Baxter International Inc.
Principal Engineer, Product Cybersecurity
Baxter International Inc., Greendale, Wisconsin, United States, 53129
Principal Engineer, Product Cybersecurity
Your Role at Baxter This is where your work saves lives. As Principal Engineer, own and direct the cybersecurity design and analysis of multiple medical devices. Demonstrate subject matter expert knowledge in state-of-the-art security principles. Resolve difficult problems, from conception to final design with team input. Plan, lead, and deliver project assignments in the evaluation, selection and adaptation of various cybersecurity engineering techniques, procedures, and criteria with minimal guidance. Contributes to a cybersecurity vision that aligns with the organization's vision and strategic plan. Utilizes solid understanding of device and system connectivity concepts in a medical device domain. Provides direction to technical team members that are accountable for implementing cybersecurity, integration, and connectivity deliverables. Exhibits creativity and innovation in completing divisional and cross-functional/business unit goals and objectives. What you'll be doing: Implement proof of concept project to define innovative solutions on platforms/server platforms. Lead implementation of medical device cybersecurity principles as part of an overall security architecture. Create, own, and maintain system requirements, architectures, risk analysis and other specifications that define the cybersecurity functionality of medical device systems both embedded and hosted. Create threat models of medical device systems and the interfaces between medical devices. Perform vulnerability scanning of medical device systems and analyze results. Monitor threat intelligence and analyze CWEs and CVEs that affect medical device systems and propose solutions. Drive cybersecurity improvements through product the cross functional teams, primarily software. Lead discussions to resolve competing constraints between interrelated functions (Engineering, Risk Management, Compliance, Clinical, Human Factors, Regulatory, Marketing, Service). Ensure compliance to the product development process and Quality System and Design Control requirements. Interface with regulatory bodies, representing Baxter and Baxter products, and ensure that regional cybersecurity needs are met. Contribute to external communications (bulletins, FAQs, etc.) related to cybersecurity. What you'll bring: BS in computer science, engineering, mathematics, information management, or related field with 5+ years of industry experience or Masters with 3+ years. Experience with threat modeling, penetration testing, fuzz testing, vulnerability scanning, secure code analysis. Experience with cybersecurity related software such as Blackduck, Coverity, etc. Experience dealing with threat intelligence, CWEs and CVEs. Familiarity with cybersecurity related organizations and certifications such as UL (UL-2900), ICS-CERT, FIPS 140, etc. Experience with cybersecurity functionality on embedded systems and hosted software applications. Requires strong organization and communication skills, with the ability to interface with both technical and non-technical personnel. Ability to convince management on courses of action with minimal assistance using both written and verbal methods. Must be able to provide solutions that reflect understanding business objectives. Baxter is committed to supporting the needs for flexibility in the workplace. We do so through our flexible workplace policy which includes a required minimum number of days a week onsite. This policy provides the benefits of connecting and collaborating in-person in support of our Mission. The flexible workplace policy is subject to local laws and legal requirements. At its discretion, Baxter may decide to adjust, suspend, or discontinue as business needs change. Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time. #LI-MS1 Baxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic. Reasonable Accommodations Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the link here and let us know the nature of your request along with your contact information.
#J-18808-Ljbffr
Your Role at Baxter This is where your work saves lives. As Principal Engineer, own and direct the cybersecurity design and analysis of multiple medical devices. Demonstrate subject matter expert knowledge in state-of-the-art security principles. Resolve difficult problems, from conception to final design with team input. Plan, lead, and deliver project assignments in the evaluation, selection and adaptation of various cybersecurity engineering techniques, procedures, and criteria with minimal guidance. Contributes to a cybersecurity vision that aligns with the organization's vision and strategic plan. Utilizes solid understanding of device and system connectivity concepts in a medical device domain. Provides direction to technical team members that are accountable for implementing cybersecurity, integration, and connectivity deliverables. Exhibits creativity and innovation in completing divisional and cross-functional/business unit goals and objectives. What you'll be doing: Implement proof of concept project to define innovative solutions on platforms/server platforms. Lead implementation of medical device cybersecurity principles as part of an overall security architecture. Create, own, and maintain system requirements, architectures, risk analysis and other specifications that define the cybersecurity functionality of medical device systems both embedded and hosted. Create threat models of medical device systems and the interfaces between medical devices. Perform vulnerability scanning of medical device systems and analyze results. Monitor threat intelligence and analyze CWEs and CVEs that affect medical device systems and propose solutions. Drive cybersecurity improvements through product the cross functional teams, primarily software. Lead discussions to resolve competing constraints between interrelated functions (Engineering, Risk Management, Compliance, Clinical, Human Factors, Regulatory, Marketing, Service). Ensure compliance to the product development process and Quality System and Design Control requirements. Interface with regulatory bodies, representing Baxter and Baxter products, and ensure that regional cybersecurity needs are met. Contribute to external communications (bulletins, FAQs, etc.) related to cybersecurity. What you'll bring: BS in computer science, engineering, mathematics, information management, or related field with 5+ years of industry experience or Masters with 3+ years. Experience with threat modeling, penetration testing, fuzz testing, vulnerability scanning, secure code analysis. Experience with cybersecurity related software such as Blackduck, Coverity, etc. Experience dealing with threat intelligence, CWEs and CVEs. Familiarity with cybersecurity related organizations and certifications such as UL (UL-2900), ICS-CERT, FIPS 140, etc. Experience with cybersecurity functionality on embedded systems and hosted software applications. Requires strong organization and communication skills, with the ability to interface with both technical and non-technical personnel. Ability to convince management on courses of action with minimal assistance using both written and verbal methods. Must be able to provide solutions that reflect understanding business objectives. Baxter is committed to supporting the needs for flexibility in the workplace. We do so through our flexible workplace policy which includes a required minimum number of days a week onsite. This policy provides the benefits of connecting and collaborating in-person in support of our Mission. The flexible workplace policy is subject to local laws and legal requirements. At its discretion, Baxter may decide to adjust, suspend, or discontinue as business needs change. Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time. #LI-MS1 Baxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic. Reasonable Accommodations Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the link here and let us know the nature of your request along with your contact information.
#J-18808-Ljbffr