Lead Product Security Engineer jobs in United States
info-icon
This job has closed.
company-logo

Insight Global · 3 days ago

Lead Product Security Engineer

positionMarlborough, MA
timeFull-time
remoteHybrid
seniorityLead/Staff
money$150K/yr - $175K/yr
date8+ years exp

Insight Global is seeking a Lead Product Security Engineer to join a team responsible for the security of digital cytology products. This role involves reviewing security configurations, managing risks, and collaborating with cross-functional teams to ensure compliance with security standards and best practices.

EmploymentHuman ResourcesRecruitingSales
check
H1B Sponsor Likelynote

Responsibilities

Maintain vigilance on industry security threats, assess risks to Hologic products, and manage these risks according to established quality procedures
Participate in continuous improvement of our Secure by Design principles and implementation, ensuring adherence to security standards and best practices
Support the creation and maintenance of security design documentation and architecture diagrams
Collaborate with cross-functional teams (Product Engineering, DevSecOps, Regulatory, Quality) to integrate security into the product lifecycle
Define security requirements and controls based on specific use cases and threat models
Perform regular risk analyses to evaluate security threats and vulnerabilities, prioritizing uncontrolled risks with potential impacts on patient safety
Perform Security Risk Management activities to address identified vulnerabilities and security design issues, including regular review and assessment of risk against CVEs
Establish automated processes for vulnerability scanning and remediation
Educate the development and leadership teams on securing products, remote connectivity solutions, and their operating environments
Work with cross-functional teams to ensure that SBOMs are correct and can be used as part of our continuous vulnerability monitoring process
Design architecture that prioritizes efficient, secure software updates and patch management across deployed systems
Establish incident playbooks and coordinate root cause analysis (RCA) for reported security incidents
Work with DevSecOps and Software Engineers to review code static analysis and third-party software assessment reports

Qualification

Product security engineeringCybersecurity certificationsRisk AssessmentFDA regulatory experienceCybersecurity guidelines familiarityWindows OS familiarityCloud-based solutionsSecurity frameworks expertiseScripting proficiencyContinuous improvement mindsetEducationTrainingCollaboration skillsDocumentation skills

Required

8+ years experience in product security/cybersecurity engineering
Demonstrated competency in Cybersecurity education and training through certifications (e.g., CISSP, CompTIA Security+, etc.)
Skilled in performing Risk Assessment and Management plan
Skilled in writing design documentation and standard operating procedures
Experience working in an FDA regulated environment is required
Thorough familiarity with FDA and other regulatory body Cybersecurity Guidelines and cybersecurity standards such as NIST, AAMI, CSLI, UL, BSI, HIPAA, GDPR, State and Federal security standards, and ACTS for premarket and post-market activities
Familiarity with Windows OS and cloud-based solutions is required
Expertise with security frameworks and testing tools, and how to incorporate the results of those into cybersecurity requirements for the Product Development team
Proficiency in scripting and simple test automation (e.g., PowerShell, Python)
Bachelor's or Master's degree in Computer Science, Cybersecurity, or related engineering equivalent

Preferred

Collaborate with Program Management and Regulatory teams to provide security input for audits and FDA submissions
Maintain current knowledge of FDA and other regulatory body's cybersecurity guidance and standards, such as ISO, IEC, NIST, AAMI, CSLI, UL, BSI, HIPAA, GDPR, State and Federal security standards, and ACTS for premarket and post-market activities
Assist in translating cybersecurity requirements into product requirements for new and existing product designs, as well as assisting with the definition of verifications for traceability
Assist with efforts to establish penetration testing suites for continuous testing and monitoring of our product solution

Company

Insight Global

twittertwittertwitter
Glassdoor3.8
company-logo
Insight Global provides top talent and staffing solutions that help job seekers find careers in healthcare, finance, IT, and government.
dateFounded in 2001
location
Atlanta, Georgia, USA
people-size1001-5000 employees
web-link
https://insightglobal.com/

H1B Sponsorship

Insight Global has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (281)
2024 (164)
2023 (75)
2022 (17)
2021 (3)
2020 (2)

Funding

Current Stage
Late Stage
Total Funding
unknown
2010-07-01Acquired

Leadership Team

leader-logo
Jared Streppa
President Of Company’s Technology Division
linkedin

Recent News

Maryland Daily Record
Staffing services firm signs lease with Baltimore Peninsula
2025-09-26
citybiz
Baltimore Peninsula Signs 15,600-Square-Foot Lease With Insight Global
2025-09-25
PR Newswire
Insight Global Releases 2025 Employee Sentiment Report Highlighting Urgent Need for Better Onboarding and Workplace Culture
2025-09-23
Company data provided by crunchbase