Shockwave Medical, Inc. is a pioneer in the development and commercialization of Intravascular Lithotripsy (IVL) to treat complex calcified cardiovascular disease. Shockwave Medical aims to establish a new standard of care for medical device treatment of atherosclerotic cardiovascular disease through its differentiated and proprietary local delivery of sonic pressure waves for the treatment of calcified plaque.
Position Overview
The Senior Cybersecurity Analyst will be expected to lead efforts to safeguard the company's digital infrastructure and sensitive information by identifying and mitigating security risks. They are expected to have tactical knowledge of industry standard best practices and recognized frameworks as well as bringing their experience, passion, innovation, and creativity to improve and maintain the organization's security posture. The Senior Cybersecurity Analyst role will be responsible for assisting in the implementing, maintaining, and monitoring of security tools, resources, and other technology at Shockwave Medical. It requires working closely with senior leadership globally to establish security and compliance practices, oversee day-to-day matters relating to security and compliance, and to address any security or compliance related challenges.
Essential Job Functions
- Monitoring, triaging, and promptly responding to activities across the security operations tools and resources while coordinating with SOC to remediate and mitigate risks and incidents.
- Research, architect, test, implement, and maintain network security controls and countermeasures to maintain the confidentiality, integrity, and availability of Shockwave Medical's data.
- Provides recommendations to operational IT teams and communicates with business units on processes, controls, and objectives around information security activities, best practices, and process improvements.
- Performs periodic and on-demand system and vulnerability assessments related to third party risk management and penetration testing.
- Identifies and advises management of critical issues that may affect Shockwave's overall security profile.
- Continuously implement, improve, and document workflows and processes in Cybersecurity Incident Response tactics, tools, and procedures.
- Maintains working understanding of technical control testing aligned with NIST CSF and ISO.
- Maintains working understanding of common OS and domain structures, servers, services, and associated vulnerabilities.
- Maintains working understanding of network engineering and local and wide area (LAN/WAN) technologies and topologies.
- Maintains working understanding of cloud deployments and associated risk considerations.
- Keeps informed regarding new and emerging information technology trends including IAM solutions, endpoint protection technologies, web application firewalls and intrusion prevention, encryption, access control methodologies, IDS/IPS systems, SIEM tools and network scanners.
- Mentors junior analysts and provides guidance in security-related matters.
Requirements
- BS or BA preferred. Security certifications or the willingness to obtain certifications desirable.
- 5+ years in Cybersecurity roles, at least 1 year in senior or lead role.
- Knowledge of IAM platforms, security tools (SIEMs, ASAs, Firewalls), Email Security, DLP, and other security technologies.
- Familiarity with physical security control systems (badging, door lock controls, camera systems) desirable.
- Familiarity with SOC1, SOC2, and/or ISO 27001 auditing and associated requirements.
- Strong written and verbal communication skills to communicate effectively at all levels.
- Ability to work in a fast-paced environment while managing multiple priorities.
- Ability to operate as a team and/or independently while demonstrating flexibility to changing requirements.
Market Range:
San Francisco Bay Area (SFBA) Market Range: $121,000-150,000
All Other US Locations (Outside of SFBA): $102,00-128,000
Exact compensation may vary based on skills, experience, and location. Benefits Shockwave Medical offers a competitive total compensation package as well as the following benefits and perks:
Core Benefits:Medical, Dental, Vision, Pre-tax and Roth 401k options with a fully vested match, Short-Term and Long-Term Disability, and Life Insurance, Employer contribution toward Health Savings Account (HSA), Competitive PTO balance
Perks:Calm App, Pet Insurance, Student Loan Refinancing, Spot Bonus awards
EEO Employer
|