Working Location: MASSACHUSETTS, WESTBOROUGH; MINNESOTA, BROOKLYN PARK; PENNSYLVANIA, CENTER VALLEY

Workplace Flexibility: Hybrid

Are you looking for a company that cares about people’s lives and health, including yours? Let’s inspire healthier lives, together.

Olympus, a leading medical technology company, has focused on making people’s lives better for over 100 years.

Our Purpose is to make people’s lives healthier, safer, and more fulfilling.

Our Core Values are reflected in all we do: Integrity – Empathy – Agility – Unity – Long-Term View

We deliver on our purpose and our core values by staying True to Life.

**Please note: All correspondence will be sent from our Olympus domain (@Olympus.com). If you receive correspondence from an entity other than @Olympus.com, it is likely not legitimate.

Job Description

The Digital Unit is developing and maintaining software-based products that require specific attention to security and risk management. The Product Security Risk Manager at Olympus Corporation's Digital Unit will lead workstreams where risk evaluation is critical to product development or maintenance. Additionally, this role will interact with many cross-functional teams to ensure appropriate risk plans are made, documented, and executed. This role combines technical expertise, leadership, a controls mindset, and strategic thinking to ensure security and resilience of our digital products.

Job Duties

• Be a security risk management expert in healthcare with experience on industry standards, guidance, regulations, and tools.

• Lead a team and provide oversight on threat modeling and security risk management activities through the pre-market phase.

• Develop a state-of-the-art risk management program that scales for Digital Unit products.

• Help make appropriate and objective product security risk decisions on new and legacy devices.

• Support risk management decisions and documentation related to security in Digital Unit Products.

• Consult with teams in quality, regulatory, legal, and other function to ensure adherence to all quality system guidance related to product security.

• Lead various projects related to ISO27001, SOC2, HITRUST, and other relevant certifications.

• Contribute to the Product Security leadership team within the Digital Unit.

• Provide guidance and thought leadership on how to enhance processes, procedures, and documentation related to security risk management.

• Ensure compliance with regulatory requirements, industry standards, guidance, security trends, and internal policies governing product security, globally (including US, Japan, and EU).

• Participate and represent Olympus in external cybersecurity forums as appropriate, including with regulators and standards organizations.

Job Qualifications

Required:

• Bachelor’s degree in information technology, cybersecurity, computer engineering or related area preferred with equivalent experience acceptable.

• Minimum of 10 years’ experience in Information Technology, Engineering, and/or Cybersecurity with focus on the medical device industry.

• Other Considerations (travel/hours availability, etc.):

• Occasional travel may be required.

• Work time outside of “normal” workhours may be required from time to time.

Preferred:

• Advanced certifications (CISSP, CISM, CISA, etc.) preferred.

• Demonstrated experience in understanding complex, global regulations impacting the healthcare environment.

• Expert knowledge of security risk management standards and regulations in healthcare.

• Expertise in threat modelling, secure coding, secure system development, and DevSecOps

• Knowledge of product security related to software and/or cloud enabled products.

• Experience with embedded technology and software security.

• Strong communicator and ability to manage several complex tasks while keeping leadership updated on key status.

• Experience or knowledge of government and industry standards, guidance’s and frameworks applicable to product software development such as NIST Cybersecurity Framework, OWASP, HIPAA, SANS/CWE and/or CERT, EU MDR, STIG, FDA, NIST; ISO, GDPR, PCI, etc.

Why join Olympus?

Here, people matter—our health, our happiness, and our lives.

• Competitive salaries, annual bonus and 401(k)* with company match

• Comprehensive Medical, Dental, Visions coverage effective on start date

• 24/7 Employee Assistance Program

• Free virtual live and on-demand wellness classes

• Work-life balance supportive culture with hybrid and remote roles

• 12 Paid Holidays

• Educational Assistance

• Parental Leave and Adoption Assistance

• Volunteering and charitable donation match programs

• Diversity & Inclusion Programs including Colleague Affinity Networks

• On-Site Child Daycare, Café, Fitness Center**

*US Only

**Limited locations

We care about your health and financial well-being and offer the resources you need to feel vital, confident and ready for wherever life takes you. Learn more about our benefit offerings at https://www.olympusamerica.com/careers/benefits-perks .

The anticipated base pay range for this full-time position working at this location is $111,675.00 - $156,345.00 / year, plus potential for annual bonus (subject to plan eligibility and other requirements). Olympus considers a variety of factors when determining actual compensation for this position including: level of experience, working location, and relevant education and certifications.

About us:

Our Medical business uses innovative capabilities in medical technology, therapeutic intervention, and precision manufacturing to help healthcare professionals deliver diagnostic, therapeutic, and minimally invasive procedures to improve clinical outcomes, reduce costs, and enhance the quality of life for patients and their safety.

Headquartered in Tokyo, Japan, Olympus employs more than 31,000 employees worldwide in nearly 40 countries and regions. Olympus Corporation of the Americas, a wholly owned subsidiary of Olympus Corporation, is headquartered in Center Valley, Pennsylvania, USA, and employs more than 5,200 employees throughout locations in North and South America. For more information, visit www.olympusamerica.com .

Olympus is dedicated to building a diverse, inclusive and authentic workplace

We recognize diversity in people, views and lifestyle choices and emphasize the importance of inclusion and mutual respect. We strive to continue to foster empathy and unity in the workplace so that our employees can fully contribute and thrive.

Let’s realize your potential, together.

It is the policy of Olympus to extend equal employment and advancement opportunity to all applicants and employees without regard to race, color, national origin (including language use restrictions), citizenship status, religious creed (including dress and grooming practices), age, sex (including pregnancy, childbirth, breastfeeding, medical conditions related to pregnancy, childbirth and/or breastfeeding), gender, gender identity and expression, sexual orientation, marital status, disability (physical or mental) and/or a medical condition, genetic information, ancestry, veteran status or service in the uniformed services, and any other characteristic protected by applicable federal, state or local law.

Applicants with Disabilities: As a Federal Contractor, Olympus is committed to ensuring our hiring process is accessible to everyone. If you need an accommodation in order to complete the application or hiring process, please contact Olympus via email at OCAAccommodations@olympus.com. If your disability impairs your ability to email, you may call our HR Compliance Manager at 1-888-Olympus (1-888-659-6787).

Posting Notes: || United States (US) || Minnesota (US-MN) || Brooklyn Park || Research and Development