Senior Cyber Security Analyst, Application & Infrastructure

Career-defining. Life-changing. At iRhythm, you’ll have the opportunity to grow your skills and your career while impacting the lives of people around the world. iRhythm is shaping a future where everyone, everywhere can access the best possible cardiac health solutions. Every day, we collaborate, create, and constantly reimagine what’s possible. We think big and move fast, driven by our commitment to put patients first and improve lives. We need builders like you. Curious and innovative problem solvers looking for the chance to meaningfully shape the future of cardiac health, our company, and your careerAbout This Role:Boldly innovating to create trusted solutions that detect, predict, and prevent disease.Discover your power to innovate while making a difference in patients' lives. iRhythm is advancing cardiac care…Join Us Now!At iRhythm, we are dedicated, self-motivated, and driven to do the right thing for our patients, clinicians, and coworkers. Our leadership is focused and committed to iRhythm’s employees and the mission of the company. We are better together, embrace change and help one another. We are Thinking Bigger and Moving Faster.About This RoleiRhythm is seeking a motivated cyber security professional that will help drive forward our focus on application security, threat modeling, and penetration testing for both infrastructure and applications. You will work closely with the Cyber Security team and interface with the Product Security team to identify, assess, and mitigate security risks across both applications and infrastructure. You will support threat modeling, vulnerability analysis, penetration testing, and other cybersecurity activities aligned with FDA, NIST, and international expectations.The role is ideal for a security professional who enjoys hands-on technical work, cross-functional collaboration, and contributing directly to the security posture of our company. Responsibilities Perform application security assessments across software products, cloud services, and supporting infrastructure.Provide security input to threat models, including identification of risks, mitigations, and residual risk.Plan, coordinate, and manage penetration testing activities, including scoping, execution, and remediation tracking.Review, analyze, and interpret penetration test and vulnerability assessment results.Partner with IT and engineering teams to validate findings, recommend mitigations, and track remediation to closure.Support preparation of cybersecurity documentation for regulatory submissions, including FDA 510(k) filings and NIST requirements.Apply NIST-based cybersecurity frameworks and guidance to application, infrastructure, and product security efforts.Partner with the Product Security team to align application security practices with product risk management processes.Contribute technical input to security artifacts such as threat models, vulnerability assessments, and cybersecurity risk documentationCollaborate with engineering, quality, and regulatory stakeholders to ensure security requirements are understood and addressed.Contribute to continuous improvement of application security processes, standards, and documentation.Assist in responding to internal and external security assessments, audits, and regulatory inquiries related to cybersecurity.QualificationsBachelor’s degree in Computer Science, Information Security, Engineering, or a related field, or equivalent experience.8+ years of experience in cybersecurity with a focus on application security, penetration testing, infrastructure security, or product security.Experience supporting cybersecurity activities in a regulated environment such as medical devices or healthcare technology.Demonstrated experience working with NIST cybersecurity standards and frameworks.Experience supporting or contributing to FDA regulatory submissions, including 510(k) documentation, from a cybersecurity perspective.Skills:Strong application security testing and vulnerability assessment skills.Hands-on experience managing and interpreting penetration testing activities.Working knowledge of secure software development practices and threat modeling methodologies.Ability to communicate security risks and recommendations clearly to technical and non-technical stakeholders.Strong project managment, analytical, documentation, and problem-solving skills.Location: Remote (US)FLSA Status: ExemptAs a part of our core values, we ensure a diverse and inclusive workforce. We welcome and celebrate people of all backgrounds, experiences, skills and perspectives. iRhythm Technologies, Inc. is an Equal Opportunity Employer (M/F/V/D). Pursuant to San Francisco Fair Chance Ordinance, we will consider for employment all qualified applicants with arrest and conviction records.Make iRhythm your path forward.Location:Remote - USActual compensation may vary depending on job-related factors including knowledge, skills, experience, and work location.Estimated Pay Range$127,000