Principal Product Security Architect - Medical Device Security and Compliance

Join the Insulet Team: Revolutionizing Diabetes Care through Innovative Technology

Insulet Corporation, a pioneer in the medical technology industry, is seeking a highly skilled and experienced Principal Product Security Architect to join our dynamic team. With a mission to enable customers to enjoy simplicity, freedom, and healthier lives, we have developed the Omnipod, a wearable, waterproof, and lifestyle-accommodating product platform for insulin-requiring diabetes patients. As we continue to expand globally, we are committed to building a Center of Excellence and are looking for talented individuals to be at the forefront of our growth.

About Insulet Corporation

Insulet started in 2000 with a vision to revolutionize diabetes care through innovative technology. Over the last two decades, we have improved the lives of hundreds of thousands of patients worldwide. Our products are designed to provide simplicity, freedom, and healthier lives for those with insulin-requiring diabetes. We are now on an exciting trajectory of significant growth and global expansion, enabling us to reach more patients around the globe.

Position Overview

As the Principal Product Security Architect, you will play a critical role in architecting the security of all Insulet Medical Products. You will enable the implementation of these products in coordination with a cross-functional team, conduct security assessments of existing products, and manage multiple projects with a degree of impact and complexity. This is a unique opportunity to provide subject matter leadership in technical areas, including cryptography, secure key management, hardware and embedded security, communication protocols, and cloud architectural best practices.

Key Responsibilities:

• Identify secure architectural requirements and controls to inform and enable the design of secure medical products comprising embedded firmware, hardware, mobile, and cloud components, and leverage various wireless communication protocols.
• Provide subject matter leadership in technical areas, including cryptography and secure key management, hardware and embedded security, communication protocols, and cloud architectural best practices.
• Provide security guidance to ensure programs and products meet medical device security standards, such as AAMI TIR 57, and FDA's pre-market and post-market cybersecurity guidance.
• Conduct risk assessments for all products and integrations to deliver a risk-based approach in securing medical devices.
• Research emerging technologies and assess their applicability to Insulet products.
• Develop tools and frameworks that make it easy for teams to adopt security.
• Contribute to Security Policy, Standards, and Guidelines related to Medical Device Security.
• Contribute to cybersecurity deliverables for regulatory submissions.
• Train and mentor Security Champions throughout the development process and build a security by design ecosystem within the development life cycle.
• Share thought leadership in the hardware and application security space.

Qualifications

Essential Qualifications:

• Bachelor's degree in Electrical Engineering or Computer Science, or equivalent practical experience.
• 10+ years of experience in cybersecurity, with a focus on security engineering and security architecture, especially with embedded software and cloud.
• Experience working on security technologies, such as virtualization, secure boot and firmware update, cryptography, key management, physical defense, and secure debug and test infrastructure.
• Experience with performing and/or coordinating Security and Penetration Testing on embedded device hardware and software.
• Experience working on security technologies, such as ARM TrustZone, cryptography, and key management.
• Programming skills in C, C++, Java, .NET, or other languages.
• Understanding of various types of exploits, threat modeling, and attack surfaces.
• Excellent communication and organizational skills, with experience in translating business goals into technical security deliverables.
• Knowledge of WiFi and Bluetooth and Bluetooth Low Energy communication protocols.
• Experience working with multiple stakeholders, such as engineering/operations teams, internal business units, external incident response teams, and law enforcement throughout the incident lifecycle.

Preferred Qualifications:

• Experience with cloud security and compliance.
• Knowledge of medical device security standards and regulations.
• Experience with agile development methodologies.
• Strong leadership and interpersonal skills.

Leadership/Interpersonal Skills & Behaviors

• Effectively communicate complex information, concepts, and ideas in a clear and organized manner through verbal, written, and visual mechanisms.
• Strong collaboration skills and an ability to work with cross-functional teams across the security and privacy organization and broader Corporate Technology organization.
• Ability to work with virtual and global teams in a fast-paced environment.
• Experience balancing security needs with broader business objectives.

What We Offer

At Insulet Corporation, we offer a competitive salary range of $141,300.00 - $212,250.00 for this full-time position, along with a comprehensive benefits package, including:

• 100% remote working arrangements (may work from home/virtually 100%; may also work hybrid on-site/virtual as desired).
• Opportunities for career growth and professional development.
• Collaborative and dynamic work environment.
• Recognition and rewards for outstanding performance.

Why Join Insulet?

By joining Insulet Corporation, you will be part of a team that is passionate about making a difference in the lives of patients with insulin-requiring diabetes. You will have the opportunity to work on cutting-edge medical technology, collaborate with a talented team, and contribute to the company's continued growth and success.

How to Apply

If you are a motivated and experienced security professional looking for a new challenge, we encourage you to apply for this exciting opportunity. Please submit your application, including your resume and a cover letter, to [insert contact information]. We look forward to hearing from you!

Don't miss this opportunity to join our team and make a difference in the lives of patients around the world!