Product Security Analyst

Join us today and make a difference in people's lives!
 

LivaNova is a global medical technology company built on nearly five decades of experience and a relentless commitment to improving the lives of patients around the world. Our advanced technologies and breakthrough treatments provide meaningful solutions for the benefit of patients, healthcare professionals, and healthcare systems.  The company is listed on the NASDAQ stock exchange under the ticker symbol “ LIVN .”  LivaNova is headquartered in London (UK) with a presence in over 100 countries and a team of more than 3,000 employees worldwide.

As a Product Security Analyst in LivaNova Product Security team, you will play a critical role in ensuring the security and safety of our medical devices, systems and software throughout their lifecycle. You will work closely with cross-functional teams, including product development, quality assurance, regulatory affairs and members of the product security team to assess and maintain security measures to our products against cyber threats, vulnerabilities and risks.

You will be responsible for security vulnerability management of medical devices and other software/firmware products produced by LivaNova after they are released to the market. You will manage the identification, assessment, and remediation coordination of security vulnerabilities and will be responsible for operating and maintaining the Trust Center, providing customers with timely and accurate security information.

Key Responsibilities

Post-Market Vulnerability Management:

• Monitor internal and external sources (e.g., vulnerability databases, threat intelligence feeds, security bulletins) for emerging threats and vulnerabilities related to released products.

• Perform technical assessments and risk analysis of identified vulnerabilities.

• Coordinate with engineering, product management, and regulatory teams to develop and track remediation or mitigation plans.

• Prepare and maintain vulnerability disclosures following FDA pre- and post-market cybersecurity guidance and LivaNova procedures.

• Support incident response efforts for security events affecting marketed products.

Trust Center Management:

• Serve as the primary point of contact for incoming customer security inquiries (e.g., product security questionnaires, security assurance documents).

• Maintain and work with cross functional team to regularly update Trust Center content, including Product Security Whitepapers, FAQs, SBOMs (Software Bills of Materials), and security certifications.

• Collaborate with Legal, Quality, and Regulatory Affairs to ensure consistent and compliant messaging.

• Track metrics related to customer engagements and use insights to improve Trust Center responsiveness and transparency.

Other Duties:

• Assist in maintaining compliance with applicable cybersecurity standards (e.g., FDA Cybersecurity Guidance, ISO 14971, ISO/IEC 27001, ISO/IEC 81001-5-1).

• Contribute to continuous improvement of cybersecurity policies, procedures, and practices.

• Participate in security awareness training initiatives and internal audits.

• Other related tasks assigned from time to time      

Education

• Degree in Software Engineering, Cybersecurity, or equivalent education/experience

Experience:

• Experience with vulnerability disclosure practices (e.g., CVSS scoring, ISO 29147).

• Knowledge of software bills of materials (SBOM) and VEX (Vulnerability Exploitability Exchange).

• Previous experience working with Trust Centers, customer security assessments, or similar platforms.

• Certifications such as Security+, GSEC, or an entry-level cloud security certification preferred.

Pay Transparency

• A reasonable estimate of the annual base salary for this position is $70,000 - $80,000 + discretionary annual bonus. Pay ranges may vary by location.

Valuing different backgrounds:

LivaNova values equality and diversity. We are committed to ensuring that our recruitment process is fair, transparent and free from unlawful discrimination. Our selection process is driven by the key demands/requirements for the role rather than bias or discrimination on the basis of a candidate’s sex, gender identity, age, marital status, veteran status, non-job-related disability/handicap or medical condition, family status, sexual orientation, religion, color, ethnicity, race or any other legally protected classification.

Notice to third party agencies:

Please note that we do not accept unsolicited resumes from recruiters or employment agencies. In the absence of a signed Recruitment Services Agreement, we will not consider, or agree to, payment of any referral compensation or recruiter fee. In the event that a recruiter or agency submits a resume or candidate without a previously signed agreement, we explicitly reserve the right to pursue and hire those candidate(s) without any financial obligation to the recruiter or agency.

Beware of Job Scams:

Please beware of potentially fraudulent job postings or suspicious recruiting activity by persons posing as LivaNova recruiters or employees. The scammers may attempt to solicit confidential, personal information, such as a social security number, or your financial information. LivaNova will never ask for fees prior/during/after the application process, nor will we ask for banking details or personal financial information in return for the assurance of employment. If you are concerned that an offer of employment might be a scam or that the recruiter is not legitimate, please verify by searching for “See Open Jobs” on https://www.livanova.com/en-us/careers, and check that all recruitment emails come from an @livanova.com email address.