Cybersecurity Specialist - Exempt
LanceSoft, Lafayette, CO, United States
Job Description
The Acute Care & Monitoring group develops products designed to collect patient information from around the hospital and ensure that caregivers can make the right decisions at the right time. We strive to improve patient outcomes by ensuring that when a problem emerges at the bedside, caregivers are aware of it and can respond quickly. We analyze and learn from patient data to find better ways to provide quality care for patients. Our products are deployed in care facilities across the globe and help to save and improve lives every day. A career at is like no other. We're purposeful. We're committed. And we're driven by our Mission to alleviate pain, restore health, and extend life for millions of people worldwide. Position Responsibilities
Build threat models for products and assess threats for risk and possible mitigations. Build SBOMs for products and review their accuracy. Review and interpret CVEs for impact on products. Review and interpret penetration testing results. Work with technical experts and product owners to measure risk associated with vulnerabilities. Document risk assessments. Recommend mitigations for security risks. Minimum Qualifications
Bachelor's degree in computer engineering, software engineering, cybersecurity, computer science, or related field. 2 years of experience in a cybersecurity-related role. Experience with networking concepts. Effective communication both verbally and in written form. Experience with threat modeling tools, such as Microsoft Threat Modeling Tool. Experience with vulnerability monitoring tools such as Dependency-Track. Experience with using the NVD. Familiarity with the CycloneDX SBOM specification. Experience with CVE interpretation. Experience with CWE interpretation. Experience with CVSS scoring methodology. Experience explaining technical concepts to non-technical individuals. Familiarity with FDA Pre and Post-market guidance. Familiarity with the OWASP Top 10. Familiarity with standards such as IEC 81001-5-1 and IEC 62304. Location Join us in Lafayette, Colorado, a vibrant community nestled at the base of the stunning Rocky Mountains. Enjoy a perfect blend of outdoor adventure and cultural richness while contributing to innovative healthcare solutions that make a global impact.
Meet Your Recruiter
Natarajan S
The Acute Care & Monitoring group develops products designed to collect patient information from around the hospital and ensure that caregivers can make the right decisions at the right time. We strive to improve patient outcomes by ensuring that when a problem emerges at the bedside, caregivers are aware of it and can respond quickly. We analyze and learn from patient data to find better ways to provide quality care for patients. Our products are deployed in care facilities across the globe and help to save and improve lives every day. A career at is like no other. We're purposeful. We're committed. And we're driven by our Mission to alleviate pain, restore health, and extend life for millions of people worldwide. Position Responsibilities
Build threat models for products and assess threats for risk and possible mitigations. Build SBOMs for products and review their accuracy. Review and interpret CVEs for impact on products. Review and interpret penetration testing results. Work with technical experts and product owners to measure risk associated with vulnerabilities. Document risk assessments. Recommend mitigations for security risks. Minimum Qualifications
Bachelor's degree in computer engineering, software engineering, cybersecurity, computer science, or related field. 2 years of experience in a cybersecurity-related role. Experience with networking concepts. Effective communication both verbally and in written form. Experience with threat modeling tools, such as Microsoft Threat Modeling Tool. Experience with vulnerability monitoring tools such as Dependency-Track. Experience with using the NVD. Familiarity with the CycloneDX SBOM specification. Experience with CVE interpretation. Experience with CWE interpretation. Experience with CVSS scoring methodology. Experience explaining technical concepts to non-technical individuals. Familiarity with FDA Pre and Post-market guidance. Familiarity with the OWASP Top 10. Familiarity with standards such as IEC 81001-5-1 and IEC 62304. Location Join us in Lafayette, Colorado, a vibrant community nestled at the base of the stunning Rocky Mountains. Enjoy a perfect blend of outdoor adventure and cultural richness while contributing to innovative healthcare solutions that make a global impact.
Meet Your Recruiter
Natarajan S