Planet Pharma
Job Description
Can you please confirm your top 3 skills sets required?
1. Cyber Security - Threat modeling, risk assessment, 2. Vulnerability Assessment - Signal monitoring, 3. Cyber Security Standards, NIST Security framework
Can you please confirm the 3 main responsibilities/day to day activities required for this role?
1. Vulnerability Assessment, 2. Continuous Signal Monitoring, 3. Security Risk Assessment
What is your target years of experience? 1-3Year with Bachelors' in Computer, Electrical or Related fields
Responsibilities may include the following and other duties may be assigned.
1. Product Security Specification and Design:
a. Performs security assessments of company products that may include vulnerability and risk assessments, threat analysis, and security code reviews to identify potential design and implementation vulnerabilities.
b. Designs and develop security features for products including systems, applications and/or solutions.
c. Define security architecture supporting advanced cryptographic algorithms, embedded code standard, hardware security modules, network topologies
d. Integrates new security features and updates into existing products and ensures the security of all products is maintained throughout the product lifecycle.
e. Develops verification plans for security functions, code/design review, penetration testing to ensure robust security measures.
f. Ensure processes are aligned with industry standards, regulatory requirements, and internal compliance policies.
g. Collaborate with cross-functional teams, including product development, IT, security, and quality assurance, to ensure seamless security asset deployment and lifecycle management.
h. Provide hands-on support for security asset provisioning and troubleshooting for medical devices and mobile applications across the product lifecycle.
2. Process Improvement:
a. Continuously evaluate and improve product security risk management processes to enhance efficiency, security, and scalability.
b. Implement automation tools and workflows to streamline security activities where possible.
3. Compliance and Governance:
a. Ensure that security asset management procedures adhere to relevant regulatory frameworks such as NIST, ISO 27001, or HITRUST and other applicable standards.
b. Prepare and maintain audit-ready documentation and evidence related to product security.
SPECIALIST CAREER STREAM: Typically an individual contributor with responsibility in a professional discipline or specialty. Delivers and/or manages projects assigned and works with other stakeholders to achieve desired results. May act as a mentor to colleagues or may direct the work of other lower level professionals. The majority of time is spent delivering and overseeing the projects from design to implementation while and adhering to policies, using specialized knowledge and skills normally acquired through advanced education (typically University).
DIFFERENTIATING FACTORS Autonomy: Established and productive individual contributor. Works independently with general supervision on larger, moderately complex projects / assignments. Organizational Impact: Sets objectives for own job area to meet the objectives of projects and assignments. Contributes to the completion of project milestones . May have some involvement in cross functional assignments. Innovation and Complexity: Problems and issues faced are general, and may require understanding of broader set of issues or other job areas but typically are not complex . Makes adjustments or recommends enhancements in systems and processes to solve problems or improve effectiveness of job area. Communication and Influence: Communicates primarily and frequently with internal contacts . External interactions are less complex or problem solving in nature. Contacts others to share information, status, needs and issues in order to inform, gain input, and support decisionmaking. Leadership and Talent Management: May provide guidance and assistance to entry level professionals and / or employee in Support Career Stream. Required Knowledge and Experience: Requires practical knowledge and demonstrated competence within job area typically obtained through advanced education combined with experience. Requires a University Degree and minimum of 2 years of relevant experience, or advanced degree with 0 years of experience.
Equal Opportunity Employer: We are proud to be an equal opportunity employer. We welcome and encourage applications from all qualified candidates regardless of race, sex, gender identity or expression, disability, age, religion or belief, sexual orientation, or any other characteristic protected by applicable laws and regulations. It is our policy not to discriminate against any applicant or employee, and we are committed to fostering a diverse, inclusive, and respectful work environment across all locations in which we operate. We believe that diversity, equity, and inclusion are fundamental to our mission and enhance our ability to serve clients globally. If you have a disability or require any reasonable accommodations during the application or interview process, please inform your recruiter or contact us directly so that we can explore the appropriate arrangements.
Fraud Alert: Candidate safety is a top priority at Planet Pharma. The industry has seen an increase in people falsely representing themselves as recruiters to gather personal information from job seekers. For your safety, do not provide sensitive data to anyone you have not spoken with thoroughly, never provide banking information during the application process and always double check the email address of the Recruiter to ensure it's from an official Planet Pharma domain (@planet-pharma.com, @planet-pharma.co.uk, and @ppgadvisorypartners.com) and not a domain with an alternative extension like .net, .org or .jobs.
