Cybersecurity Engineer (Mid-Senior level)
4400-7500 €/mon.
gross
CVbankas.lt skaičiuoklės duomenys.
Full-time
Vilnius
- „Grafton Lithuania“, UAB
Our client – a software development and testing company specialized in medical solutions – is currently looking to strengthen its team with a Cybersecurity Engineer.
They are seeking a specialist for a Secure Connectivity Board (SCB) PCB with strong experience in securing medical devices and navigating regulatory requirements, including FDA submissions (510(k)). This role will focus on integrating cybersecurity throughout the SCB product lifecycle, ensuring compliance with global regulations, and implementing industry-standard tools and practices.
They are seeking a specialist for a Secure Connectivity Board (SCB) PCB with strong experience in securing medical devices and navigating regulatory requirements, including FDA submissions (510(k)). This role will focus on integrating cybersecurity throughout the SCB product lifecycle, ensuring compliance with global regulations, and implementing industry-standard tools and practices.
Main responsibilities:
- Design, implement, and maintain cybersecurity controls for the SCB device across the full product lifecycle (design, development, deployment, and post-market).
- Support cybersecurity activities related to FDA submissions, including 510(k) premarket notifications and cybersecurity documentation for medical devices.
- Ensure compliance with regulatory standards such as FDA guidance, ISO 14971, IEC 62304, and IEC 81001-5-1.
- Conduct threat modelling, risk assessments, and vulnerability analysis for connected medical devices.
- Prepare Penetration tests with dedicated expert team.
- Develop and maintain cybersecurity risk management files and documentation for regulatory audits.
- Integrate secure software development lifecycle (Secure SDLC) practices into engineering workflows.
- Perform static and dynamic application security testing (SAST/DAST).
- Collaborate with cross-functional teams (R&D, Quality, Regulatory Affairs) to ensure security-by-design principles.
- Monitor and respond to vulnerabilities, including post-market surveillance and coordinated vulnerability disclosure.
- Support incident response and remediation planning for cybersecurity events.
Requirements:
- Bachelor’s or Master’s in Cybersecurity, Computer Science, Engineering, or related field.
- 5+ years in cybersecurity, ideally in medical devices or other regulated healthcare environments.
- Familiarity with FDA cybersecurity guidance and 510(k) submissions.
- Core knowledge: secure SDLC practices, risk management frameworks (ISO 14971, NIST, ISO 27001), threat modeling (e.g., STRIDE, attack trees) (as a plus).
- Technical skills/tools (hands-on): AppSec & code analysis: Black Duck (SCA), Fortify/Checkmarx/Veracode (SAST), SonarQube; Vulnerability testing: Nessus/OpenVAS, Burp Suite/OWASP ZAP, Metasploit; Endpoint/network: CrowdStrike/Carbon Black, Wireshark, Snort/Suricata; Cloud/infra: AWS Security Hub / Azure Security Center, Terraform security (e.g., Checkov); DevSecOps: CI/CD security integrations (Jenkins, GitLab), container/K8s security (Aqua, Twistlock/Prisma Cloud)
- Standards & compliance: FDA pre/postmarket guidance, 510(k), ISO 14971, IEC 62304, IEC 81001-5-1, HIPAA (as applicable).
- Preferred: CISSP/CEH/CSSLP, embedded/IoT penetration testing, SBOM knowledge, third-party/vendor security assessments.
- Competencies: Analytical problem-solving, translating regulatory needs into technical controls, strong communication, high documentation/compliance focus.
Company offers:
- Support – You will have a buddy by your side.
- Flexibility with working hours and vacation schedule.
- Online and offline training/workshops and other knowledge-sharing possibilities.
- Additional health and personal accident insurance.
- Snacks and fun activities in the office.
- Additional time off.
- Personal and sport budget.
- Loyalty benefits and perks.
- Agile, friendly and international environment.
- Salary: 4400–7500 EUR/monthly GROSS (negotiable, based on competencies).
-----
By sending your CV you express your consent that Grafton Lithuania would manage your personal data for your possible employment opportunities both at Grafton Lithuania and/or clients of Grafton Lithuania. You have the right to cancel your agreement anytime; manage, change and/or ask to delete your provided personal data. More information: lt.grafton.com/en/privacy-policy-lt
Salary
4400-7500
€/mon.
gross
Final salary proposal depends on seniority level.
Final salary proposal depends on seniority level.
„Grafton Lithuania“, UAB
Daugiau nei 20 metų esame patikimas personalo paieškos, atrankos bei laikinojo įdarbinimo partneris Baltijos šalyse. Esame „Grafton“ – pasaulinio lygio įmonė, jungianti savo srities profesionalus įvairiose srityse. Mūsų tikslas – padėti Klientams susirasti geriausią darbuotoją, o Kandidatams – svajonių darbą!
Žiūrėti visus šios įmonės skelbimus (27)