Technical Lead – IoT/Embedded Product Security

Position

Technical Lead

Key Responsibilities

• Lead and oversee cybersecurity design, review, and implementation for IoT and embedded products across medical, industrial automation, and consumer IoT domains.
• Perform threat modeling, risk assessments, and vulnerability analyses for connected devices and their ecosystems.
• Guide the team in applying cybersecurity standards such as IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, AAMI TIR 97, and IEC 62443 where applicable.
• Participate in the design of security architecture, secure boot, secure firmware update, and other embedded security controls.
• Perform security testing including vulnerability assessment and penetration testing for hardware, embedded software, and connectivity protocols.
• Maintain and review cybersecurity design documents, threat analyses, and risk assessment reports for medical and industrial products.
• Collaborate with development and compliance teams to ensure cybersecurity requirements are implemented and met throughout the product development lifecycle.
• Mentor and guide junior engineers and review their work to ensure security best practices are followed.
• Stay updated with the latest cybersecurity threats, regulations, and standards, and help adapt the team and products to these changes.
  

Qualifications

• 8–14 years of experience in cybersecurity, focusing on IoT and embedded devices.
• Strong understanding of cybersecurity standards and regulations such as IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, AAMI TIR 97, IEC 62443, and related frameworks.
• Hands-on experience with threat modeling, risk assessment, and security architecture design for connected devices.
• Experience with embedded systems security, secure boot, secure OTA, encryption, and vulnerability assessments.
• Strong knowledge of cybersecurity best practices and experience working with medical, industrial automation, or consumer IoT products.
• Understanding of medical device and embedded product lifecycle and quality standards (e.g., ISO 13485, IEC 62304, ISO 14971).
• Excellent problem-solving, teamwork, and communication skills.
• Ability to lead a team, review technical work, and guide junior engineers.
• Certifications like CISSP, GICSP, CRISC, or relevant cybersecurity certifications are a plus.
  

Location:

Time Type

Job Category