Can you please confirm your top 3 skills sets required?
1. Cyber Security - Threat modeling, risk assessment, 2. Vulnerability Assessment - Signal monitoring, 3. Cyber Security Standards, NIST Security framework
Can you please confirm the 3 main responsibilities/day to day activities required for this role?
1. Vulnerability Assessment, 2. Continuous Signal Monitoring, 3. Security Risk Assessment
What is your target years of experience? 1-3Year with Bachelors' in Computer, Electrical or Related fields
Responsibilities may include the following and other duties may be assigned.
1. Product Security Specification and Design:
a. Performs security assessments of company products that may include vulnerability and risk assessments, threat analysis, and security code reviews to identify potential design and implementation vulnerabilities.
b. Designs and develop security features for products including systems, applications and/or solutions.
c. Define security architecture supporting advanced cryptographic algorithms, embedded code standard, hardware security modules, network topologies
d. Integrates new security features and updates into existing products and ensures the security of all products is maintained throughout the product lifecycle.
e. Develops verification plans for security functions, code/design review, penetration testing to ensure robust security measures.
f. Ensure processes are aligned with industry standards, regulatory requirements, and internal compliance policies.
g. Collaborate with cross-functional teams, including product development, IT, security, and quality assurance, to ensure seamless security asset deployment and lifecycle management.
h. Provide hands-on support for security asset provisioning and troubleshooting for medical devices and mobile applications across the product lifecycle.
2. Process Improvement:
a. Continuously evaluate and improve product security risk management processes to enhance efficiency, security, and scalability.
b. Implement automation tools and workflows to streamline security activities where possible.
3. Compliance and Governance:
a. Ensure that security asset management procedures adhere to relevant regulatory frameworks such as NIST, ISO 27001, or HITRUST and other applicable standards.
b. Prepare and maintain audit-ready documentation and evidence related to product security.
SPECIALIST CAREER STREAM: Typically an individual contributor with responsibility in a professional discipline or specialty. Delivers and/or manages projects assigned and works with other stakeholders to achieve desired results. May act as a mentor to colleagues or may direct the work of other lower level professionals. The majority of time is spent delivering and overseeing the projects from design to implementation while and adhering to policies, using specialized knowledge and skills normally acquired through advanced education (typically University).
DIFFERENTIATING FACTORS Autonomy: Established and productive individual contributor. Works independently with general supervision on larger, moderately complex projects / assignments. Organizational Impact: Sets objectives for own job area to meet the objectives of projects and assignments. Contributes to the completion of project milestones . May have some involvement in cross functional assignments. Innovation and Complexity: Problems and issues faced are general, and may require understanding of broader set of issues or other job areas but typically are not complex . Makes adjustments or recommends enhancements in systems and processes to solve problems or improve effectiveness of job area. Communication and Influence: Communicates primarily and frequently with internal contacts . External interactions are less complex or problem solving in nature. Contacts others to share information, status, needs and issues in order to inform, gain input, and support decisionmaking. Leadership and Talent Management: May provide guidance and assistance to entry level professionals and / or employee in Support Career Stream. Required Knowledge and Experience: Requires practical knowledge and demonstrated competence within job area typically obtained through advanced education combined with experience. Requires a University Degree and minimum of 2 years of relevant experience, or advanced degree with 0 years of experience.
Equal Opportunity Employer: We are proud to be an equal opportunity employer. We welcome and encourage applications from all qualified candidates regardless of race, sex, gender identity or expression, disability, age, religion or belief, sexual orientation, or any other characteristic protected by applicable laws and regulations. It is our policy not to discriminate against any applicant or employee, and we are committed to fostering a diverse, inclusive, and respectful work environment across all locations in which we operate. We believe that diversity, equity, and inclusion are fundamental to our mission and enhance our ability to serve clients globally. If you have a disability or require any reasonable accommodations during the application or interview process, please inform your recruiter or contact us directly so that we can explore the appropriate arrangements.
Fraud Alert: Candidate safety is a top priority at Planet Pharma. The industry has seen an increase in people falsely representing themselves as recruiters to gather personal information from job seekers. For your safety, do not provide sensitive data to anyone you have not spoken with thoroughly, never provide banking information during the application process and always double check the email address of the Recruiter to ensure it's from an official Planet Pharma domain (@planet-pharma.com, @planet-pharma.co.uk, and @ppgadvisorypartners.com) and not a domain with an alternative extension like .net, .org or .jobs.