- Company Name
- Spacelabs Healthcare
- Job Title
- Senior Cybersecurity Manager
- Job Description
-
**Job title**
Senior Cybersecurity Manager
**Role Summary**
Lead the cybersecurity and privacy posture for cloud‑based products, driving integration of Privacy & Security by Design across the product lifecycle. Act as product owner for cyber security, manage a dedicated cybersecurity team, and collaborate with product, engineering, quality, and regulatory groups to ensure confidentiality, integrity, and availability of solutions.
**Expactations**
- Deliver a secure product portfolio that meets medical device and healthcare regulatory requirements.
- Drive continuous risk management, incident response, and compliance readiness.
- Provide clear security leadership and mentorship to cross‑functional teams.
**Key Responsibilities**
- Lead and mentor a cybersecurity team, assigning tasks and monitoring progress.
- Own the product‑level cybersecurity strategy: threat modeling, secure design, secure SDLC, and security testing.
- Advocate for security and privacy throughout product development, ensuring compliance with FDA, HIPAA, GDPR, ISO 27000 series, ISO 13485, ISO 14971, and related standards.
- Conduct risk assessments, manage vulnerability reports, and oversee incident investigations.
- Develop and maintain product security documentation: labeling, security statements, and compliance evidence.
- Collaborate with engineering, quality, and regulatory teams to embed security controls by design and by default.
- Provide security guidance to stakeholders, clients, and auditors.
**Required Skills**
- 10+ years of cybersecurity engineering with 5–10 years of cloud security experience (AWS preferred).
- 5+ years leading product cybersecurity projects and risk management in medical device or healthcare domain.
- Deep knowledge of secure SDLC, cloud architecture, and security controls (IAM, network, OS, database, web).
- Expertise in regulatory frameworks: FDA Cybersecurity Guidelines, 21 CFR 820, ISO 27001/27017/27018, ISO 13485, ISO 14971, EU‑GDPR, HIPAA, AAMI TIR 57, SB 1386.
- Strong understanding of Windows/Linux hardening, network security, and cloud best practices.
- Proven ability to deliver security solutions that meet industry standards and certifications.
- Excellent communication, stakeholder management, and leadership skills.
**Required Education & Certifications**
- Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or Software Engineering with ≥15 years of related experience *or* Master’s degree with ≥10 years of related experience.
- Professional certifications: CISSP, CISM, CISA, Security+, Cloud Security Alliance (CSA), or SANS Cloud Security.
---
Edinburgh, United kingdom
Hybrid
Senior
13-01-2026