Assoc Director, Med Device Product Security - San Diego, CA

What if the work you did every day could impact the lives of people you know? Or all of humanity?At Illumina, we are expanding access to genomic technology to realize health equity for billions of people around the world. Our efforts enable life-changing discoveries that are transforming human health through the early detection and diagnosis of diseases and new treatment options for patients.Working at Illumina means being part of something bigger than yourself. Every person, in every role, has the opportunity to make a difference. Surrounded by extraordinary people, inspiring leaders, and world changing projects, you will do more and become more than you ever thought possible.Must be willing to relocate to, or currently live in, San Diego, CA.Reporting to the Director, Information Security Product Security (DISPS), this role is a functional technical and team leader role at Illumina.   Responsible for successfully executing enterprise-wide Information Security controls and processes that protect the company’s data and functions across all business areas, adhering to data protection standards, procedures, regulatory oversight, and technical solutions for the Information Security department.  Support of program control processes to ensure mitigation of risks and approved configuration certification of systems.  This position requires experience, knowledge, and skills in the areas of engineering, architecture, strategy, and design.Position SummaryAs a key leader, you will focus on building the pre-market security testing expertise in Illumina. You will work with product teams across Illumina, to mentor and bring in standard processes for security testing. You will have the opportunity to develop the full security test program in the Illumina Product Security team to strengthen the security posture of all Illumina pre-market products. Delivery of activity reporting, including metrics, environment impact, effectiveness progress, and performance indicators.  The role will also assist with ensuring discretionary and regulatory audits are aligned with Illumina’s current processes and procedures.Duties & ResponsibilitiesLead development of standard methodologies in security testing technology and process at IlluminaDeliver Secure-by-Design lifecycle for instrument & assay products in regulatory submissions.Support regulatory submission and approval in context of accelerated reviewInterface in a matrix environment to develop and deploy policies/SOPs/standard reports/KPIs for management of continued process verification, Technical Transfer and Control Strategy.Coordinate deployment and application of controls supporting risk-based continued process verification and monitoring of lifecycle product quality.Ensure significant Quality risks are escalated and mitigated in a timely mannerAct as global Quality representative in cross-functional forums to provide support and oversight to internal and external manufacturing and testing facilities for application of Global Quality Management System, policies, SOPs and Standards throughout clinical and commercial lifecycle of products.Approve technical protocols, reports and risk assessments, specifications, submissions documents & support the knowledge management workstreams.Work collaboratively with the software and test teams to establish testable security requirements.Create process for internal and external penetration testing playbooks for all Illumina products.Work with test teams to train them on different types of security testing such as penetration testing, OWASP top 10 testing, Ethical hacking.Organize and standardize vulnerability scanning across products.Investigate tools to help automate security testing.Monitor inputs from the industry to bring standard processes in testing to Illumina.Facilitate update of product testing processes to add depth in product security testing including SAST, SCA, and DAST procedures.Lead, develop, mentor, and grow the Product Security Test TeamLead the setup of static analysis tools and onboarding of product teams.Acts in a leadership capacity for both Information Security and business unit teams for timely and effective delivery of enterprise-wide cybersecurity-based technology design, implementation, deployment, and supportProvides consulting on best practices to internal customers to ensure processes are embedded at the correct time and frequency and to ensure compliance to security standardsDefine technical control requirements, evaluate existing tool effectiveness, and propose solutions to enhance the company’s security postureQualifications8+ years of security testing experienceExperience in Medical Device or another regulated environment desired.Extensive experience in biopharmaceutical & GMPKnowledge in risk management, and quality system requirements.Experience in personalized medicine (cell or gene therapy) a plusProven ability to lead and manage projects/teams of significant scope and complexity, while meeting all deliverables and timelines.Excellent interpersonal skills using a team-oriented approach to project management and problem solving for complex issue resolution in a scientifically sound and understandable way.Outstanding communication skills (verbal and written).Ability to navigate through ambiguity and rapid growth and adapt to change.Ability to be agile and effectively collaborate in a dynamic, cross-functional matrix environment.Solid understanding of application security throughout the software lifecycleExperience in Pen testing, and ethical hacking of devicesExpertise in testing secure networks, systems, and application architecturesKnowledge of standard processes for security testing in industry and ability to implement them.Hand On ability to setup test environments and automate using scripting.Experience with web applications and server hardening (i.e. AWS, Azure) including knowledge of OWASP Top 10 and blue teaming techniquesA proactive, 'can-do' approach to learning and problem-solvingEducationBachelor's degree in Information Systems, Computer Science, Information Security, and/or related work experienceProfessional qualifications are preferred: CISSP, SANS, GIAC, ITIL, or similar#LI-HYBRIDThe estimated base salary range for the Assoc Director, Med Device Product Security - San Diego, CA role based in the United States of America is: $180,100 - $270,100. Should the level or location of the role change during the hiring process, the applicable base pay range may be updated accordingly. Compensation decisions are dependent on several factors including, but not limited to, an individual’s qualifications, location where the role is to be performed, internal equity, and alignment with market data. Additionally, all employees are eligible for one of our variable cash programs (bonus or commission) and eligible roles may receive equity as part of the compensation package. We offer a wide range of benefits as innovative as our work, including access to genomics sequencing, family planning, health/dental/vision, retirement benefits, and paid time off.At Illumina, we strive to foster a diverse and inclusive workplace by cultivating an environment in which everyone contributes to our mission. Built on a strong foundation, Illumina has always been rooted in openness, collaboration, and seeking alternative views and perspectives to propel innovation in genomics. We are proud to confirm a zero-net gap in pay, regardless of gender, ethnicity, or race. We also have several Employee Resource Groups (ERG) that deliver career development experiences, increase cultural awareness, and demonstrate our collective commitment to diversity and inclusion in the communities we live and work. We are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information. If you require accommodation to complete the application or interview process, please contact accommodations@illumina.com. To learn more, visit: https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf