threat Research

This client is seeking a highly skilled and experienced Product Security Manager, Threat Research to lead and continue to build and enhance their cybersecurity threat intelligence team. The successful candidate will play a crucial role in securing the extensive range of medical devices and systems against cyber threats. This position requires a dynamic leader with a deep understanding of threat hunting, threat research, and cybersecurity vulnerabilities specific to the healthcare industry.

About the role:

In this role, you will lead a specialised team dedicated to proactive threat research, analysing emerging cyber threats, and testing and identifying potential vulnerabilities in our deployed devices. You will be instrumental maintaining an up-to-date threat intelligence framework that informs our security strategies and response plans. You will perform and oversee regular vulnerability scanning to support our comprehensive post-market vulnerability process.

Post-market, you will oversee the continuous monitoring and management of vulnerabilities in our healthcare devices, coordinating closely with product development, engineering, and support teams to ensure timely and effective remediation. You will work within our established vulnerability disclosure program, fostering collaboration with external researchers and stakeholders to enhance our security posture.

Main responsibilities will include:

• Evolve and enhance our continuous monitoring and analysis of threat intelligence sources to identify potential security risks proactively.

• Maintain detailed records of threat research activities, vulnerability assessments, and incident responses.

• Oversee the identification, assessment, and mitigation of vulnerabilities in products and infrastructure.

• Perform risk assessments to evaluate the potential impact of vulnerabilities and prioritise remediation efforts.

• Coordinate with Product Security Officers, development, engineering, and support teams to resolve identified vulnerabilities promptly.

• Ensure all post-market vulnerability management practices comply with relevant regulatory requirements and industry standards (e.g., FDA, ISO/IEC 27001).

• Foster strong relationships with internal R&D teams, external partners, and industry organisations to stay informed about the latest cybersecurity trends and developments.

• Provide expert guidance and support to cross-functional teams on security best practices and vulnerability management.

• Produce regular reports on the status of post-market vulnerability management efforts and key performance metrics.

• Ensure the continuous improvement of threat intelligence processes, tools, and technologies.

• Establish performance metrics, baseline team activity and work to continuously improve operations.

• Cultivate strong team unity and ensure alignment with organisational goals through effective communication, motivation, and leadership.

About you:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field, a master’s degree is distinct advantage.

• 3+ years of management experience in cybersecurity, with a focus on threat hunting and threat research.

• Strong knowledge of cybersecurity threats, vulnerabilities, and attack vectors.

• Experience with threat intelligence platforms, threat hunting tools, and cybersecurity frameworks.

• Strong understanding of development languages including: C# and the .NET framework with additional experience in either Python, JavaScript, or C/C++.

• Excellent leadership, communication, and interpersonal skills.

• Ability to work in a fast-paced, dynamic environment and priortise multiple priorities.

• Strong analytical and problem-solving abilities.

• Relevant certifications such as CISSP, CISM, CEH, or GIAC are a plus.

What We Offer:

• Competitive salary and benefits package.

• Opportunity to work with cutting-edge technologies and innovative products.

• Career growth and development opportunities.

• A collaborative and inclusive work environment.

#LI-JD4