The Role

This is a Product Security Engineer 3 position with Hologic's DevSecOps Engineering Center of Excellence in San Diego, CA. You'll be working on our diagnostics products, focusing on building and improving security across the board. It's not a desk jockey role. You'll interact directly with Engineering and Field Service teams to make sure our networked products meet customer expectations for performance. Travel to Hologic offices, training sites, and customer locations will come up occasionally.

What You'll Actually Do

Keep an eye on the industry for new cybersecurity threats and assess what risk those threats pose to Hologic products.
Run vulnerability assessments against Hologic products, document the findings, and support product teams in addressing them.
Help product development teams handle security and network vulnerability issues as they arise.
Develop thorough test procedures for qualifying OS patches and anti virus software; then create and automate those tests within the lab environment.
Train sales and service teams on network security topics and virus protection issues.
Work alongside software engineers to define and implement security requirements from scratch.

The Kind of Person We Want

You need the discipline to monitor security threats continuously ; not just glance at a monthly report ; assess real risk to our products, then disposition that risk following established quality procedures. You should be comfortable troubleshooting issues with networked, computer based equipment. Some supervision is fine but you'll operate largely in alignment with strategic priorities on your own initiative. And you need a solid understanding of network design concepts combined with hands on experience using security analysis tools.

Qualifications & Experience

A Master's or Bachelor's degree in Computer Science, Management Information Science, Engineering, or a related technical field.
4–8 years of relevant experience that covers: computer and network security; computer networking administration; Microsoft Windows and Linux operating systems; software application test and maintenance; cybersecurity risk assessment.
Experience working in enterprise computer network infrastructure environments.

Nice to Haves (But Not Required)

Medical information system administration experience.
Software verification work inside a regulated industry setting (medical devices or similar).
Knowledge of PACS, DICOM, ASTM, HL7, EMR, EHR standards or medical informatics generally.
A background doing technical support for Field Service teams or end users directly.
CISSP certification or other recognized security certifications are strongly preferred ; go get them if you don't have them already because they help here a lot. OS certifications (Windows or Linux) are preferred too. Networking certifications like Cisco also count in your favor. Healthcare industry experience ; whether you worked at a provider organization or another medical equipment company ; would round things out nicely but isn't mandatory by any means.

The Pay & The Package

The base salary range for this role runs from $109,900 up to $171,800 annually ; that number depends on where you live how much experience you bring your education credentials what the market looks like at that moment plus actual business needs here at Hologic overall determining factors there settle final compensation packages accordingly based on all those pieces coming together realistically speaking . This role is bonus eligible too so factor that into total comp thinking if it helps make comparisons easier when considering other opportunities simultaneously down the road somewhere else maybe even right now . Nobody ever got excited about vague promises either way though which is why I mention specifics right upfront instead . These numbers exist exactly as stated unless negotiation changes something eventually later during offer discussions perhaps ultimately after interviews conclude successfully first obviously . Typical stuff applies regarding everything else standard these days basically . And we back it all up transparently because why wouldn't we?

Security Specialist

About This Role