Skip to main content
IT

Cybersecurity Assurance Analyst

Company Description

At Intuitive, we are united behind our mission: we believe that minimally invasive care is life-enhancing care. Through ingenuity and intelligent technology, we expand the potential of physicians to heal without constraints.

As a pioneer and market leader in robotic-assisted surgery, we strive to foster an inclusive and diverse team, committed to making a difference. For more than 25 years, we have worked with hospitals and care teams around the world to help solve some of healthcare’s hardest challenges and advance what is possible.

Intuitive has been built by the efforts of great people from diverse backgrounds. We believe great ideas can come from anywhere—we strive to foster an inclusive culture built around diversity of thought and mutual respect. We lead with inclusion and empower our team members to do their best work as their most authentic selves.

Passionate people who want to make a difference drive our culture—our team members are grounded in integrity, have a strong capacity to learn, the energy to get things done, and bring diverse, real-world experiences to help us think in new ways. We actively invest in our team members to support their long-term growth so they can continue to advance our mission and achieve their highest potential. 

Join a team committed to taking big leaps forward for a global community of healthcare professionals and their patients. Together, let’s advance the world of minimally invasive care.

Job Description

Primary Function of Position:

Intuitive Surgical is a highly innovative medical device manufacture that has changed the paradigm of minimal invasive surgery.  We are looking for an individual that understands security controls, data privacy and NIST, ISO and GDPR regulation and guidance’s and wants to apply that skillset to support pre/post sales activities of our medical devices/services; this can include conference calls with C-level, DPO, Net/Sec Engineers, Legal, and Clinical customers to articulate and or answer security designs/questions of our product/services; completing customer risk assessment documentation and working with our Contract/Legal teams reviewing security and sales / service agreements.  This role bridges traditional boundaries between cyber and IT risk and looks to expand better partnerships with sales and our customers to drive a more efficient sales/support customer experience

Roles and Responsibilities:

  • Complete customer cyber risk and data privacy audit documentation with respect to our product and services
  • Work closely with our internal regulatory bodies to ensure security, data and GDPR policies are functional, effective and are in accordance with domestic and international regulatory compliances
  • Participate in pre-sales activities to champion the products cybersecurity and data privacy design, controls, and policies.
  • Partner with product engineering to create and maintain manufacturing disclosure statements MDS2
  • Understand the information lifecycle, including data transfer, data in-use and data at rest of products and services.
  • Demonstrated ability to investigate and learn new technologies and products.
  • Be knowledgeable with Intuitive Surgical’s cybersecurity programs, GDPR, and European Union (EU) regulatory framework for cybersecurity and data privacy.
  • Be able to execute ad-hoc projects as assigned by management
  • Be able to work within a Global Support Team and providing support wide range of time zones; some travel and a flexible work schedule is required
  • Collaborate with executive management and department leaders to assess near- and long-term Information Security compliance needs
  • Serve as subject matter expert to internal business and technology teams on range of compliance standards as influenced by regulatory mandates (e.g. SOX 2, GDPR, etc.) and industry best practices (e.g. NIST CSF, ISO 27001, etc.)

Qualifications

Required Knowledge, Skills, and Experience:

  • 3 years + experience in conducting vulnerability assessment, security control assessments and/or security audits with strong understanding of cybersecurity principles, best practices, and industry standards.
  • Knowledge of security technologies such as encryption, firewalls, intrusion detection systems, and SIEMs
  • Familiar working with hospital IT or in medical regulated environment
  • Knowledge of GDPR, European Union (EU) regulatory framework for cybersecurity and data privacy, cybersecurity of medical device guidance’s, NIST Cybersecurity Framework and or ISO 270001
  • Experienced with network security infrastructure, threats, and vulnerabilities to networks, and mitigate security threats.
  • Understanding of the Risk Management Framework (RMF)
  • Expertise with a variety of information protection technologies, including DLP, data classification and information rights management solutions.
  • Great customer facing skills that can discuss technical information with a wide range of audiences (from a service engineer, clinicians to a CTO/CIO)
  • Exceptional ability to multi-task, make sound judgments and respond with a sense of urgency to effectively support the business.  Thoroughness in completing tasks is imperative.
  • Experience managing and completing projects
  • Ability to handle stress and work well under pressure
  • Knowledge of key IT risks, controls, and ability to use technology-based audit techniques.
  • Experience in supporting the formal testing required by government/industry accrediting authorities and preparing System Security Plans
  • Understanding of information operations concepts such as: Access Control, User Authentication & Identity Management, Vulnerability and Malware Analysis

Additional Information

Intuitive is an Equal Employment Opportunity Employer. We provide equal employment opportunities to all qualified applicants and employees, and prohibit discrimination and harassment of any type, without regard to race, sex, pregnancy, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status, genetic information or any other status protected under federal, state, or local applicable laws.

We will consider for employment qualified applicants with arrest and conviction records in accordance with fair chance laws.

Travel: 10% of the time

The Future is Intuitive video cover

The Future is Intuitive

At Intuitive, we envision a future where care is more connected, customized, and intelligent—so the question won’t just be how long we live, but how well.

Team members in HR, Engineering, and Analytics standing together with blue background

Work at Intuitive

Our culture defines us.

Our culture is driven by passionate people who truly want to make a difference. Learn more about our unique environment and the characteristics of people who thrive at our company.

Learn about our culture

Benefits

Our benefits overview.

We believe in supporting happy and healthy teams. As a valued team member, your benefits extend far beyond your hourly pay or salary. Learn more about our benefits and perks.

Explore employee benefits
Financial Offerings

Financial offerings

We're here to support your short- and long-term goals.
Family Support

Family support

At Intuitive, we believe in the importance of family and seek to foster a family-friendly culture.
Healthcare Plans

Healthcare plans

Like the patients we serve, your health is also very important to us.
Growth & Development

Growth & development

Your personal and professional growth and development is important to you--and to us.

Not yet ready to apply?

When you join our Talent Community, we‘ll keep you informed about all things Intuitive, including new job openings, employee stories, and company news. You’ll see how every day we‘re proving what‘s possible—for our careers and for minimally invasive robotic surgery.

Join our Talent Community
Intuitive People + Background

**Important Notice to Job Seekers: Beware of Recruitment Scams**

We have been made aware of fraudulent job offers being sent to candidates by individuals posing as representatives of our company. Please be advised that we would never extend an offer of employment to anyone who has not formally submitted an application through our official careers site and completed our formal interview process.

To protect yourself from potential scams, please ensure that any communication you receive regarding job opportunities at our company directs you to our careers site (https://careers.intuitive.com/en/) for application submission.