Medical Device Cybersecurity Risk Specialist - Tata Consultancy Services (TCS)

Key Responsibilities

• Conduct comprehensive cybersecurity risk assessments and threat modeling for medical devices, vendors, and related healthcare applications.
• Apply industry frameworks (NIST CSF, ISO 27001/27005, FAIR, COSO) to evaluate, prioritize, and remediate identified risks.
• Perform vulnerability analysis and develop mitigation strategies that address patient safety and regulatory compliance.
• Collaborate with cross‑functional teams to integrate security controls into device design, EHR interfaces, and third‑party vendor solutions.
• Document risk findings, produce actionable reports, and support audit and certification activities.

Requirements

• Strong knowledge of information security risk management frameworks (NIST CSF, ISO 27001/27005, FAIR, COSO).
• Hands‑on experience with cybersecurity risk assessments, threat modeling, and vulnerability analysis in medical device contexts.
• Understanding of healthcare application ecosystems, EHR integration, and third‑party vendor interactions.
• Proven ability to translate technical findings into clear risk mitigation recommendations.
• Excellent communication and collaboration skills for working with engineering, regulatory, and business stakeholders.