Staffing Visa Sponsorship Jobs in Minnesota

Primary Responsibilities

• Develop and maintain security guidance documentation, including standards and frameworks
• Conduct full-stack architecture reviews of products and platforms, including consumer identity platforms
• Perform cybersecurity threat modeling and prepare outputs for review by internal and external stakeholders
• Establish, document, and monitor compliance with risk-based and regulatory-informed cybersecurity requirements for individual products
• Collaborate with product designers and developers to ensure security considerations are integrated early into product design discussions
• Validate the security of product software supply chains and product deployment pipelines
• Develop risk mitigation strategies and recommend appropriate security controls
• Assess and prioritize product security risks through detailed evaluation of vulnerability assessments and penetration testing results
• Evaluate the effectiveness of product cybersecurity controls
• Identify and effectively communicate cyber risk trends
• Ensure risk management plans are clearly documented, actionable, and accurately reflect the organization’s risk tolerance
• Track and ensure product compliance with defined vulnerability remediation SLAs
• Participate in governance forums, architecture reviews, and technical discussions as a representative of Product Cybersecurity

About You

• 7+ years of experience in cybersecurity or technology architecture, assessment, or consulting with a focus on the development of secure digital product technologies
• Experience conducting risk assessments, control assessments, and governance reporting
• Ability to clearly articulate cybersecurity risks and recommended mitigations to product development teams
• Strong understanding of modern technology stacks, including cloud-native architectures and API-driven services
• Understanding of core concepts related to identity and access management, secure software development, network security, and cryptography
• Familiar with device-to-device, service-to-service, and consumer identity and access management practices
• Familiarity with modern phishing-resistant authentication technologies, including WebAuthn and Passkeys
• Understanding of cybersecurity risks associated with emerging technologies, including quantum computing and artificial intelligence
• Knowledge of global medical device regulatory frameworks
• Excellent analytical, problem-solving, and communication skills
• Working knowledge of security frameworks and standards (e.g., NIST, ISO/IEC 27001, PCI DSS)
• Strong collaboration and influencing skills, with the ability to work effectively across technical and business teams
• Exceptional written and verbal communication skills, with the ability to tailor complex information for diverse audiences
• Strong analytical and problem-solving skills, with the ability to work independently and manage multiple priorities
• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Information Assurance, Software Engineering, or a related field

Preferred Qualifications

• Strong preference for candidates with cybersecurity experience across e-commerce, mobile apps, IoT, or medical devices
• Preferred certifications include CISSP, HCISPP, CISM, CCSP, SABSA Foundation, CISA, or similar industry-recognized certification

Key Responsibilities & Expectations

• Embedded with product development teams to guide secure architecture and design decisions
• Advise teams during design and coding stages to prevent rework or security gaps discovered later
• Interpret vulnerability scans, penetration test outputs, and compliance considerations (not conducting scans or tests)
• Provide practical, experience-based guidance rooted in real-world delivery, not theoretical responses
• Support technologies used globally impacting millions of users in healthcare
• Immediate credibility required; role is not intended as a learning or entry-level opportunity

Skills

• Senior-level cybersecurity advisor, consultant, or application security architect
• Strong background advising product and engineering teams
• Experience with secure architecture, secure coding principles, and development pipelines
• Hands-on exposure to cloud-native technologies, containerization, and modern application stacks
• Comfortable providing real-world examples and engaging authentically in technical discussions
• Able to admit knowledge gaps honestly when appropriate

Technology & Experience Areas of Interest

• Cloud-native platforms and architectures
• Container security (Docker, Kubernetes, Kubernetes orchestration such as Rancher)
• Software supply chain security and open-source risk management
• Securing APIs, authentication, and identity components (SSO, token-based auth)
• Mobile applications, embedded devices, wearable and biosensor technologies (nice-to-have)