Senior Product Security Architect

What if the work you did every day could impact the lives of people you know? Or all of humanity?

At Illumina, we are expanding access to genomic technology to realize health equity for billions of people around the world. Our efforts enable life-changing discoveries that are transforming human health through the early detection and diagnosis of diseases and new treatment options for patients.

Working at Illumina means being part of something bigger than yourself. Every person, in every role, has the opportunity to make a difference. Surrounded by extraordinary people, inspiring leaders, and world changing projects, you will do more and become more than you ever thought possible.

Illumina's Product Security Team is seeking a talented Product Security Architect/Sr Architect to help us strengthen our world-class business.

Position Summary

• This role requires Product Security and software development experience, knowledge, and skills. You'll be responsible for leading pre-market andpost-market security initiatives & solutions including Illumina medical instruments and connected software before they are released to customers.
• The Product Security Architect/Sr Architect is a critical role at Illumina in ensuring the manufacturing of our physical medical devices and softwaresolutions development are secure.
• As a valued team member, you will define, identify, evaluate, and maintain controls, providing visibility into the health, and security of our products.
• You will collaborate closely with our engineering, development, and technology groups to define and maintain medical device security and lead thechange, ensuring secure posture for Illumina products in Premarket and Postmarket phases of the product.
• The Product Security Architect/Sr Architect is responsible for introducing security controls, processes and testing throughout entire product SDLC,from hardware selection to decommissioning the device. You are highly motivated to integrate security capabilities into continuous release planningand execution for all Illumina products.

Responsibilities

• Drive Secure Design working in close partnership with our Development Teams.
• Introduce security requirements at the system and software levels, partnering with the development team to ensure correct implementation.
• Partner with the Development Teams and deliver threat models on software development projects, identifying and prioritizing cybersecurityrequirements.
• Guide, mentor and advise the Verification Team, ensuring that verification of cybersecurity requirements is performed correctly and with fullcoverage.
• Partner with the Development and Quality teams; drive and deliver Cybersecurity Risk Assessments on projects, ensuring all risks are identified,prioritized and addressed as expected.
• Drive and execute/facilitate all varieties of cybersecurity testing; from penetration testing to vulnerability scans, ensuring along the way that allfindings are triaged/root caused/addressed appropriately.
• Work tirelessly on improving the integration of Product Security into SDLC, building trust, expertise, and process efficiencies.
• Drive security initiatives by example, be knowledgeable and passionate, be strong communicator and never miss an opportunity to educate and trainpartner teams on the topics of Product Security.

Requirements

• Experience in application and product security coupled with a strong depth of understanding and knowledge of relevant technology stacks.
• Expertise in building secure designs for software products or perform penetration testing for software products.
• Ability to understand code and system configurations and being able to recommend modifications to those, to ensure better security posture.
• Very in-depth understanding of software development and the ability to effectively build and communicate security designs, taking in considerationsoftware design context.
• Understanding of three or more security domains (such as for example, platform security, network security, application security, etc.)
• Understanding of OWASP Top 10 Web Application Vulnerabilities.
• Coding experience with two or more programming languages.
• Experience with software security tools such as nMap, Wireshark, Kali Linux, OpenVAS
• Effective communicator delivering key messages to team stakeholders, and business partners using informative clear verbal and writtencommunications.
• Experience with a medical device manufacturer or other relevant regulated industries is preferred.

Education

• Bachelor’s degree in computer science, engineering, or relevant work experience.
• Professional qualifications are preferred such as: CISSP, CISM, CSSLP, or OSCP.

Illumina believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.