Job Description
General Description:
As a Product Security Engineer, you will help integrate security into Spectrum Medical’s product lifecycle, from design through deployment. This role is focused on threat modeling, vulnerability scans, test result analysis, and summarizing security standards for development teams. You will not be an auditor — instead, you’ll help reduce paperwork, guide engineers with clear security recommendations, and support compliance efforts while staying ahead of evolving regulations.
Principal Duties and Responsibilities:
• Maintain and update product threat models, data flow diagrams, and security documentation.
• Arrange and review vulnerability scans (monthly) and penetration test reports; summarize findings for developers.
• Monitor third-party components, development tools, and software for security risks and updates.
• Research and interpret security standards (e.g., NIST, FDA guidance) and provide concise, practical summaries.
• Support certification processes and security questionnaires.
• Collaborate with development teams to apply mitigations and best practices.
• Participate in security review meetings, providing clear, actionable input.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
Knowledge, Skills, and Abilities:
• Bachelor’s degree in Computer Science, Computer Engineering, or related technical field preferred.
• 2–3 years’ experience in security, software development, or systems engineering.
• Familiarity with vulnerability management tools and penetration testing concepts.
• Strong understanding of threat modeling, attack surfaces, and risk analysis.
• Ability to translate complex standards and reports into practical guidance.
• Interest in product security (not IT support/maintenance).
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.