Clinical Engineering Cyber Specialist
Far Rockaway / New York / United States
On-Site, Full Time
About the Job Posting
Lead and support the implementation of medical device cybersecurity strategies within a healthcare environment, coordinating with IT and clinical engineering teams to protect device security and uptime.
Job Description
This position is based on-site at a hospital in Far Rockaway, NY, and focuses on leading and supporting the implementation of medical device cybersecurity strategies within a healthcare setting. The role involves leading cybersecurity controls, risk assessments, and collaboration with IT and InfoSec teams to ensure the security and availability of medical devices. The ideal candidate will bring strong technical leadership, a proactive threat mitigation approach, and an understanding of healthcare regulatory requirements.
Tasks
What You'll Do
- Lead the collection of critical cybersecurity data elements (CDEs) and manufacturer documentation in CMMS, and conduct risk assessments based on findings.
- Oversee configuration of medical devices to align with cybersecurity standards and manufacturer guidelines.
- Manage planned and unplanned vulnerability remediation efforts, including response to zero-day threats and coordination with device manufacturers.
- Investigate cybersecurity alerts on medical devices, analyze high-risk vulnerabilities, and develop response recommendations.
- Track and report on vulnerability remediation activities, identifying opportunities to improve cybersecurity practices across HTM and IT.
- Support HTM cybersecurity education, coach BMETs on best practices, and participate in industry cybersecurity forums as a representative of the organization.
Requirements
What You Bring
- Experience in medical device cybersecurity or a healthcare technology environment.
- A valid driver’s license and acceptable driving record.
- Strong knowledge of CMMS platforms, cybersecurity frameworks (e.g., NIST, ISO), and FDA/Joint Commission regulations.
- Proven ability to lead technical projects and drive cross-functional alignment.
- Relevant certifications (e.g., CISSP, HCISPP, CEH, or Security+) preferred.
Minimum Qualifications & Requirements
- Minimum Education: Bachelor’s degree or equivalent experience
- Minimum Functional Experience: 3 years
Benefits
What We Offer
- Compensation is determined based on education and experience.
- Comprehensive benefits package including Medical, Dental, Vision Care and Wellness Programs
- 401(k) Plan with Matching Contributions
- Paid Time Off and Holidays
- Career Growth Opportunities and Tuition Reimbursement
- More extensive information provided to new hires upon hire
Position Summary
The role leads the technical activities required to deliver a medical device cybersecurity program, including asset inventory data collection, implementation of cybersecurity controls, and the execution of critical cybersecurity fixes. It also leads analysis of emerging threats to determine potential impact on devices in the asset inventory, advises on technical elements of cybersecurity strategy, and supports the collection of metrics for leadership review.