Director of Product Security

Werfen

Werfen is a growing, family-owned, innovative company founded in 1966 in Barcelona, Spain. We are a worldwide leader in specialized diagnostics in the areas of Hemostasis, Acute Care Diagnostics, Transfusion, Autoimmunity, and Transplant. Through our Original Equipment Manufacturing (OEM) business line, we research, develop, and manufacture customized assays and biomaterials. We operate directly in 30 countries, and in more than 100 territories through distributors. Our Headquarters and Technology Centers are located in the US and Europe, and our workforce is more than 7,000 strong.

Our success comes from a specific focus in these rapidly evolving diagnostic areas, our commitment to customers, and our dedication to innovation and quality. We're passionate about providing healthcare professionals the most valuable and complete solutions to improve hospital efficiency and enhance patient care.

• Responsible for leading cross functional team members to complete all aspects of product cyber security and privacy initiatives.
• Responsible for secure software development for all Werfen on-market and pre-market products.
• Represent cyber security within product development teams to ensure cyber security is being designed into products.
• Responsible for cyber security threat management. Complete continuous technical analysis and monitoring for cyber security signals.
• Responsible for customer assurance. Manage key interface contacts with customers. May include completion of security inquiries, intake of vulnerability reports, provide consistent guidance to staff and customers.
• Responsible for governance, risk and compliance of Werfen processes. Establish product security policy and governance, documentation of process for all domains. Conform compliance to existing industry policies and guidelines.

• Responsible for leading cross functional team members to complete all aspects of product cyber security and privacy initiatives.
• Responsible for secure software development for all Werfen on-market and pre-market products.
• Represent cyber security within product development teams to ensure cyber security is being designed into products.
• Responsible for cyber security threat management. Complete continuous technical analysis and monitoring for cyber security signals.
• Responsible for customer assurance. Manage key interface contacts with customers. May include completion of security inquiries, intake of vulnerability reports, provide consistent guidance to staff and customers.
• Responsible for governance, risk and compliance of Werfen processes. Establish product security policy and governance, documentation of process for all domains. Conform compliance to existing industry policies and guidelines.

• Supervises and coordinates technical aspects with the different team technical leads.
• Other internal interfaces TBD based on departmental needs.

• Education: Requires Bachelor's degree in Computer Science, Computer Engineering or the equivalent combination of related training, proficiency and experience. MBA or Master's degree preferred.
• Experience:
  • Minimum of 8 years of experience leading product cyber security teams and projects and risk management activities - in medical device or healthcare domain.
  • Cyber security training and certification such as CISSP/CISM.
  • Experience in cross-functional cyber security activities including intrusion detection, security tools and technology, regulation compliance, audit/control processes and customer assurance.
  • Experience in incident handling and response.
  • Experience in writing policy and managing compliance.
  • Experience in designing software development products using SDLC (e.g.: Agile, DevOps)

• Familiar with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines, 95/46/ED, HIPPA, GDPR, ISO/TS 14265, 21CFR820, SB1386, etc.)
• Understanding of Windows and Linux operating systems and networking preferred.
• Domain specific standards and approaches on privacy and product security (e.g.: HL7, ASTM, POCT-1A) preferred.
• Language: English
• Leadership, Managing Vision and Purpose, Developing Direct Reports and others (e.g.: holds people accountable, teamwork, delegation, communication, impact and influencing, etc.), Time Management, Project Management, Oral and Written Communications.

If you are interested in constantly learning and being challenged on a daily basis we encourage you to submit your resume or CV.

Werfen is an Equal Opportunity employer and is committed to a diverse workplace. Werfen strictly prohibits unlawful discrimination, harassment or retaliation based upon an individual's race, color, religion, gender, sexual orientation, gender identity/expression, national origin/ancestry, age, mental/physical disability, medical condition, marital status, veteran status, or any other protected characteristic as defined by applicable state or federal law. If you have a disability and need an accommodation in relation to the online application process, please contact NAtalentacquisition@werfen.com for assistance.

We operate directly in over 30 countries, and in more than 100 territories through distributors. Annual revenue is approximately $2 billion and more than 7,000 employees around the world comprise our Werfen team.

www.werfen.com