Medtronic plc
Principal Product Security Engineer
Medtronic plc, Los Angeles, California, United States, 90079
Principal Product Security Engineer
Apply
Remote Type: Hybrid
Location: Los Angeles, California, United States of America
Time Type: Full time
Posted on: Posted 3 Days Ago
Job Requisition ID: R8240
At Medtronic, you can begin a life-long career of exploration and innovation while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.
A Day in the LifeThe Medtronic Diabetes organization is looking for a Principal Product Security Engineer to join our Software Cybersecurity Organization. Be a technical leader within a team responsible for solutions for Medtronic’s medical devices. Lead the work to security monitoring and secure operation of connected medical device systems.
At Medtronic Diabetes, our IoT solutions, Application, and Cloud systems connect a planet’s worth of medical device health data to deliver patient and hospital solutions that make a real difference in how people live their lives every day. This key cybersecurity role is for a hands-on engineer who is detail-oriented, entrepreneurial, and driven to get products and services delivered with high quality and security.
You will contribute heavily to our goal of delivering this increasingly complex and interconnected system of components that requires industry-leading security thinking.
You will have an opportunity to contribute to advancing security while working with other Security Engineers, Architects, Program Managers, and Developers throughout the R&D organization to instill the core security mindset and culture.
This job also provides an opportunity to collaborate with the broader Medtronic security leadership team, external and internal cybersecurity researchers, Global IT Organization, and stay on top of current developments for the benefit of Medtronic products and services.
In this role, you will contribute to maintaining cybersecurity of Medtronic Diabetes’ products through:
Leading Risk Management - Train engineering teams on, and facilitate threat modeling, security risk evaluations, and vulnerability assessments to identify and mitigate potential security risks throughout the product lifecycle.
Building Security Awareness - Collaborate with the product R&D teams helping them to understand the security mindset, guiding them to implement specific security controls for product/system wide security needs.
Creating Security Architectures - Contribute to the definition and design of secure medical device architectures and product designs, as well as secure manufacturing and deployment designs.
Ensuring Security By Design - Support and lead integration of security into the product development lifecycle, ensuring that security considerations are incorporated from design to deployment.
Verifying Secure Implementation - Contribute to security testing activities, including vulnerability scanning, penetration testing, and code reviews.
Maintaining Standards Compliance - Assist in maintaining and implementing security standards, policies, and procedures for medical device systems and product development.
Learning Every Day - Participate in ongoing professional development to stay current with emerging cybersecurity trends and threats related to medical devices and health software products.
Assessing our Vendors - Evaluate third-party vendors and suppliers for their security practices and ensure they meet our security requirements.
Coordinating Incident Response - Lead and support the effective response to security incidents, ensuring swift resolution, proper mitigation, and clear communication to stakeholders.
Must Have: Minimum Requirements
Bachelor’s degree in Software Engineering, Computer Science, or related technical field and 7+ years of cybersecurity experience.
Or Advanced Degree in Software Engineering, Computer Science, or related technical field and 5+ years of cybersecurity experience.
Nice to Have
Experience with 2 or more of the following:
Embedded Security Experience
Mobile Application Security Experience
Cloud Security Experience
Wireless communication systems knowledge and experience
PKI Key management system design
Penetration or Red Team testing of IoT devices or Mobile Applications
Security Incident Management
Prior cybersecurity design or testing experience in critical industries such as Medical, Aerospace, Automotive, Defense.
Programming skills in one or more of the following: C, C++, Python, Flutter.
Experience in medical device technology.
Experience with Security Frameworks and compliance standards (e.g., ISO 27001, ISO 81001-5-1, NIST, FDA Premarket Guidance).
Threat Modeling Experience (STRIDE).
Physical Job Requirements
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Benefits & CompensationMedtronic offers a competitive Salary and flexible Benefits Package
Salary ranges for U.S (excl. PR) locations (USD): $145,600.00 - $218,400.00. This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).
