Danaher Corporation Sr. Cyber Security Engineer –Vulnerability Management in Philadelphia, Pennsylvania
Be part of something altogether life-changing!
Working at Cytiva in the Life Sciences industry means being at the forefront of providing new solutions to transform human health. Our incredible customers undertake life-saving activities ranging from fundamental biological research to developing innovative vaccines, new medicines, and cell and gene therapies.
At Cytiva you will be able to continuously improve yourself and us – working on challenges that truly matter with people that care for each other, our customers, and their patients. With associates across 40 countries, Cytiva is a place where every day is a learning opportunity – so you can grow your career and expand your skills in the long term.
Cytiva is proud to work alongside a community of nine fellow Danaher Life Sciences companies. Together, we’re pioneering the future of science and medicine, developing products that enable researchers in the fight to save lives.
What you'll do!
The Sr. Cyber Security Engineer –Vulnerability Management position is responsible for establishing, defining, and managing the global product privacy and security vulnerability initiatives across the Cytiva product portfolio. The position will work directly with product development teams, product management, and quality to ensure product vulnerability policies, procedures and best practices are fully integrated within Cytiva products.
In this role you will be responsible for carrying out vulnerability initiatives of discovery, research, triage, prioritization, remediation, and reporting.
Serve as the subject matter expert pertaining to vulnerability management.
Discover, research, monitor, assess and prioritize vulnerabilities affecting our product portfolio.
Work directly and indirectly with development teams to assess newly discovered product vulnerabilities. Determining overall product risk, proposing short term mitigations and long term resolutions.
Develop and report upon KPIs relating to product vulnerabilities in technical and business terms.
Assist in policy writing, training and compliance reviews.
Be the primary customer liaison for newly reported product vulnerabilities.
Work with product care teams to guide on how to reduce the risk from known vulnerabilities.
Monitor vulnerabilities for all 3rd party software, including firmware.
Review cyber incidents to gain a better understanding of the developed risk.
Who you are!
Bachelor’s degree in computer science or related field or equivalent experience.
4+ years or related experience.
Industry recognized security certifications such as CISSP or HCISPP required
CSM, CISA, GIAC, CEH, or other technical security certification desired
Solid experience in IT security or cybersecurity role utilizing the complete security architecture.
Excellent knowledge of Information Security standards, frameworks and best practices for product security; especially NIST 800-53 and IEC 62443.
Experience working with customers and converting customer issues into solutions.
Understanding product life-cycle as it pertains to at least one of: on premise software, ICS systems, and cloud products.
Previous exposure to products being developed for and deployed in regulated environments.
Exhibit effective management of remediation efforts to resolve security findings.
Threat Modeling, Penetration Testing and/or Product Security Vulnerability Management.
Ability to perform and train others on common threat modeling frameworks and techniques.