Summary
Work History
Education
Skills
Websites
Accomplishments
Certification
AWARDS
Timeline
Generic
Smita Londhe

Smita Londhe

Dublin

Summary

Senior Cybersecurity Expert with 15+ years of experience delivering end-to-end product security from design through post-production, specializing in STRIDE threat modeling, OWASP Top 10 risk analysis, and SBOM/VEX-driven vulnerability management. Proven success supporting FDA 510(k) submissions with compliant cybersecurity documentation and achieving full compliance with HIPAA, ISO 14971, IEC 62304, IEC 81001-5-1, IEC 62443, SOC 2, NIST 800-53, and ISO 27001. Increased vulnerability detection by 30% through automation and secure SDLC integration, enabling secure-by-design and regulatory-ready product releases.

Work History

Senior Security Product Manager

Argus Eye
San Ramon, CA
01.2026 - Current
  • Led cross-functional teams to develop and launch innovative product solutions, enhancing customer satisfaction.
  • Managed product lifecycle from ideation to execution, ensuring alignment with market trends and business goals.
  • Advised and influenced architecture design to align with threat modeling tool capabilities and ensure compliance with FDA and global standards : ISO 14971, IEC 81001-5-1, IEC 62443, HIPAA, GDPR, IEC 62304, and developed FDA-compliant threat models to support efficient 510(k) submissions for medical device customers.
  • Established and monitored KPIs to track product performance and drive strategic improvements across offerings.
  • Collaborated with engineering and design teams to refine product features based on user feedback and market analysis.
  • Developed comprehensive roadmaps that prioritized initiatives based on resource allocation and market demands.
  • Developed product documentation to communicate upcoming features and products to internal teams.
  • Analyzed metrics to measure product performance.

Senior Product Security Engineer

Medtronic
Lafayette, CO
05.2024 - 10.2025
  • Aligned cybersecurity practices with industry-leading standards and frameworks, including NIST, FDA Cybersecurity Guidance, IEC 81001-5-1, OWASP, and ISO/IEC 27001, ensuring robust security coverage throughout the product development and maintenance lifecycle.
  • Designed and reviewed security architecture in alignment with HIPAA, GDPR, and FDA premarket submission regulations.
  • Conducted risk assessments and created VEX documentation to support regulatory compliance and audit readiness.
  • Automated Software Bill of Materials (SBOM) generation in the CI/CD pipeline using tools like Jenkins and GitLab, enabling early detection and remediation of third-party vulnerabilities through Software Composition Analysis (SCA).
  • Implemented DAST and IAST tools to simulate real-world cyberattacks and uncover runtime vulnerabilities within the ACM environment, resulting in proactive mitigation of critical security flaws.
  • Championed the Security by Design and SBOM initiatives across diverse business units. Facilitated knowledge sharing and standardization of secure development practices across Operating Units of Medtronic.
  • Skilled in Python with hands-on experience using security tools Burp Suite, OWASP ZAP and deep understanding of security protocols, encryption standards, and cryptographic best practices.
  • Led incident response efforts, including investigation and root cause analysis of security events, and developed corrective action plans to improve resilience and reduce recurrence.
  • Performed threat modeling for various products, identifying design-level vulnerabilities early in the SDLC and incorporating security mitigations in collaboration with engineering teams.
  • Supported FDA 510(k) regulatory submission by completing and validating cybersecurity documentation in FDA’s eSTAR template, ensuring accurate, complete, and compliant submission deliverables.
  • Streamlined communication between departments regarding cybersecurity matters by creating an effective reporting structure that enabled prompt action against identified threats.

Senior Security Test Engineer

Swisslog Healthcare
Westminster, CO
06.2019 - 12.2023
  • Conducted vulnerability scans using Nessus, Veracode, and GitHub dependabots to bolster application security.
  • Analyzed vulnerabilities per NIST and OWASP, assessing impact and exploit ability.
  • Collaborated with DevOps and management to mitigate security risks.
  • Monitored security KPIs for vulnerability management success.
  • Configured Veracode scans for applications in containers, microservices, and VMs.
  • Ensured compliance with HIPAA, GDPR, SOC2, and NIST during security testing.
  • Secured PII data on AWS/Azure with IAM and encryption.
  • HealthCare digital Automation

Senior Software / Leader

Accenture in India
Maharashtra, India
04.2007 - 10.2009
  • Served as the single point of contact between development and testing teams, mentoring the team to successfully execute the end-to-end British Telecommunication project, while ensuring all testing documentation was complete, structured, and maintained, and logging project issues in the defect-tracking system.

