← all jobs

[Remote] Product Security Manager

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. iRhythm Technologies, Inc. is a leading digital healthcare company focused on cardiac health solutions. They are seeking a Product Security Manager with medical device experience to ensure the protection of patient data and device integrity while ensuring compliance with regulatory standards.

Responsibilities

  • Ensure compliance with FDA cybersecurity guidance and regulations in collaboration with Cybersecurity, Regulatory, Quality, and Systems Development teams
  • Conduct comprehensive security risk assessments, including Cybersecurity Risk Assessments (CSRAs), to identify vulnerabilities and threats across device hardware, firmware, software, and cloud components
  • Develop and maintain device-specific cyber threat models, factoring in patient safety, data privacy, and operational continuity
  • Demonstrate familiarity with Software Bill of Materials (SBOM) and effectively communicate technical details
  • Create and maintain cybersecurity documentation for pre- and post-market activities, ensuring regulatory alignment
  • Produce detailed data flow diagrams to support the threat modeling process
  • Participate in design reviews of medical device architectures and implementations, providing actionable recommendations for system security requirements
  • Perform and support vulnerability analysis and coordinate the vulnerability management program, including scanning, patching, and remediation for medical devices
  • Leverage and maintain application and threat detection tools (Veracode, Snyk, GitLab, or equivalent) to identify security flaws early in the SDLC
  • Support investigation and remediation of device-related security incidents, minimizing impact and preventing recurrence
  • Partner with the Privacy Team to ensure adherence to HIPAA, GDPR, and other data protection regulations

Skills

  • Bachelor's degree in Computer Science, Information Security, or related field
  • 6+ years of experience in information security, with direct focus on product security for medical devices
  • Strong understanding of security principles, methodologies, and tools within the PDLC and SDLC
  • Demonstrated experience conducting Cybersecurity Risk Assessments (CSRAs), vulnerability analysis, and working with modern threat detection tools (Veracode, Snyk, GitLab, or similar)
  • Familiarity with NIST Cybersecurity Framework, NIST SP 800-171, and deeper controls/frameworks such as NIST SP 800-53 (Security and Privacy Controls), NIST SP 800-92 (Log Management), and NIST SP 800-63 (Digital Identity Guidelines)
  • Hands-on experience with vulnerability identification and threat modeling within healthcare using methodologies such as STRIDE
  • Experience operating in a regulated environment (FDA, HIPAA, GDPR, international regulatory frameworks)
  • Experience with medical device hardware or Software as a Medical Device (SaMD)
  • Experience with medical device software development and regulatory processes
  • Excellent problem-solving, analytical, and communication skills, able to take a multi-siloed approach
  • Ability to understand intro dependencies of teams across; mobile applications, hardware and cloud environments
  • Demonstrated experience supporting 510(k) submissions, with a focus on product security documentation, risk assessments, and regulatory compliance
  • Industry certifications such as CISSP, CISM, CISA, or medical device security–specific certifications
  • Experience with international frameworks and standards (EU MDR, JIS T 2304 / IEC 62304)
  • Understanding penetration testing methodologies and tools, able to work with pen test teams independently with little guidance
  • Proficiency with programming languages and technologies commonly used in medical device development

Company Overview

  • iRhythm is a leading digital health care company that creates trusted solutions that detect, predict, and prevent disease. It was founded in 2006, and is headquartered in San Francisco, California, USA, with a workforce of 1001-5000 employees. Its website is http://www.irhythmtech.com.
  • Company H1B Sponsorship

  • iRhythm Technologies, Inc. has a track record of offering H1B sponsorships, with 2 in 2026, 9 in 2025, 13 in 2024, 10 in 2023, 9 in 2022, 16 in 2021, 11 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Senior Enterprise Product Manager

    Work from home Full-time role

    [Remote] Senior Equipment Engineer

    Work from home Full-time role

    [Remote] Sr. Healthcare Analyst

    Work from home Full-time role

    [Remote] Senior Backend Engineer

    Work from home Full-time role

    [Remote] Security Engineer (Remote)

    Work from home Full-time role

    Clinician Coding Liaison - Medical Based Specialties

    Work from home Full-time role

    Remote Data Entry Specialist - careerzynith Project

    Work from home Full-time role

    [Remote] Advanced Technologies Consultant

    Work from home Full-time role

    Sales Engineer

    Work from home Full-time role

    Golang & Java Developer (AWS)

    Work from home Full-time role

    Auteur Freelance - Business du sport

    Work from home Full-time role

    General Radiologist – Per Diem

    Work from home Full-time role

    Senior, Technical Content Marketing

    Work from home Full-time role

    Account Executive Hereditary Cancer - Utah

    Work from home Full-time role

    Senior Manager, Marketing Operations

    Work from home Full-time role

    Full Stack Web Developer- Hybrid In San Diego

    Work from home Full-time role

    ServiceNow Developer

    Work from home Full-time role

    eAcute Virtual Care Nurse - Part Time Day Shift

    Work from home Full-time role

    Africa Talent by Deloitte - Denmark IT - Senior Consultant

    Work from home Full-time role

    Provider Data Manager - Cigna Healthcare - Remote

    Work from home Full-time role

    Experienced Overnight Healthcare Customer Service Representative – Telehealth Support and Patient Engagement

    Work from home Full-time role