Product Security Lead
Confirmed live in the last 24 hours
 identifeye HEALTH

11-50 employees

Non-invasive health diagnostics through eye examination
Company Overview
are Identifeye Health, a company that is pioneering a non-invasive diagnostic platform that leverages the unique visibility of the retina to detect a wide range of health conditions. Our commitment to democratizing healthcare is evident in our efforts to provide affordable, convenient, and efficient access to healthcare, enabling patients to be more involved in their care decisions. Backed by the 4Catalyzer accelerator, we are part of a robust network of scientists and engineers, and our founder, Jonathan Rothberg, is renowned for his significant contributions to DNA sequencing and ultrasound technology.
Data & Analytics
Hardware

Company Stage

Series B

Total Funding

$80M

Founded

2018

Headquarters

Guilford, Connecticut

Growth & Insights
Headcount

6 month growth

-11%

1 year growth

2%

2 year growth

4%
Locations
San Carlos, CA, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Python
Communications
AWS
iOS/Swift
Linux/Unix
CategoriesNew
IT & Security
Software Engineering
Requirements
  • Bachelor’s degree in a related discipline
  • 5+ years of experience in an engineering or technical role delivering privacy and security solutions for cloud technologies
  • Software development experience in a general purpose programming language
  • Proven experience successfully building and implementing a high functioning security infrastructure in a regulated environment
  • Experience achieving security compliance certifications such as HITRUST, SOC-2, ISO27001, FedRAMP, etc.
  • Knowledge of risk assessment tools, technologies and methods
  • Strong technical and business acumen, with ability to lead complex organizational security initiatives and decisions
  • Demonstrated leadership skills and proven ability to drive change in a complex environment
  • Strong vision for building a security-conscious culture
  • Excellent written and verbal communication skills
  • Ability to manage competing priorities in a fast paced and changing environment
  • Ability to work onsite in Redwood City, CA office. Hybrid working arrangements available
Responsibilities
  • Ownership of information security strategy and execution
  • Drive the development, implementation and maintenance of security and data privacy policies, standards and procedures, staying up to date with industry standards and regulatory changes
  • Partner closely with cross-functional stakeholders to build a robust security infrastructure and governance program to continuously evaluate, track and manage privacy and security risks
  • Lead company efforts for HITRUST and SOC-2 certifications for our cloud hosted medical device, as well as applicable international standards to support identifeye’s growth
  • Identify and build the infrastructure needed to support HIPAA, GDPR and CCPA
  • Establish and maintain a compliant vendor risk management program, with ownership of Business Associate Agreements (BAA) and the like
  • Ownership of product security requirements and testing, including investigation of data residency laws for future market expansion
  • Managing the planning and preparation of cybersecurity compliance submissions for identifeye products to support pre- and post- market requirements
  • Maintain regular risk assessments, remediation, incident management and auditability
  • Drive continuous education and training of security compliance methodology and frameworks, fostering a security-conscious culture
Desired Qualifications
  • Advanced degree in a related discipline
  • Experience with mobile devices (iOS preferred) and/or embedded software (Python preferred)
  • Experience with IoT security running embedded Linux
  • Knowledge of AWS solutions and implementation
  • Prior experience in a medical device startup environment