IoMT Specialist--Cybersecurity Field Team
Posted 2025-08-15
Remote, USA
Full Time
Immediate Start
About the position
The IoMT Specialist in the Cybersecurity Field Team is responsible for supporting the technical and inventory activities related to the implementation of cybersecurity controls for medical and non-medical IoT devices. This role is integral to Kaiser Permanente's cybersecurity program, ensuring compliance and security of devices through collaboration with various stakeholders and hands-on technical support.
Responsibilities
• Utilize hardening guides to coordinate and execute controls to reduce the potential attack surface in the medical and non-medical device environment.
,
• Work with other Healthcare Technology Management (HTM) professionals to deliver a robust cybersecurity program.
,
• Coordinate access to medical devices through virtual and onsite support to address high/critical vulnerabilities.
,
• Collect and validate device and network attributes to maintain compliant device inventory records.
,
• Partner with application owners to ensure medical device IT controls are compliant and functioning by tracking and reporting vulnerability remediation activities.
,
• Build stakeholder relationships with key vendors, KP cybersecurity consultants, program leads, system administrators, application owners, and network strategy consultants.
,
• Travel within local and other markets to deploy device cyber controls, perform device inventory management, and support cyber threat responses.
,
• Support and work on non-medical endpoint devices in various departments such as Facilities, Security, Pharmacy, Research, Lab, and Optical.
,
• Stay current with the latest cybersecurity trends and best practices.
,
• Perform other relevant duties and responsibilities as required.
Requirements
• Minimum five (5) years' experience in IT, biomedical engineering, and/or cybersecurity within a healthcare environment.
,
• Minimum three (3) years working in IT or operations, including experience with information technology related to workstations, networking, and clinical technologies.
,
• Experience placing device hardening controls such as firewall configurations, disabling ports/protocols/services/applications, and securing wireless communication.
,
• Experience utilizing network and cybersecurity tools such as Tanium, Phosphorus, CyberArk, ForeScout, Armis, HANK, BlueCat, Nemo, Arujohn, CrowdStrike, Qualys, or Splunk.
,
• Minimum three (3) years in Biomedical experience with HTM or clinical technology, performing maintenance activities on medical devices and analyzing equipment malfunctions.
Nice-to-haves
• Clinical engineering experience within a healthcare technology management department.
,
• Bachelor degree in computer science, Biomedical/Clinical engineering, or related field.
,
• BMET Certification in medical instrumentation by recognized organizations.
,
• Cyber related certifications such as Comp TIA Security+, GIAC Information Security Fundamentals (GISF), or Comp TIA PenTest.
Benefits
• Health insurance coverage
,
• Dental insurance coverage
,
• Vision insurance coverage
,
• 401k retirement savings plan
,
• Paid holidays
,
• Flexible scheduling options
,
• Professional development opportunities
,
• Employee discount programs Apply tot his job
The IoMT Specialist in the Cybersecurity Field Team is responsible for supporting the technical and inventory activities related to the implementation of cybersecurity controls for medical and non-medical IoT devices. This role is integral to Kaiser Permanente's cybersecurity program, ensuring compliance and security of devices through collaboration with various stakeholders and hands-on technical support.
Responsibilities
• Utilize hardening guides to coordinate and execute controls to reduce the potential attack surface in the medical and non-medical device environment.
,
• Work with other Healthcare Technology Management (HTM) professionals to deliver a robust cybersecurity program.
,
• Coordinate access to medical devices through virtual and onsite support to address high/critical vulnerabilities.
,
• Collect and validate device and network attributes to maintain compliant device inventory records.
,
• Partner with application owners to ensure medical device IT controls are compliant and functioning by tracking and reporting vulnerability remediation activities.
,
• Build stakeholder relationships with key vendors, KP cybersecurity consultants, program leads, system administrators, application owners, and network strategy consultants.
,
• Travel within local and other markets to deploy device cyber controls, perform device inventory management, and support cyber threat responses.
,
• Support and work on non-medical endpoint devices in various departments such as Facilities, Security, Pharmacy, Research, Lab, and Optical.
,
• Stay current with the latest cybersecurity trends and best practices.
,
• Perform other relevant duties and responsibilities as required.
Requirements
• Minimum five (5) years' experience in IT, biomedical engineering, and/or cybersecurity within a healthcare environment.
,
• Minimum three (3) years working in IT or operations, including experience with information technology related to workstations, networking, and clinical technologies.
,
• Experience placing device hardening controls such as firewall configurations, disabling ports/protocols/services/applications, and securing wireless communication.
,
• Experience utilizing network and cybersecurity tools such as Tanium, Phosphorus, CyberArk, ForeScout, Armis, HANK, BlueCat, Nemo, Arujohn, CrowdStrike, Qualys, or Splunk.
,
• Minimum three (3) years in Biomedical experience with HTM or clinical technology, performing maintenance activities on medical devices and analyzing equipment malfunctions.
Nice-to-haves
• Clinical engineering experience within a healthcare technology management department.
,
• Bachelor degree in computer science, Biomedical/Clinical engineering, or related field.
,
• BMET Certification in medical instrumentation by recognized organizations.
,
• Cyber related certifications such as Comp TIA Security+, GIAC Information Security Fundamentals (GISF), or Comp TIA PenTest.
Benefits
• Health insurance coverage
,
• Dental insurance coverage
,
• Vision insurance coverage
,
• 401k retirement savings plan
,
• Paid holidays
,
• Flexible scheduling options
,
• Professional development opportunities
,
• Employee discount programs Apply tot his job