Iot Specialist

Are you ready to be part of a leading global engineering design house specializing in the design and development of embedded software/hardware, electronics, and electro-mechanics?

What we’re looking for

• Highly motivated and dynamic professionals • Motivated designers with broad backgrounds and service mindset to be a consultant • Professionals with ability to work both with in-house projects and on-site assignments at our customer’s locations What you'll do

• Overview of what other clients have implemented to address cybersecurity.
• Map out levels of cybersecurity applicable to the existing platform.
• Formulate an overarching strategy that covers our medical products.
• Evaluate the cybersecurity measures currently have in place.
• Document any interdependencies, process flow maps or other diagrams relay the information best.
• Create a risk/gap listing and recommend mitigation for any risks/gaps.
• Estimate the work required to implement the mitigations.

What you'll need to get the job done

• Cybersecurity Expertise
• In-depth understanding of cybersecurity principles, concepts, and best practices.
• Familiarity with different types of cyber threats and attack vectors targeting IoT devices.
• Knowledge of encryption protocols, authentication methods, and access control mechanisms.

Medical Device Knowledge- Understanding of medical device functionality and architecture.

• Awareness of regulatory standards and guidelines for medical device security (e.g., FDA guidance, AAMI and IEC 82340-2, HIPAA, 21CFR PART 11, HL7, ISO 27001, IEC 62304).

IoT Security- Knowledge of IoT protocols and communication technologies (e.g., MQTT, CoAP, HTTP, Bluetooth, Zigbee).

• Experience in securing IoT networks, including firewalls, intrusion detection/prevention systems, and network segmentation.

Vulnerability Assessment and Penetration Testing- Ability to perform security assessments on IoT devices to identify vulnerabilities and weaknesses.

• Conducting penetration testing to simulate real-world attacks and discover potential exploits.

Secure Coding Practices- Proficiency in secure coding practices for developing and maintaining IoT device software and firmware.

• Understanding common vulnerabilities like buffer overflows, injection attacks, and cross-site scripting (XSS).

Risk Management- Capability to assess and manage risks associated with potential security threats and breaches.

• Developing risk mitigation strategies and incident response plans.

Regulatory Compliance- Knowledge of healthcare and medical device regulations related to data protection and cybersecurity.

• Ensuring that IoT devices meet necessary compliance standards.

Network Security- Understanding of network security principles, including segmentation, firewalls, VPNs, and intrusion detection systems.

Cryptography- Familiarity with cryptographic algorithms, key management, and secure key exchange protocols.

• Applying encryption to protect sensitive data in transit and at rest.

Security Monitoring and Incident Response- Experience in setting up security monitoring systems to detect and respond to cyber threats in real-time.

• Developing incident response plans and coordinating actions in case of a security breach.

Communication and Collaboration- Effective communication skills to work with cross-functional teams including engineers, medical professionals, and regulatory experts.

• Collaborating with stakeholders to implement security measures without disrupting device functionality.