Cybersecurity Senior Specialist - Onsite

Title:
Cybersecurity Senior Specialist

• Onsite Mandatory skills: cybersecurity,
  Cloud-native application architecture, security design, Mobile application architecture, Cloud computing architecture,
  cyber threat modeling, frameworks, STRIDE, PASTA,
  continuous integration, delivery frameworks, product development, operational lifecycle,
  information security principles, defense-in-depth strategies, balance business risk, cybersecurity risk,
  medical device cybersecurity frameworks,
  maintaining mobile-enabled, cloud-based products Description:
  Senior Cyber Specialist
• Digital Enablement As a Senior Cyber Specialist
• Digital Enablement, you will play an important role in ensuring that the client product technologies leveraged by healthcare providers and consumers are secure-by-design. These technologies range from regulated medical devices to e-commerce and customer loyalty solutions. You will evaluate the cybersecurity posture of new and existing product technologies, identify risks, recommend mitigation strategies, and ensure timely remediation and closure. You will bring deep expertise in security risks, controls, mitigations, and global cybersecurity standards to the client product teams. This role is expert-driven and guidance focused, requiring strong technical depth, excellent communication skills, and a proven ability to navigate a large, global environment. You will partner closely with internal product owners, developers, engineers, security architects, and external collaborators to evaluate solutions, strengthen governance, and guide secure product development. Your work will directly contribute to the delivery of scalable, compliant, and secure product technologies, cloud services, and connected applications. The role focuses on consultative responsibilities rather than hands-on development or cybersecurity operations. Primary Responsibilities
  Develop and maintain security guidance documentation, including standards and frameworks
  Conduct full-stack architecture reviews of products and platforms, including consumer identity platforms
  Perform cybersecurity threat modeling and prepare outputs for review by internal and external stakeholders
  Establish, document, and monitor compliance with risk-based and regulatory-informed cybersecurity requirements for individual products
  Collaborate with product designers and developers to ensure security considerations are integrated early into product design discussions
  Validate the security of product software supply chains and product deployment pipelines
  Develop risk mitigation strategies and recommend appropriate security controls
  Assess and prioritize product security risks through detailed evaluation of vulnerability assessments and penetration testing results
  Evaluate the effectiveness of product cybersecurity controls
  Identify and effectively communicate cyber risk trends
  Ensure risk management plans are clearly documented, actionable, and accurately reflect the organization s risk tolerance
  Track and ensure product compliance with defined vulnerability remediation SLAs.
  Participate in governance forums, architecture reviews, and technical discussions as a representative of Product Cybersecurity About You
  7+ years of experience in cybersecurity or technology architecture, assessment, or consulting with a focus on the development of secure digital product technologies
  Experience conducting risk assessments, control assessments, and governance reporting
  Ability to clearly articulate cybersecurity risks and recommended mitigations to product development teams
  Strong understanding of modern technology stacks, including cloud-native architectures and API-driven services
  Understanding of core concepts related to identity and access management, secure software development, network security, and cryptography
  Familiar with device to device, service to service, and consumer identity and access management practices
  Familiarity with modern phishing-resistant authentication technologies, including Web

Authn and Passkeys
Understanding of cybersecurity risks associated with emerging technologies, including quantum computing and artificial intelligence
Knowledge of global medical device regulatory frameworks
Excellent analytical, problem-solving, and communication skills
Working knowledge of security frameworks and standards (e.g., NIST, ISO/IEC 27001, PCI DSS)
Strong collaboration and influencing skills, with the ability to work effectively across technical and business teams
Exceptional written and verbal communication skills, with the ability to tailor complex information for diverse audiences
Strong analytical and problem solving skills, with the ability to work independently and manage multiple priorities
Bachelor s degree in Cybersecurity, Computer Science, Information Systems, Information Assurance, Software Engineering, or a related field Preferred Qualifications
Strong preference for candidates with cybersecurity experience across e commerce, mobile apps, IoT, or medical devices.
Preferred certifications include CISSP, HCISPP, CISM, CCSP, SABSA
Foundation, CISA, or similar industry-recognized certifications Notes:

8:00 AM

• 5:00 PM VIVA USA
  is an equal opportunity employer and is committed to maintaining a professional working environment that is free from discrimination and unlawful harassment. The Management, contractors, and staff of VIVA USA
  shall respect others without regard to race, sex, religion, age, color, creed, national or ethnic origin, physical, mental or sensory disability, marital status, sexual orientation, or status as a Vietnam-era, recently separated veteran, Active war time or campaign badge veteran, Armed forces service medal veteran, or disabled veteran. Please contact us at for any complaints, comments and suggestions. Contact Details :
  Account co-ordinator: Nivas Palanisamy VIVA USA INC.

3601 Algonquin Road, Suite 425
Rolling Meadows, IL 60008 |