About MedtronicWe lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law.
#J-18808-Ljbffr
Apply
Remote Type: Hybrid
Location: Los Angeles, California, United States of America
Time Type: Full time
Posted on: Posted 3 Days Ago
Job Requisition ID: R8240
At Medtronic, you can begin a life-long career of exploration and innovation while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.
A Day in the LifeThe Medtronic Diabetes organization is looking for a Principal Product Security Engineer to join our Software Cybersecurity Organization. Be a technical leader within a team responsible for solutions for Medtronic’s medical devices. Lead the work to security monitoring and secure operation of connected medical device systems.
At Medtronic Diabetes, our IoT solutions, Application, and Cloud systems connect a planet’s worth of medical device health data to deliver patient and hospital solutions that make a real difference in how people live their lives every day. This key cybersecurity role is for a hands-on engineer who is detail-oriented, entrepreneurial, and driven to get products and services delivered with high quality and security.
You will contribute heavily to our goal of delivering this increasingly complex and interconnected system of components that requires industry-leading security thinking.
You will have an opportunity to contribute to advancing security while working with other Security Engineers, Architects, Program Managers, and Developers throughout the R&D organization to instill the core security mindset and culture.
This job also provides an opportunity to collaborate with the broader Medtronic security leadership team, external and internal cybersecurity researchers, Global IT Organization, and stay on top of current developments for the benefit of Medtronic products and services.
In this role, you will contribute to maintaining cybersecurity of Medtronic Diabetes’ products through:
Leading Risk Management - Train engineering teams on, and facilitate threat modeling, security risk evaluations, and vulnerability assessments to identify and mitigate potential security risks throughout the product lifecycle.
Building Security Awareness - Collaborate with the product R&D teams helping them to understand the security mindset, guiding them to implement specific security controls for product/system wide security needs.
Creating Security Architectures - Contribute to the definition and design of secure medical device architectures and product designs, as well as secure manufacturing and deployment designs.
Ensuring Security By Design - Support and lead integration of security into the product development lifecycle, ensuring that security considerations are incorporated from design to deployment.
Verifying Secure Implementation - Contribute to security testing activities, including vulnerability scanning, penetration testing, and code reviews.
Maintaining Standards Compliance - Assist in maintaining and implementing security standards, policies, and procedures for medical device systems and product development.
Learning Every Day - Participate in ongoing professional development to stay current with emerging cybersecurity trends and threats related to medical devices and health software products.
Assessing our Vendors - Evaluate third-party vendors and suppliers for their security practices and ensure they meet our security requirements.
Coordinating Incident Response - Lead and support the effective response to security incidents, ensuring swift resolution, proper mitigation, and clear communication to stakeholders.
Must Have: Minimum Requirements
Bachelor’s degree in Software Engineering, Computer Science, or related technical field and 7+ years of cybersecurity experience.
Or Advanced Degree in Software Engineering, Computer Science, or related technical field and 5+ years of cybersecurity experience.
Nice to Have
Experience with 2 or more of the following:
Embedded Security Experience
Mobile Application Security Experience
Cloud Security Experience
Wireless communication systems knowledge and experience
PKI Key management system design
Penetration or Red Team testing of IoT devices or Mobile Applications
Security Incident Management
Prior cybersecurity design or testing experience in critical industries such as Medical, Aerospace, Automotive, Defense.
Programming skills in one or more of the following: C, C++, Python, Flutter.
Experience in medical device technology.
Experience with Security Frameworks and compliance standards (e.g., ISO 27001, ISO 81001-5-1, NIST, FDA Premarket Guidance).
Threat Modeling Experience (STRIDE).
Physical Job Requirements
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Benefits & CompensationMedtronic offers a competitive Salary and flexible Benefits Package
Salary ranges for U.S (excl. PR) locations (USD): $145,600.00 - $218,400.00. This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).
About MedtronicWe lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law.
#J-18808-Ljbffr