About the Job

At Foundation Medicine, we value our cybersecurity team as the first — and last — line of defense in protecting our sensitive data from cyberattack. The Cybersecurity Quality Engineer is an experienced and vigilant cybersecurity specialist on the Software Quality Assurance team. The incumbent ensures we are compliant with the cybersecurity expectations of our patients, physicians, partners and regulators, prevents breaches of all sizes, understands when they occur, and takes immediate steps to remediate them. In this role, the Cybersecurity Quality Engineer helps keep cybercrime at bay, using expertise and analytics to monitor our cybersecurity environment at all points of contact, and recommends solutions for any vulnerabilities. This individual has an understanding of cybersecurity standards and certifications in regulated healthcare, extensive knowledge of how cybercriminals work, and determination to never allow them access.

Key Responsibilities

• Ensure the cybersecurity environment at Foundation Medicine meets or exceeds the expectations of our patients, physicians, partners and regulators.
• Take the lead in day-to-day support of our cybersecurity and technology teams to build and maintain safe, compliant, and resilient cybersecurity solutions.
• Collaborate with other members of the cybersecurity and technology teams to develop new protocols, layers of protection, and other proactive and defensive systems for remaining ahead of cybercriminals.
• Maintain documentation of security guidelines, procedures, standards, and controls.
• Maintain knowledge of current cybercrime tactics.
• Collect data on current security measures for risk analysis, and write systems status reports regularly.
• Conduct audits to identify vulnerabilities, and collaborate with cybersecurity team to update defensive protocols when necessary.
• Ensure the effective configuration of antivirus systems, firewalls, data centers, and software updates with a security-first mindset.
• Ensure credentialing of authorized users, access monitoring and related activities, are effective.
• Help lead employee training to prevent phishing and other forms of cyberattack.
• Other duties as assigned.

Qualifications:

Basic Qualifications:

• Bachelor’s degree (or equivalent) in information systems, information technology, or related field
• 3+ years of experience in cybersecurity at a midsize or large company in the healthcare or other regulated space.
• Deep knowledge of IT, including hardware, software, and networks

Preferred Qualifications:

• Meticulous eye for detail and an ability to multitask in a fast-paced environment
• Strong abilities in critical thinking, problem-solving, logic, and forensics
• Excellent verbal and written communication skills
• Ability to work successfully in both individual and team settings
• Ability to think like a hacker in order to stay ahead of threats

The expected salary range for this position based on the primary location of Boston, MA is $93,500 – $116,500 per year. The salary range is commensurate with Foundation Medicine’s compensation practice and considers factors including, but not limited to, education, training, experience, external market conditions, criticality of role, and internal equity. A discretionary annual bonus may be available based on individual and Company performance. This position also qualifies for Foundation Medicine’s benefits.

#LI-Hybrid