Head of Cybersecurity – Medical Device / Digital Health Scale‑Up
Join a mission-driven MedTech company at a critical growth stage as Head of Cybersecurity. This is a unique opportunity to shape and lead the company’s global cybersecurity strategy across both hardware and cloud-based digital platforms. You will build and scale the organization’s cyber capabilities, ensuring compliance, resilience, and innovation at every layer of the product lifecycle.
Role Overview
As Head of Cybersecurity, you will be responsible for defining, implementing, and continuously improving the company’s cybersecurity framework and compliance posture. You will collaborate closely with Product, R&D, Cloud Engineering, and Regulatory teams to ensure the highest standards of data protection, system integrity, and operational security across the connected medical devices and digital health solutions.
Key Responsibilities
Develop and lead the company’s cybersecurity strategy across cloud, application, and hardware layers.
Establish and maintain compliance with major standards and frameworks including ISO 27001, NIST Cybersecurity Framework (CSF), HIPAA, GDPR, and FedRAMP readiness assessments.
Drive security-by-design across all hardware and software development lifecycles.
Partner with engineering and regulatory teams to ensure secure product development, vulnerability management, and continuous monitoring practices.
Oversee cloud-native security architecture (AWS, Azure, or GCP), including identity and access management, encryption, and incident response planning.
Manage readiness and planning for FedRAMP and ISO 27001 certification, ensuring strong governance, risk management, and audit preparation.
Build and mentor a high-performing cybersecurity team, fostering a culture of compliance, awareness, and resilience.
Act as the primary cybersecurity representative across executive leadership, external partners, and regulatory bodies.
Skills & Experience
Experience leading a cyber function within a hardware product company, ideally in medical device or similar hardware product environments.
Proven experience implementing and maintaining ISO 27001, NIST CSF, HIPAA, and/or FedRAMP (readiness or authorization) frameworks.
Strong understanding of cloud-native security principles across AWS, Azure, or GCP platforms.
Demonstrated ability to lead cybersecurity strategy for IoT-connected or embedded hardware products.
Experience with risk assessment, incident response, vulnerability management, and secure SDLC.
Excellent leadership, communication, and stakeholder management skills.
Fully remote within the EU.
For discussions, contact: 01 6498506 or aoife.murtagh@archer.ie.
#J-18808-Ljbffr