🛠 Tech Stack

💼 About This Role

You'll lead product security architecture and security-by-design practices across GRAIL's life-saving cancer detection products. You'll embed security into the SSDLC and DevSecOps pipelines, balancing risk reduction with engineering velocity in a regulated healthcare environment. This role offers the opportunity to shape security for AI/ML-enabled products and mentor other engineers.

🎯 What You'll Do

• Lead product security architecture across full product lifecycle.
• Embed security into Secure Software Development Lifecycle (SSDLC) and DevSecOps pipelines.
• Perform threat modeling, security risk assessments, and architecture reviews.
• Define and enforce security controls for AI- and ML-enabled products.
• Manage post-market surveillance activities for product security incidents.

📋 Requirements

• 8+ years experience in product security, cybersecurity, or application security.
• Hands-on experience leading threat modeling and security risk assessments.
• Experience embedding security into CI/CD and DevSecOps pipelines.
• Experience supporting security incident response and root cause analysis.
• Bachelor’s degree in Cybersecurity, Computer Science, or related field, or equivalent experience.

✨ Nice to Have

• Experience in regulated environments (medical devices, healthcare, life sciences).
• Knowledge of standards like IEC 62304, ISO 14971, or FDA cybersecurity guidance.
• Professional security certifications such as OSCP, GPEN, or GCIH.

🎁 Benefits & Perks

• 🏥 Health insurance including medical, dental, and vision.
• 💰 Equity and 401(k) matching.
• 🏖️ Flexible PTO and paid holidays.
• 🚗 Commuter benefits for on-site work.
• 📚 Professional development budget.