Security Advisor

• As a Senior Cyber Specialist – Digital Enablement, you will play an important role in ensuring that Client product technologies leveraged by healthcare providers and consumers are secure-by-design.  These technologies range from regulated medical devices to e-commerce and customer loyalty solutions.  You will evaluate the cybersecurity posture of new and existing product technologies, identify risks, recommend mitigation strategies, and ensure timely remediation and closure.  You will bring deep expertise in security risks, controls, mitigations, and global cybersecurity standards to Client product teams.  
• This role is expert-driven and guidance-focused, requiring strong technical depth, excellent communication skills, and a proven ability to navigate a large, global environment.  You will partner closely with internal product owners, developers, engineers, security architects, and external collaborators to evaluate solutions, strengthen governance, and guide secure product development.   Your work will directly contribute to the delivery of scalable, compliant, and secure product technologies, cloud services, and connected applications.

The role focuses on consultative responsibilities rather than hands‑on development or cybersecurity operations.

Primary Responsibilities

About You

• 7 years of experience in cybersecurity or technology architecture, assessment, or consulting with a focus on the development of secure digital product technologies
• Experience conducting risk assessments, control assessments, and governance reporting
• Ability to clearly articulate cybersecurity risks and recommended mitigations to product development teams
• Strong understanding of modern technology stacks, including cloud‑native architectures and API-driven services
• Understanding of core concepts related to identity and access management, secure software development, network security, and cryptography
• Familiar with device‑to‑device, service‑to‑service, and consumer identity and access management practices
• Familiarity with modern phishing-resistant authentication technologies, including WebAuthn and Passkeys
• Understanding of cybersecurity risks associated with emerging technologies, including quantum computing and artificial intelligence
• Knowledge of global medical device regulatory frameworks
• Excellent analytical, problem-solving, and communication skills
• Working knowledge of security frameworks and standards (e.g., NIST, ISO/IEC 27001, PCI DSS)
• Strong collaboration and influencing skills, with the ability to work effectively across technical and business teams
• Exceptional written and verbal communication skills, with the ability to tailor complex information for diverse audiences
• Strong analytical and problem‑solving skills, with the ability to work independently and manage multiple priorities
• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Information Assurance, Software Engineering, or a related field but not mandatory if experience is strong

Preferred Qualifications

• Strong preference for candidates with cybersecurity experience across e‑commerce, mobile apps, IoT, or medical devices.
• Preferred certifications include CISSP, HCISPP, CISM, CCSP, SABSA Foundation, CISA, or similar industry-recognized certifications
• Background in application security, product security, and secure development practices.
• Experience supporting mobile applications, sensors, and backend operational systems.
• Ability to draft, influence, and operationalize cybersecurity policies and standards.
• Reading Static Application Security Testing (SAST)/Dynamic Application Security Testing (DAST) outputs, pen test results; collaborating with teams; no major required internal tools.

• Cybersecurity consulting w/ development teams (software/hardware).  
• Ability to influence policy/standards for emerging tech (AI, quantum, cloud).
• Ability to evaluate the effectiveness of cybersecurity controls.