Senior Cybersecurity Specialist
Medtronic · Nanakramguda, Hyderabad, India
Job description
Careers that change lives start here. Medtronic is a global leader in healthcare technology with a Mission to alleviate pain, restore health, and extend life. Our 95,000 employees work across more than 150 countries to put patients first — developing innovative medical technologies that improve the lives of 72+ million patients each year. Your unique talents will help shape the future of healthcare while building a career grounded in purpose, growth, and impact. A Day in the LifeThe Senior Cyber Security Analyst – Governance (Disaster Recovery) is responsible for governing and overseeing the organization’s disaster recovery (DR) program to ensure the resilience and recoverability of critical IT systems. This role provides independent governance oversight across Business Impact Analyses (BIAs), disaster recovery planning, testing, risk management, and continuous improvement activities. The position partners with application owners, technology teams, and risk and audit stakeholders to ensure disaster recovery requirements are consistently implemented, tested, and maintained in alignment with enterprise standards and industry frameworks such as ISO 22301 and NIST SP 800 34. The role also serves as a trusted advisor to application owners, supporting the development and ongoing maintenance of application level disaster recovery plans.Responsibilities may include the following and other duties may be assigned: Disaster Recovery Governance Govern execution of the enterprise disaster recovery framework to ensure recoverability expectations are defined, implemented, and sustained for in‑scope systems. Apply and enforce disaster recovery governance standards, processes, and controls across the organization. Maintain oversight of disaster recovery scope, critical system classifications, recovery objectives, and assurance requirements. Business Impact Analysis (BIA) Oversight Govern the completion and ongoing maintenance of Business Impact Analyses (BIAs) to identify critical applications, recovery objectives, and system dependencies. Review and challenge BIAs for quality, consistency, and alignment with enterprise resilience requirements. Ensure BIAs remain current and reflect changes in business operations, technology, and risk. Disaster Recovery Testing & Exercises Provide governance oversight of periodic disaster recovery simulations, tabletop exercises, and recovery tests. Evaluate testing outcomes to assess the organization’s ability to recover systems within defined recovery objectives. Identify testing gaps, trends, and weaknesses, and recommend improvements to testing practices. Risk, Issues, and Corrective Action Maintain oversight of disaster recovery–related risks, findings, and corrective action plans. Ensure issues identified through BIAs, testing, or audits are documented, assigned, tracked, and remediated. Monitor remediation progress and escalate risks or delays as appropriate. Audit & Continuous Improvement Support internal and external audits related to disaster recovery by coordinating evidence and preparing governance documentation. Ensure disaster recovery governance activities are audit‑ready and defensible. Drive continuous improvement by identifying recurring issues and recommending process or control enhancements. Advisory & Stakeholder Engagement Provide guidance and consultation to application owners on disaster recovery planning and alignment with enterprise standards. Act as an escalation point for complex disaster recovery planning or governance issues. Collaborate with IT, infrastructure, cloud, and business continuity teams to promote consistent implementation of disaster recovery requirements. Required Knowledge and Experience: Bachelor’s degree in Information Technology, Cybersecurity, Risk Management, Business Continuity, or a related field (or equivalent experience). Overall 7+ years in IT and 4–6 years of experience in cybersecurity governance, IT risk management, disaster recovery, business continuity, or technology audit. Experience governing or assessing BIAs, disaster recovery planning, recovery testing, and issue remediation. Working knowledge of disaster recovery and resilience frameworks such as ISO 22301 and NIST SP 800‑34. Strong analytical, documentation, and stakeholder communication skills. NICE TO HAVE (Preferred Qualifications): Experience in a large, complex, or regulated enterprise environment. Familiarity with GRC tools, risk registers, or audit management platforms. Relevant certifications (preferred but not required): CBCP, CISA, CRISC, CISSP. Physical Job Requirements The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position. Recruitment Fraud Alert We are aware of phishing scams targeting job seekers. Please keep the following in mind: Apply only through official Medtronic channels. All legitimate Medtronic recruiting communications come from approved Medtronic platforms and official @medtronic.com email addresses. Medtronic will never ask for payment or sensitive personal information (such as bank account or Social Security details) during early stages of the hiring process. Any such requests are not legitimate. If you receive a suspicious message claiming to be from Medtronic, do not respond, click links, or open attachments. If you have any questions, concerns regarding the authenticity of a communication alleged to have been made by or on behalf of Medtronic, please contact us immediately at AskHR@medtronic.com. Benefits & CompensationMedtronic offers a competitive Salary and flexible Benefits Package A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage. This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).
Verified and listed by ActiveJobs. Applications are made directly on Medtronic's own career page — we never sit in the middle.