Senior Engineer, Product Cybersecurity Job at Baxter in Round Lake

This is where you save and sustain lives

At Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You'll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients.

Baxter's products and therapies are found in almost every hospital worldwide, in clinics and in the home. For over 85 years, we have pioneered significant medical innovations that transform healthcare.

Together, we create a place where we are happy, successful and inspire each other. This is where you can do your best work.

Join us at the intersection of saving and sustaining lives- where your purpose accelerates our mission.

Your Role at Baxter

This is where your work saves lives.

As Senior Engineer, you will work on the cybersecurity design and analysis of multiple medical devices. Help resolve difficult problems, from conception to final design with team input. Plan, help lead, and deliver project assignments in the evaluation, selection and adaptation of various cybersecurity engineering techniques, procedures, and criteria with minimal guidance.

You will contribute to a cybersecurity vision that aligns with the organization's vision and strategic plan. Utilizes solid understanding of device and system connectivity concepts in a medical device domain. Provides direction to technical team members that are accountable for implementing cybersecurity, integration, and connectivity deliverables. Exhibits creativity and innovation in completing divisional and cross-functional/business unit goals and objectives.

What you'll be doing:

• Contribute to the system requirements, architectures, risk analysis and other specifications that define the cybersecurity functionality of medical device systems both embedded and hosted.
• Contribute to threat models of medical device systems and the interfaces between medical devices.
• Perform vulnerability scanning of medical device systems and analyze results.
• Monitor threat intelligence and analyze CWEs and CVEs that affect medical device systems and propose solutions.
• Collaborate with the cross functional team, primarily software, in the implementation of cybersecurity functionality.
• Contribute to external communications (bulletins, FAQs, etc.) related to cybersecurity.
• Resolve competing constraints between interrelated functions (Engineering, Risk Management, Compliance, Clinical, Human Factors, Regulatory, Marketing, Service).
• Ensure compliance to the product development process and Quality System and Design Control requirements.
• Work with regulators to ensure regional needs are met.

What you'll bring:

• BS in computer science, engineering, mathematics, information management, or related field with 3+ years of experience.
• Familiarity with threat modeling, penetration testing, fuzz testing, vulnerability scanning, secure code analysis.
• Familiarity with cybersecurity related software such as Blackduck, Coverity, etc.
• Experience dealing with threat intelligence, CWEs and CVEs.
• Familiarity with cybersecurity related organizations and certifications such as UL (UL-2900), ICS-CERT, FIPS 140, etc.
• Experience with cybersecurity functionality on embedded systems and hosted software applications.
• Requires strong organization and communication skills, with the ability to interface with both technical and non-technical personnel.
• Ability to contribute to technical discussions using both written and verbal methods.
• Must be able to recommend solutions that reflect understanding business objectives.

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time.

#J-18808-Ljbffr