Medical Device Cybersecurity Threat Modeling Consultant - MedSec

Key Responsibilities

• Develop and execute detailed threat models for a variety of medical devices, identifying potential attack vectors and impact scenarios.
• Perform security risk assessments and recommend mitigation measures aligned with FDA, IEC 62443, and other relevant regulations.
• Collaborate with product development teams to integrate security controls into the Secure Development Lifecycle.
• Conduct penetration testing and vulnerability analysis to validate threat model assumptions and uncover hidden weaknesses.
• Produce clear, actionable reports and presentations for engineering, regulatory, and executive stakeholders.

Requirements

• 5+ years of experience in cybersecurity, with a focus on medical device security or similar regulated industries.
• Proven expertise in threat modeling methodologies (e.g., STRIDE, Attack Trees, PASTA).
• Strong knowledge of FDA, IEC 62443, and other medical device cybersecurity regulations.
• Hands‑on experience with penetration testing tools and vulnerability assessment techniques.
• Excellent communication skills and ability to translate technical findings into business‑focused recommendations.