Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy, and consent to receive emails from Rise
Jobs / Job page
Senior Cybersecurity Engineer (Hybrid or Remote) image - Rise Careers
Job details

Senior Cybersecurity Engineer (Hybrid or Remote)

The Role:


At Q Bio, we are transforming healthcare by combining AI, Physics, and Biology to automate the physical exam, making preventive, personalized care accessible to all. We are hiring a Senior Cybersecurity Engineer to join our dynamic team, focusing on embedding security throughout our product lifecycle. You will be instrumental in designing, building, automating, and maintaining the secure deployment and monitoring of our cutting-edge products.


$170,000 - $200,000 a year

What You Will Do:

Product & Medical Device Security (FDA Regulated Environment):

●        Secure Software Development Lifecycle (SDLC): Integrate security best practices and tools into every phase of the product development lifecycle, from design and requirements to coding, testing, and deployment.
●        Threat Modeling & Risk Analysis: Lead and perform threat modeling and security risk analysis (per ISO 14971) for new and existing medical device software.
●        FDA & Regulatory Compliance: Author, review, and own all cybersecurity-related documentation for regulatory submissions (e.g., FDA 510(k) pre-market and post-market management plans). Ensure our products and processes align with the latest FDA guidance, IEC 62304, and other relevant medical device security standards.
●        Regulatory Interface: Serve as the primary cybersecurity subject matter expert (SME) for regulatory interactions, including responding to questions during FDA submissions and representing the company's cybersecurity posture during audits.
●        Security Requirements Definition: Partner with Product Management, Engineering, and Quality teams to define and document security requirements, controls, and architecture for our medical device platforms.
●        Vulnerability Management & Penetration Testing: Manage and coordinate third-party penetration testing and internal vulnerability assessments of our products. Develop and oversee the remediation action plan.
●        Incident Response: Develop, implement, and maintain an incident response plan for product-related security events, including vulnerability disclosure policies.

Corporate Security & Compliance:

●        Continuous Security Assessment & Strategy: Continuously assess the company's security posture against evolving business needs and emerging threats. Identify relevant security standards (e.g., SOC 2, HIPAA, NIST CSF), perform regular gap analyses, and own the strategic roadmap for assessment, implementation, and improvement.
●        Compliance Frameworks (SOC 2 / HIPAA): Lead the initiative to achieve and maintain SOC 2 certification for our platform and business operations. Develop and manage the security controls and policies required for SOC 2 and HIPAA Security Rule compliance.
●        Corporate Security Governance: Develop, implement, and enforce company-wide information security policies, procedures, and standards.
●        IT & Cloud Security: Conduct security architecture reviews and risk assessments of our corporate IT and cloud infrastructure (AWS/GCP/Azure). Implement and manage security controls to protect corporate data and systems.
●        Vendor & Third-Party Risk Management: Establish and manage a program to assess and monitor the security posture of third-party vendors and partners.
●        Identity & Access Management (IAM): Oversee and improve the company's IAM policies and solutions to ensure the principle of least privilege is maintained.

What You Will Bring:

●        5+ years of experience in cybersecurity, with at least 3-5 years in a hands-on, senior or lead role.
●        Proven experience in a regulated industry, with a strong preference for MedTech (medical devices), HealthTech, or Life Sciences.
●        FDA Expertise: Demonstrated, hands-on experience with FDA cybersecurity guidance for medical devices, contributing to the cybersecurity sections of regulatory submissions (e.g., 510(k), PMA), and acting as a subject matter expert in direct interactions with regulatory bodies (e.g., responding to submission questions, participating in audits).
●        Compliance Expertise: Direct experience leading or playing a primary role in achieving and maintaining SOC 2 and/or HIPAA compliance.
●        Product Security: Strong experience with application security, secure SDLC practices, threat modeling (e.g., STRIDE), and vulnerability management for software products.
●        Cloud Security: Deep knowledge of securing cloud environments and services (AWS, GCP, or Azure).
●        Technical Skills: Proficiency with security assessment tools, IAM systems, endpoint protection, and network security concepts.
●        Bachelor's degree in Computer Science, Information Security, or a related field.
●        Relevant professional certifications are highly desirable (e.g., CISSP, CISM, HCISPP, CSSLP).

