Threat Analyst / Product Security Engineer

Job Title: Product Security Threat Analyst (Post-Market Focus)

Location: Limerick, Ireland

Overview

A leading organisation in the regulated technology space is seeking a Product Security Threat Analyst to support post-market cybersecurity activities across its product portfolio. This role focuses on threat analysis, vulnerability assessment, and patient safety, ensuring deployed products remain secure against an evolving threat landscape.

You will work cross-functionally with engineering, security, and compliance teams to monitor, assess, and respond to vulnerabilities, while supporting regulatory requirements and improving overall security posture.

Key Responsibilities

• Monitor, analyse, and assess emerging threats, vulnerabilities, and attack vectors impacting products
• Conduct vulnerability assessments, including exploitability, impact, and risk evaluation
• Perform product-level threat analysis, considering real-world exposure and patient safety implications
• Determine likelihood of exploitation, severity, and residual risk based on controls and mitigations
• Document findings in clear, structured reports aligned with regulatory expectations
• Develop and maintain security and risk artefacts (e.g. risk assessments, system security documentation, vulnerability reports)
• Collaborate with product security, engineering, and cross-functional teams to define impact and remediation strategies
• Support post-market risk monitoring and vulnerability management processes
• Contribute to ongoing improvement of threat analysis methodologies, tools, and processes
• Stay current with cybersecurity trends, threat intelligence, and regulatory changes
• Provide clear communication to stakeholders, including technical and non-technical audiences

Key Requirements

• Experience in cybersecurity, threat analysis, or vulnerability management (typically 2+ years, flexible for strong candidates)
• Strong understanding of:
  • Threat landscapes, vulnerabilities, and attack techniques
  • Risk evaluation, exploitability, and impact assessment
  • Security controls such as authentication, encryption, and secure design
• Ability to assess risk in a post-market / live product environment, including patient safety considerations
• Familiarity with vulnerability scanning, SAST/DAST, or software composition analysis (SCA)
• Comfortable working in a fast-paced environment with multiple priorities
• Strong analytical, problem-solving, and communication skills

Qualifications & Skills

• Degree in Computer Science, Cybersecurity, Engineering, or related field (or equivalent experience)
• Knowledge of Windows and/or Linux environments
• Understanding of common security frameworks and standards (e.g. NIST, ISO 27001, GDPR)
• Exposure to programming or scripting languages (e.g. Python, C/C++, C#, JavaScript) is advantageous
• Experience working with threat intelligence platforms or security tools is beneficial
• Ability to produce high-quality documentation aligned with regulatory expectations

Desirable Experience

• Experience in regulated industries (e.g. medical devices, healthcare, highly compliant environments)
• Exposure to post-market surveillance, patient safety, or risk monitoring processes
• Familiarity with frameworks such as IEC 81001-5 or similar
• Knowledge of DevSecOps practices and tooling
• Relevant certifications (e.g. Security+, CEH, GIAC)

Why Join

• Opportunity to work on real-world cybersecurity challenges impacting live products
• Exposure to threat intelligence, vulnerability research, and patient safety-focused security
• Collaborative, cross-functional environment with strong learning opportunities
• Clear path for career progression within product security and threat analysis