Product Security Risk Analyst (Remote)

Work Flexibility: Remote

As a Product Security Risk Analyst, you will drive comprehensive risk management throughout the product lifecycle while ensuring global compliance and patient safety, collaborating with customers and internal business partners.  

What you will do

• Lead risk management processes across product portfolios, developing forward-looking strategies and methodologies.
• Build relationships with product teams, guiding them through risk mitigation journeys and connecting them with technical resources.
• Assess compliance gaps and their risk implications, ensuring alignment with global standards (FDA, EU MDR, IEC 81001-5-1, ISO 27001).
• Communicate risk findings to diverse stakeholders, from engineering teams to senior leadership, translating technical details into business impact.
• Develop risk management frameworks, documentation, and tools while supporting secure development practices.
• Track risks across products and portfolios, providing enterprise-level risk visibility.
• Monitor security controls, evaluate effectiveness, and drive remediation efforts.
• Stay current with industry trends and threats, sharing insights to improve organizational risk awareness.

What you need

Required:

• Experience with risk assessment frameworks (e.g. NIST RMF).
• Excellence in stakeholder communication and collaboration.
• Proficiency with data analysis tools (ex.: Excel, SmartSheet, PowerBI).
• Experience in stakeholder facilitation.

Preferred:

• Relevant industry certifications (CRISC, CISM, ISACA).
• Medical device industry experience, including exposure to global medical device regulations (UL-2900, IEC 81001-5-1).
• Experience with GRC platforms (e.g., OneTrust).
• Background in cybersecurity and/or product security.

$100,500 - $215,300 salary plus bonus eligible + benefits. Actual minimum and maximum may vary based on location. Individual pay is based on skills, experience, and other relevant factors.

Travel Percentage: 10%

Stryker Corporation is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status. Stryker is an EO employer – M/F/Veteran/Disability.

Stryker Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.