Sr Product Security Analyst at GE Healthcare

Bengaluru, Karnataka, India

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Healthcare, Medical TechnologyIndustries

Requirements

Bachelor's Degree in Computer Science or STEM Majors with a minimum of 5+ years of experience in systems security, product/OT security, and application security
Professional expertise with Kali Linux, Metasploit, Meterpreter
Hands-on experience in Windows/Linux and network security
Ability to execute scans using tools such as Nessus, Burp, Fortify/Coverity, Splunk, etc
Experience with cyber security frameworks (NIST 800-53, ISO 27001, IEC 62443, etc.) implementation and governance
Experience with secure coding principles; code signing; secure boot
Experience with penetration testing and ethical hacking
Knowledge of CI/CD and automation tools (Chef, Git, Jenkins)
Knowledge of Identity management and identity federation (SAML, OAuth, SCIM, XACML)
Experienced in developing web services (SOAP/REST)
Must be available for on-call for potential security response
Knowledge of application risk identification and evaluation techniques
Knowledge of Cyber Security and full knowledge of multiple related engineering functions
Experience securing applications within cloud platforms such as AWS, Azure, and alike
Experience with a broad set of information security technologies and processes within a SaaS, IaaS, PaaS, or cloud environment
Focus on Penetration testing and Python coding

Responsibilities

Scope and participate in hardware and software penetration tests, vulnerability identification, and vulnerability risk assessment
Engage in application and domain-specific threat modeling and attack surface analysis/reduction
Engage in incident response methods and lead incident response processes related to product cybersecurity
Create and track meaningful metrics around product cyber risk and compensating controls
Perform Security Code Reviews, Vulnerability Analysis, and research on application code
Create vulnerability and incident trend analysis to improve product design
Maintain cyber Bills of Material and conduct proactive vulnerability monitoring and assessment on cyber components
Engage and administer End Of Life processes for digital products
Promote best practices based on OWASP, SANS Top 25
Write fuzz scenarios to test network protocol suites such as TCP/IP, IPv6, UDP, TLS, DTLS
Automate attack scenarios to avoid repetitive work
Consult and architect on security requirements and utilize best practices to meet them
Help prepare reports at appropriate levels of confidentiality for stakeholders to view
Respond promptly and in detail to customer-sponsored penetration tests
Provide guidance on automated testing tools and techniques
Identify, risk rate, communicate, and track product vulnerabilities as part of the Cyber Security Lab team

Skills

Key technologies and capabilities for this role

Penetration TestingPythonVulnerability AssessmentThreat ModelingIncident ResponseSecurity Code ReviewsOWASPSANS Top 25FuzzingTCP/IPIPv6UDPTLSDTLSAutomation

Questions & Answers

Common questions about this position

What are the key required skills for the Sr Product Security Analyst role?

Key skills include professional expertise with Kali Linux, Metasploit, Meterpreter; hands-on experience in Windows/Linux and network security; executing scans with tools like Nessus, Burp, Fortify/Coverity, Splunk; penetration testing, ethical hacking, and Python coding for automation.

Is this a remote position or does it require office work?

This information is not specified in the job description.

What is the salary or compensation for this role?

This information is not specified in the job description.

What education and experience are required for this position?

A Bachelor's Degree in Computer Science or STEM majors with a minimum of 5+ years of experience in systems security, product/OT security, and application security is required.

What kind of team will I be working with in this role?

You will work in a team to identify, risk rate, communicate and track product vulnerabilities as part of the Cyber Security Lab team.

GE Healthcare

Healthcare technology and data analytics provider

About GE Healthcare

GE Healthcare provides a range of healthcare technologies and services aimed at improving patient care. Its main products include imaging systems, mobile diagnostic devices, patient monitoring solutions, and advanced software for data analysis. These products help medical professionals make informed decisions and enhance the efficiency of healthcare delivery. Unlike many competitors, GE Healthcare invests significantly in research and development, allocating $1 billion each year to innovate and enhance its offerings. The company’s goal is to support healthcare providers in delivering better patient outcomes, as evidenced by its technology supporting over 300,000 patients daily and managing 2 billion patient scans each year.

Chicago, IllinoisHeadquarters

1892Year Founded

N/ACompany Stage

Data & Analytics, HealthcareIndustries

10,001+Employees

Risks

Emerging AR technologies increase competition in medical imaging.

Regulatory challenges may delay AI application expansions in healthcare.

Dependence on clinical trial success for new product market positioning.

Differentiation

GE Healthcare invests $1 billion annually in R&D for product innovation.

The company supports over 300,000 patients daily with its healthcare technologies.

GE Healthcare's AIR Recon DL offers 3D motion-insensitive imaging for enhanced MRI quality.

Upsides

Acquisition of Caption Health expands AI-powered ultrasound capabilities.

Successful Phase III trial of [18F]flurpiridaz enhances coronary artery disease detection.

Collaboration with Wayra accelerates digital health innovation in EMEA.

Land your dream remote job 3x faster with AI

Try Jobo Free