Staff Security Engineer (Remote/Flexible) at Insulet in Acton, Massachusetts

Job Description:

Insulet started in 2000 with an idea and a mission to enable our customers to enjoy simplicity, freedom and healthier lives through the use of our Omnipod® product platform. In the last two decades we have improved the lives of hundreds of thousands of patients by using innovative technology that is wearable, waterproof, and lifestyle accommodating.

We are looking for highly motivated, performance driven individuals to be a part of our expanding team. We do this by hiring amazing people guided by shared values who exceed customer expectations. Our continued success depends on it!

Job Title: Staff Security Engineer

Department: Security and Privacy Operations

Manager/Supervisor: (Sr) Manager, Device and Software Security

FLSA: Exempt

Position overview:

Insulet is a leading developer and manufacturer of wearable, connected medical devices and is seeking a seasoned product security expert to join the Product Cyber Security Team and support the R&D teams in developing next generation IoT solutions. Our state of the art, next generation medical devices are industry leaders in automated insulin delivery. If you have experience in areas such as threat-modeling, application security, operating system security architecture, identity and access management, cyber resiliency, and security operations; you will help us to make our devices equally secure in an ever-changing cyber landscape.

Responsibilities

• Serve as technical lead for a cybersecurity team of 4-6 people


• Partner with the team supervisor to refine and execute on strategic objectives for the team


• Researching, developing, operationalizing, evaluating, and improving defensive tactics, techniques, and procedures for detecting and responding to mobile security cyber threats.


• Performing security evaluations of client applications, including Android and iOS.


• Provide security guidance on a constant stream of new products and technologies.


• Conduct regular security assessments specializing on mobile platform and application code.


• Work with engineering and security teams to implement detection capabilities, develop and deploy new tooling, and improve response capabilities.


• Define, implement, and tune detection capabilities and data sources to rapidly detect and remediate malicious activity.


• Analyze security data and report on threats and incidents across various platforms and environments.


• Interact directly with the security community regarding mobile security vulnerabilities and threats.


• Develop and use automation to improve identification and response time to reduce impact for incidents.

• BS/MS in Computer Science, Information Systems, Electrical Engineering, or the equivalent in experience and evidence of exceptional ability.


• 6+ years as an engineer in a technology field


• Excellent understanding and experience in multiple security domains such as application security, mobile security, hardware security, incident response, malware analysis, cloud security, and forensics.


• Programming skills in Java, Kotlin, Swift or other languages.


• Automation and development experience in Python, Go, Rust, C++, JavaScript, etc.


• Familiarity with the following disciplines and frameworks with deep experience in one or

Preferred Skills and Competencies:

• OWASP Mobile Application Verification Standard


• OWASP Mobile Security Testing Guide


• MITRE ATT&CK Framework - Mobile Matrices


• NIST Cybersecurity Framework


• Experience working with multiple stakeholders such as engineering/operations teams, internal business units, external incident response teams, and law enforcement throughout the incident lifecycle.


• Possess strong writing and communication skills.

NOTE: This position is eligible for 100% remote working arrangements (may work from home/virtually 100%; may also work hybrid on-site/virtual as desired). #LI-Remote

Additional Information:
The US base salary range for this full-time position is $131,100.00 - $196,950.00. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position in the primary work location in the US. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your Talent Acquisition Specialist can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits.

At Insulet Corporation all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

( Know Your Rights )