RedwoodCityRecruiter Since 2001
the smart solution for Redwood City jobs

Associate Director, Information Cybersecurity

Company: Nevro
Location: Redwood City
Posted on: May 3, 2021

Job Description:

About Nevro Nevro (NYSE: NVRO) is a global medical device company headquartered in Redwood City, California. We are focused on providing innovative products that improve the quality of life of patients suffering from debilitating chronic pain.We started with a simple mission to help more patients suffering from chronic pain. At each stage of development, our research was subject to the highest levels of scientific rigor, resulting in a new therapy that has impacted the lives of over 70,000 patients around the world.Nevro has developed and commercialized the Senza spinal cord stimulation (SCS) system, an evidence-based, non-pharmacologic neuromodulation platform for the treatment of chronic pain. HF10 therapy has demonstrated the ability to reduce or eliminate opioids in 65% of patients across six peer-reviewed clinical studies. The Senza System, Senza II System, and the Senza Omnia System are the only SCS systems that deliver Nevro's proprietary HF10 therapy. JobSummary&ResponsibilitiesThe Associate Director of Information Cybersecurity will be responsible for Nevro privacy, security, compliance, SOX, and GxP validation and IT change control practices (PSC&V) including data governances processes for the information technology environment. Also in scope for this role will be product security controls including product security management plans and external whitepapers demonstrating Nevro's commitment to designing and ensuring ongoing security for our patients and care providers. This role will partner with IT, R&D, Legal, Finance and other external partners and agencies in ensuring Nevro is current in best practices and is compliant with all relevant external requirements. This role will develop and maintain a comprehensive program and nurture Nevro along the path to best in class in our industry. This role will be key part of the IT leadership team and bring both strategic vision through experience and tactical execution of audits, validation tasks, and ongoing assessments and development of policies and procedures. The ideal candidate will have an in-depth knowledge and experience in leading PSC&V programs for organizations and bring cross-functional leadership and communication skills. Additionally, experience in managing third party relationships (auditors, customer queries, legal partners, vendors) and developing policy and procedures controls compliant with industry standards (ISO 27001, NIST, COBIT, 21 CFR part 11, etc.) is preferred. Experience in working with regulated bodies in understanding and responding to current product security requirements and threats will also be preferred.MajorResponsibilitiesinclude:Identify, assess, plan, execute industry best practices for PSC&V for all relevant systems including employee policies and procedures. Manage the overall posture of PSC&V for Nevro in partnership with leaders in Finance, Legal, IT, R&D, HR and external 3rd party vendorsManage and provide guidance on computer system validation for IT applicationsLead IT components of compliance audits and ensure Nevro adequately maintains best practices for PSC&V and complies with relevant industry standards (SOX-2, HITRUST, NIST, GxP etc.).Work in partnership with R&D to ensure processes are in place to design in best practice security to our products and systems and develop collateral expected of a product security framework (product security management plans, product security whitepapers, external notices in response to questions and threats, etc.).Identity, develop, and maintain external collateral reflecting Nevro's PSC&V practices as appropriate. Train and mentor both direct and indirect reports in IT Privacy, Security, Compliance, SOX, and Validation best practices. Ensure all future development within Nevro IT and other areas complies with established practices and procedures for PSC&V. Other responsibilities will be identified as the IT leadership team matures and evolves into IT best practices and competitive advantage for Nevro balancing our need for both growth and profitability. Other duties as assigned RoleRequirementsBachelor's degree in Information Technology, Business, or Engineering required. Master's degree in relevant field preferred.Equivalent years of experience may be substituted for education requirement. Skills and Knowledge 5 years' experience with privacy, security, compliance, and validation required. 10+ years' experience preferred.Experience working in an FDA regulated environment (GxP) and with the FDA or comparable regulatory agencies (i.e. notified bodies) is preferred.Experience as a CISO or directly supporting a CISO preferred.Excellent verbal, communication and presentation skillsStrong problem solving & analytical skills. CISSP certification preferred.Skills in planning and organizing teamwork effort and communicating status in a clear and concise manner to leadership. Experience in regulated medical device industry: subject matter understanding of CIS, NIST, 21 CFR Part 11/GxP, and associated processes preferred.Strong business acumen, including financial controls (SOX, PHI, HIPPA, GDPR, CCPA and other)Knowledge of commonly used concepts, practices and procedures within the IT field.#LI-TS1JobSummaryID: 2021-3130Category: Information TechnologySDL2017

Keywords: Nevro, Redwood City , Associate Director, Information Cybersecurity, Other , Redwood City, California

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest California jobs by following @recnetCA on Twitter!

Redwood City RSS job feeds