Opportunity is here


Medical Device Cybersecurity Analyst II

ZOLL Medical Corporation

ZOLL Medical Corporation

Chelmsford, MA, USA
Posted on Friday, May 31, 2024
Resuscitation, ZOLLMED.com

At ZOLL, we're passionate about improving patient outcomes and helping save lives.

We provide innovative technologies that make a meaningful difference in people's lives. Our medical devices, software and related services are used worldwide to diagnose and treat patients suffering from serious cardiopulmonary and respiratory conditions.

The Acute Care Technology division of ZOLL develops and delivers innovative lifesaving products and software solutions to EMS, hospital, public safety, and military customers globally. Our dedicated employees take pride in their commitment to improving patient outcomes while delivering world-class customer service.

At ZOLL, you won’t just have a job. You’ll have a career—and a purpose.

Join our team. It’s a great time to be a part of ZOLL!

Job Summary

The Medical Device Cybersecurity Analyst plays a critical role in safeguarding ZOLL medical device products against cyber threats. This position involves assessing, monitoring, and enhancing the security posture of medical devices to ensure patient safety and data integrity.

Essential Functions


  • Software Bill of Materials (SBOM) Maintenance:

  • Create and maintain accurate SBOMs for ZOLL products.

  • Collaborate with development teams to collect information on software components, versions, and dependencies.

Security Monitoring and Incident Response:

  • Monitor medical devices for security events, CVEs, KEVs, and other potential breaches.

  • Investigate and respond to security incidents promptly.

  • Collaborate with development and cybersecurity teams to mitigate risks.

Cybersecurity Testing:

  • Establish penetration testing capabilities

  • Conduct penetration tests on medical devices to identify vulnerabilities.

  • Evaluate the effectiveness of security controls and recommend improvements.

  • Document findings and work with relevant stakeholders to remediate issues.

Risk Assessment and Mitigation:

  • Assess cybersecurity risks associated with medical devices.

  • Develop risk mitigation strategies and prioritize actions.

  • Ensure compliance with industry standards (BS EN IEC 81001-5-1).

Collaboration and Training:

  • Work closely with cross-functional teams, including R&D, quality, and regulatory affairs.

  • Provide cybersecurity training to internal staff and external partners.

  • Stay informed about emerging threats and best practices.

Required/Preferred Education and Experience

  • Bachelor's Degree in Computer Science, Information Security, or related field required

  • Minimum of 2 years of experience in cybersecurity required

  • Relevant certifications (e.g., CISSP, CEH, CISA) preferred.

Knowledge, Skills and Abilities

  • Experience in medical device cybersecurity or related fields preferred.

  • Strong knowledge of network security, vulnerability assessment, and risk management.

  • Familiarity with one or more commercial SBOM monitoring tools preferred.

  • Excellent communication and problem-solving skills.

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

  • Standing - Occasionally

  • Walking - Occasionally

  • Sitting - Constantly

  • Talking - Occasionally

  • Hearing - Occasionally

  • Repetitive Motions - Frequently

ZOLL is a fast-growing company that operates in more than 140 countries around the world. Our employees are inspired by a commitment to make a difference in patients' lives, and our culture values innovation, self-motivation and an entrepreneurial spirit. Join us in our efforts to improve outcomes for underserved patients suffering from critical cardiopulmonary conditions and help save more lives.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.