Cybersecurity Manager / Regulated Products – Remote in Cleveland OH

Full-time @Steris in Finance , in Healthcare , in Information Security , in Information Systems , in Medical Device , in Product Development , in Research , in Risk Management , in Technology
  • Cleveland, OH, US, 44060 View on Map
  • Apply Before : November 15, 2022

Job Description

Join Steris as Cybersecurity Manager / Regulated Products – Remote in Cleveland Ohio. At the Steris you will perform tasks as listed below, Apply Steris Regulatory Affairs careers in Cleveland OH.

 

Position : Cybersecurity Manager / Regulated Products – Remote

Job Category: Regulatory Affairs

Work location : Cleveland, Ohio

Job Segment : Medical Device, Risk Management, Product Development, Information Security, Information Systems, Finance, Healthcare, Research, Technology

 

Description: 

At STERIS, we help our Customers create a healthier and safer world by providing innovative healthcare and life science product and service solutions around the globe.
Position Summary
 

The mission of the STERIS US Regulatory Affairs function is to implement efficient and effective processes to initially obtain and then maintain clearance to market STERIS products in support of STERIS’s global business plans. This includes determining registration and/or submission requirements in the US, working with STERIS international registration staff to identify requirements in other targeted markets, and working with product acquisition or development teams to ensure these requirements are met. This group also identifies and supports Regulatory compliance needs.

 

The Regulatory Product Cybersecurity Manager position is a hybrid position that blends responsibilities under the traditional Regulatory Manager position with those of a Cybersecurity Manager. As STERIS products and solutions continue to evolve to align with trends in digital healthcare solutions, the Regulatory Product Cybersecurity Manager will assist the Director of Regulatory Product Cybersecurity in developing and implementing a Product Cybersecurity Program, including developing policies, procedures, work instructions and templates that ensure STERIS products and service solutions comply with required cybersecurity regulations, industry standards, and guidance. This individual will also ensure cybersecurity tools and work instructions are in place that enable STERIS to successfully identify, detect, protect, respond, and recover from potential cyber threats and/or incidents. This individual has significant experience managing, guiding and/or leading professional staff through addressing a variety of product cybersecurity areas of focus. This individual will directly manage staff-level professionals and lead/guide staff from other disciplines outside of Regulatory Affairs in achieving the cybersecurity objectives of the assigned projects.  

 

 

This position is based in Mentor, OH . Open to remote option or relocation for an experienced candidate.
Duties
 

The Regulatory Product Cybersecurity Manager will have responsibility, for performing the duties of the functional areas described below with little or no daily direct supervision required. Activities that involve leveraging the below may require close work with STERIS corporate, domestic, and international staff and interactions with FDA and other federal agencies as assigned.

Essential Job Functions – Cybersecurity and Privacy (50%)

Collaborates with Director of Product Cybersecurity and Cybersecurity Working Group to define, implement and maintain a Product Cybersecurity Program based on security and privacy frameworks, security standards and certifications required for STERIS to meet regulatory requirements and Customer agreements.
Collaborate with cross functional partners to develop, implement, and maintain policies, procedures, and work instructions for the Product Cybersecurity Program, ensuring integration into the STERIS QMS.
Collaborates with the STERIS Product Cybersecurity Working Group and internal stakeholders to maintain a common understanding of threat intelligence picture and product cybersecurity posture for STERIS, including:
Support the Service and Commercial teams with the Security specific responses needed for RFP responses, product security questionnaires, new Customer agreements and reviews of Security-specific labeling.
Serves as expert and liaison to Customers, senior leaders, other internal stakeholder to explain product cybersecurity regulatory obligations for domestic and international markets.
Leads vulnerability assessments and determination of remediations on reported vulnerabilities and security incidents.
Provides product cybersecurity guidance and support to new product development teams to meet timely delivery of cybersecurity-related content for product approval applications in accord with business objectives.  
Co-chairs STERIS Product Cybersecurity Working Group.
Supports the STERIS Regulatory Group leadership with product regulatory cybersecurity strategy and serves as a representative for Product Regulatory Cybersecurity as requested on the STERIS Cybersecurity Committee.
Instills a security first mindset through coaching and mentorship. Identify and encourage areas for growth and improvement corporate-wide. 
Collaborates with product teams and Regulatory Compliance to conduct gap assessments on cybersecurity and privacy risk management strategy, activities, and associated documentation.
Other related duties as assigned.