cybersecurity FDA medical device security SOC 2 HIPAA secure SDLC threat modeling vulnerability management cloud security IAM penetration testing regulatory compliance healthtech medtech

Average salary estimate

$185000 / YEARLY (est.)
min
max
$170000K
$200000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

Similar Jobs
Q
Q Bio Hybrid Redwood City
VIEW
Posted 13 days ago

Lead the execution of advanced medical imaging programs at Q Bio as a Technical Program Manager, driving innovation in regulatory-compliant healthcare technology.

Photo of the Rise User
Illumio Hybrid Sunnyvale
VIEW
Posted 5 days ago
Badge Diversity Champion Badge Flexible Culture

Lead Illumio's Application and Product Security efforts as Director, driving strategic security initiatives and managing a talented team in a high-impact cybersecurity company.

Photo of the Rise User
Forward Financing Hybrid No location specified
VIEW
Posted 4 days ago
Dental Insurance
Disability Insurance
Flexible Spending Account (FSA)
Vision Insurance
Performance Bonus
Family Medical Leave
Paid Holidays

Lead IT operations and teams at Forward Financing to drive scalable growth and innovative technology solutions in a hybrid work model.

Photo of the Rise User
Virta Health Hybrid No location specified
VIEW
Posted 19 hours ago

Virta Health is looking for an experienced Salesforce Administrator to lead and optimize Salesforce use within its Commercial go-to-market team, empowering improved operational workflows and data-driven decision making.

A
Arcos Hybrid No location specified
VIEW
Posted 12 days ago

Seeking an experienced Senior Security Engineer to lead security initiatives and incident response, focusing on AWS and enterprise security tools in a remote setting.

Photo of the Rise User
Cyngn Hybrid Mountain View, CA
VIEW
Posted 12 days ago

Cyngn is seeking a skilled onsite IT Manager to lead IT infrastructure, security, and support efforts within a pioneering autonomous vehicle company.

Photo of the Rise User
RELX Hybrid Alpharetta, GA
VIEW
Posted yesterday

A Senior Systems Engineer II role at LexisNexis Risk Solutions driving incident management and system reliability within a risk assessment context.

A
AmTrust Financial Services, Inc. Hybrid Cleveland
VIEW
Posted 4 days ago

A Business Systems Analyst II role at AmTrust Financial focusing on functional requirements, testing, and collaboration between business and technical teams in a hybrid work setting.

Photo of the Rise User
Endava Hybrid Hartford, CT, USA
VIEW
Posted 4 days ago

Endava is looking for an Onsite Support Engineer to deliver expert IT support and infrastructure maintenance to enhance operational efficiency.

J
Jobs for Humanity Hybrid New York, New York, United States
VIEW
Posted 10 days ago

A Senior IT Security Engineer role focused on managing enterprise physical security systems in a fully remote contract opportunity with potential conversion.

Photo of the Rise User
BRMi Hybrid Vienna
VIEW
Posted yesterday

Seeking a seasoned Business Systems Analyst to drive business efficiency through system evaluation and digital optimization at BRMi.

I
Isys Technologies Hybrid Scott AFB
VIEW
Posted 10 days ago

Lead ServiceNow development projects at I2X Technologies supporting key federal programs with a focus on ITSM and telecom modules in a secure environment.

Photo of the Rise User
WorldStrides Hybrid Remote
VIEW
Posted 3 days ago

Stride, Inc. is looking for a Senior DevOps Engineer to lead automation and best practices in AWS-centric CI/CD pipelines remotely.

Photo of the Rise User
Tyto Athene Hybrid Doral
VIEW
Posted 16 hours ago

Support critical lab IT systems and test environments as a Systems Administrator (Lab) at Tyto Athene, serving U.S. Southern Command.

Q Q Bio

2 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
No info
HQ LOCATION
No info
EMPLOYMENT TYPE
Full-time, hybrid
DATE POSTED
July 18, 2025
Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok GitHub