Lead Test Engineer

Videocon Telecommunications Ltd
Maharashtra, India
01.2002 - 10.2005
  • Acted as the single point of contact between development and testing teams, mentoring the team to deliver the end-to-end British Telecommunication project while maintaining complete, structured testing documentation and logging project issues in the defect-tracking system.

Education

Bachelor of Engineering - BE - Electronic and Telecommunication

University of Mumbai

Masters, Master of Science in Management - Information System Security

Colorado Technical University
01-2019

Skills

  • Vulnerability Assessment - E2E
  • Regulatory Compliance (HIPAA / FDA/ HITRUST/ NIST 800-53/ ISO 27001/ ISO 13485:2016/ IEC 81001-5-1/ IEC 62443/ ISO 14971/ IEC 62304/ SOC2/ GDPR)
  • FDA 510(k) submissions using the eSTAR platform, ensuring full regulatory compliance and submission readiness
  • Task prioritization/ KPI Tracking/ Product Strategy
  • Asset protection
  • Product roadmaps
  • Threat Model /SAST /DAST /IAST /SBOM /SCA
  • Cloud Security
  • Threat intelligence analysis
  • Application security/Endpoint Security

Websites

Accomplishments

  • Comprehensive Risk AssessmentsConducted risk assessments leading to 100% compliance with security policies and regulations across projects.
  • Enhanced Security PoliciesImplemented security policies achieving a 30% reduction in vulnerabilities across multiple deployment environments.
  • Improved Security FrameworksDeveloped effective security frameworks resulting in a 25% increase in audit readiness and documentation efficiency.

Certification

  • AI for Cybersecurity AI for Cybersecurity ISC2 Issued Dec 2025
  • SANS 401: Security Essential: Network, Endpoint, and Cloud SANS Institute
  • ISTQB Certified ISTQB - International Software Testing Qualifications Board

AWARDS

  • Medtronic Mindset of Deliver Results…The Right Way (02/2025) – Recognized for evaluating and implementing a DAST tool for internal security testing, demonstrating innovation and persistence navigating IT challenges.
  • Medtronic Mindset of Act Boldly (12/2024) – Commended for leadership and proactive approach that strengthened cybersecurity program and inspired PSO leadership confidence.
  • Medtronic Mindset of Act Boldly (09/2024) – Recognized for cross-OU collaboration to advance cybersecurity initiatives in Acute Care & Monitoring.
  • Medtronic Mindset of Act Boldly (06/2024) – Acknowledged for taking initiative in product security, driving impactful results in ACM8.
  • Swisslog (2020–2022) – Received recognition for outstanding performance for three consecutive years.
  • Accenture (2009) – Certificate of Excellence from British Telecom for delivering high-quality product.
  • Accenture (2008) – Awarded “Excellent Leadership” for guiding and delivering end-to-end project successfully.

Timeline

Senior Security Product Manager

Argus Eye
01.2026 - Current

Senior Product Security Engineer

Medtronic
05.2024 - 10.2025

Senior Security Test Engineer

Swisslog Healthcare
06.2019 - 12.2023

Senior Software / Leader

Accenture in India
04.2007 - 10.2009

Lead Test Engineer

Videocon Telecommunications Ltd
01.2002 - 10.2005

Masters, Master of Science in Management - Information System Security

Colorado Technical University

Bachelor of Engineering - BE - Electronic and Telecommunication

University of Mumbai

Similar Profiles

  • Pragyan ParamitaPragyan Paramita

    Senior Product Security Engineer at ServiceNow Inc.Senior Product Security Engineer at ServiceNow Inc.

  • Raghotam HuilgolRaghotam Huilgol

    Manager and Product Owner – SAP Security and GRC at IFFCO GroupManager and Product Owner – SAP Security and GRC at IFFCO Group

  • Mahesh TMahesh T

    Product Security Manager(Architect) at ZetaProduct Security Manager(Architect) at Zeta

  • M Shoeb RaihanM Shoeb Raihan

    Senior Cyber Security Manager at Western Sydney international AirportSenior Cyber Security Manager at Western Sydney international Airport

CREATE PROFILE
Smita Londhe