Technical Lead, Offensive Cyber Security Operations

Role Overview

Innovation starts from the heart. Our Advanced Innovation & Technology (AI&T) teams harness the imagination, courage, and resourcefulness to think beyond what’s currently possible and create solutions for patients many years into the future. In this role, you will lead offensive cyber operations at Edwards Lifesciences, delivering threat insights and services to protect our mission of developing innovative medical solutions.

• Plan, lead, and execute high‑impact offensive cyber operations, including penetration tests, red team operations, and purple team exercises, aligned with Edwards’ mission and risk priorities.
• Continuously evolve offensive security capabilities and operations based on threat landscape shifts and trends to assess the effectiveness of Edwards controls and services against real‑world adversary TTPs.
• Partner closely with cybersecurity, IT, and business teams to maximize defensive outcomes.
• Clearly communicate complex technical findings, impacts, and recommendations to technical and non‑technical audiences at all levels of the organization.
• Define and implement goals, operating models, and ethical guardrails for consistent, high‑quality service delivery.
• Provide technical leadership, mentoring, and quality oversight for assigned team members.

• Bachelor’s degree in Computer Science, Information Security, Engineering, or IT, or equivalent work experience.
• Deep hands‑on experience leading and executing offensive cyber operations, including penetration tests, red team, and purple team engagements across multiple domains (enterprise infrastructure, cloud, identity, applications, mobile).
• Ability to evolve and mature an offensive security program, services, and capabilities.
• Strong ability to translate findings into risks and recommendations and communicate to a variety of audiences.

• 8+ years of progressive experience in offensive cyber operations.
• Demonstrated ability to lead offensive security engagements end‑to‑end, from scoping and risk discussions through execution and executive readouts.
• Proven experience conducting full‑scope adversary emulation aligned to real‑world threats, including pre‑engagement planning, infrastructure preparation, execution, and post‑engagement analysis and reporting.
• Working knowledge of MITRE ATT&CK with the ability to map activities to the framework.
• Advanced proficiency assessing and testing identity‑based infrastructure and services.
• Deep, hands‑on experience assessing and testing cloud environments and native services.
• Hands‑on testing of Kubernetes, containers, serverless platforms, and CI/CD pipelines.
• Strong background in web, API, and mobile application security testing.
• Experience building and operating secure, adversary infrastructure (C2 frameworks, redirectors, staging, OPSEC‑aware).
• Ability to customize and develop offensive tools and experience evading modern endpoint, network, identity, and cloud controls.
• Expertise building and executing attack path analysis capabilities and activities.
• Experience mentoring junior offensive security practitioners.
• Offensive security certifications.
• Experience with assessing/testing of AI‑based solutions and components.
• Experience with AI‑assisted offensive operations, continuous testing models.
• Familiarity with OT/manufacturing cybersecurity.

For California, the base pay range for this position is $145,000 - $205,000 (highly experienced). Pay for the successful candidate will depend on factors such as qualifications, education, and prior experience. Competitive salaries, performance‑based incentives, and a wide variety of benefits programs address the diverse individual needs of employees and their families.

Edwards is an Equal Opportunity/Affirmative Action employer including protected veterans and individuals with disabilities.

All patient‑facing and in‑hospital positions require COVID‑19 vaccination; as a condition of employment, proof of vaccination is required unless an approved medical or religious accommodation is granted. This requirement does not apply in locations where it is prohibited by law to impose vaccination.