 

Duties – cont’d
Other Product Cybersecurity Support (25%)

Supports internal audits of STERIS manufacturing facilities and/or potential acquisitions to help ensure compliance with Product Cybersecurity Program requirements.
Supports Regulatory Representatives of STERIS manufacturing facilities and international locations by assisting in one or more of the following areas:

General Duties (25%)

Supports STERIS Regulatory Strategy, accurately communicating it to internal partners and stakeholders. 
Acts as champion for compliance with design controls, good documentation practices, and risk management standards, especially for cybersecurity. 
Manages staff-level professionals and leads/guides staff from other disciplines outside of Regulatory Affairs in achieving the cybersecurity objectives of the assigned projects.  
Uses his/her influence and experience in cybersecurity to partner with stakeholders from diverse functional areas of the company to bring about continuous improvement in the Product Cybersecurity Program.
Stays abreast of applicable product cybersecurity laws, regulations, industry standards and best practices.
Actively represents STERIS on external MedTech committees such as H-ISAC, AAMI and AdvaMed.

 

Experience
Required:

Bachelor’s Degree in Computer Science, Information Systems, or equivalent areas related to cybersecurity or information security
Minimum 5 years directly or indirectly guiding or managing security-related personnel in ensuring products, services and associated networks are secure and access to sensitive information is only by authorized personnel.
Experience ensuring product and service solutions comply with cybersecurity regulations and guidance, legislation, and/or industry security standards.
Experience developing and reviewing cybersecurity content required for regulatory submissions, preferably for medical device companies.  Experience managing legal and/or government cybersecurity compliance matters may be substituted for industry experience for highly qualified individuals.  
Ability to stay abreast of evolving national/international regulatory guidance, legislation, and industry standards applicable to medical device and healthcare IT cybersecurity (e.g., CVSS, ISO, IEC, AAMI, FDA, HIPAA, GDPR, DoD RMF guidance/standards). 

Preferred:

Cybersecurity Bootcamp graduates with Bachelor’s Degree in other areas will be considered.
Experience directly managing IT or product security personnel in a regulated environment securing products and IT infrastructures for a broad range of diverse and complicated product solutions is highly desirable.
Relevant Data Protection / Privacy Management qualification. 
Security testing (e.g., vulnerability scanning, fuzz testing, static application security testing, dynamic application security testing, etc).
Cybersecurity certifications minimum: CompTIA Network+, CompTIA Security+ or GIAC Security Essentials; also, a desire to acquire more advanced certifications (e.g., CSRM, HCISPP, CISSP, CISM).

 

#LI-SA2

 
 

STERIS is a leading provider of products and services that meet the needs of growth areas within Healthcare: procedures, devices, vaccines and biologics.  We exist to fulfill our MISSION TO HELP OUR CUSTOMERS CREATE A HEALTHIER AND SAFER WORLD. STERIS is a $3B, publicly traded (NYSE: STE) company with approximately 16,000 associates and Customers in more than 100 countries.

If you need assistance completing the application process, please call 1 (440) 392.7047. This contact information is for accommodation inquiries only and cannot be used to check application status.

STERIS is an Equal Opportunity Employer.  We are committed to equal employment opportunity and the use of affirmative action programs to ensure that persons are recruited, hired, trained, transferred and promoted in all job groups regardless of race, color, religion, age, disability, national origin, citizenship status, military or veteran status, sex (including pregnancy, childbirth and related medical conditions), sexual orientation, gender identity, genetic information, and any other category protected by federal, state or local law.  We are not only committed to this policy by our status as a federal government contractor, but also we are strongly bound by the principle of equal employment opportunity.

The full affirmative action program, absent the data metrics required by § 60-741.44(k), shall be available to all employees and applicants for employment for inspection upon request. The program may be obtained at your location’s HR Office during normal business hours.

Nearest Major Market: Cleveland

Nearest Secondary Market: Akron

Job Tags : Steris careers in Cleveland, Regulatory Affairs jobs in Cleveland OH, Medical Device jobs hiring, Risk Management jobs in Cleveland, Product Development careers, Cleveland jobs in Medical Device sector, Jobs nearby in Cleveland Ohio, Steris hiring nearby me in Cleveland OH, Information Security jobs,

Aim: Are you engineer or from relevant fields? Highfit Jobs is great fits for you to find latest engineering jobs update for Cleveland engineers, Apply WSP Global jobs in Cleveland as Cybersecurity Manager / Regulated Products – Remote.

Required skills