Shockwave Medical, Inc. is a pioneer in the development and commercialization of Intravascular Lithotripsy (IVL) to treat complex calcified cardiovascular disease. Shockwave Medical aims to establish a new standard of care for medical device treatment of atherosclerotic cardiovascular disease through its differentiated and proprietary local delivery of sonic pressure waves for the treatment of calcified plaque.
Position Overview
The IT Security Analyst role will be responsible for assisting in the implementing, maintaining, and monitoring of security tools, resources, and other technology at Shockwave Medical. The ideal candidate will be someone who is tactical with knowledge of industry standard best practices and recognized frameworks. The position will have you coordinate all security functions and processes required to support business operations and to keep the Shockwave Medical infrastructure, data and network secure. It requires working closely with senior leadership globally to establish security and compliance practices, oversee day-to-day matters relating to security and compliance, and to address any security or compliance related challenges.
Essential Job Functions
- Monitor the security operations tools and resources while coordinating with SOC with alerts and findings.
- Assists in the implementation of new security technologies while optimizing existing security technologies.
- Provides recommendations to operational IT teams and business units on processes, controls, and objectives around information security activities, best practices, and process improvements.
- Keeps informed regarding new and emerging information technology trends including IAM solutions, endpoint protection technologies, web application firewalls and intrusion prevention, encryption, access control methodologies, IDS/IPS systems, SIEM tools and network scanners.
- Performs periodic and on-demand system and vulnerability assessments related to third party risk management.
- Develops, updates, and assists in maintaining Information Security Awareness training documentation and materials.
- Coordinates with enterprise risk management function for appropriate impact analyses. Maintains working understanding of HIPAA Privacy and Security Rules, GLBA and PCI assessments through execution of audit tests, controls reviews, issues identification and areas for improvement.
- Maintains working understanding of technical control testing aligned with NIST CSF and COBIT.
- Maintains working understanding of common OS and domain structures, servers, services, and associated vulnerabilities.
- Maintains working understanding of network engineering and local and wide area (LAN/WAN) technologies and topologies.
- Maintains working understanding of cloud deployments and associated risk considerations.
Requirements
- BS or BA preferred.
- 1 to 3 years of IT or Information Security experience.
- Security certifications (Sec+, CySA+, CASP+, etc.) or the willingness to obtain certifications desirable.
- Knowledge of EDR, Email Security, DLP, and other security technologies.
- Familiarity with physical security control systems (badging, door lock controls, camera systems) desirable.
- Familiarity with ISO 27001, SOC1/2 auditing and associated requirements.
- Familiarity/experience with FDA and SOX regulated environments.
- Strong written and verbal communication skills to communicate effectively at all levels.
- Ability to work in a fast-paced environment while managing multiple priorities.
- Ability to operate as a team and/or independently while demonstrating flexibility to changing requirements.
Market Range
San Francisco Bay Area (SFBA) Market Range: $74,000-$94,000
All Other US Locations (Outside of SFBA): $64,00-$80,000
Exact compensation may vary based on skills, experience, and location.
Benefits
Shockwave Medical offers a competitive total compensation package as well as the following benefits and perks:
Core Benefits: Medical, Dental, Vision, Pre-tax and Roth 401k options with a fully vested match, Short-Term and Long-Term Disability, and Life Insurance, Employer contribution toward Health Savings Account (HSA), Competitive PTO balance
Perks: Calm App, Pet Insurance, Student Loan Refinancing, Spot Bonus awards
EEO Employer