Medtronic
Sr Manager, Product Cybersecurity (Northridge, CA)
Medtronic, Los Angeles, California, United States, 90079
At Medtronic, you can begin a life-long career of exploration and innovation while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.
A Day in the LifeThe Medtronic Diabetes organization is looking for a Senior Manager to join our Software Cybersecurity Organization. Be a technical leader within a team responsible for solutions for Medtronic’s medical devices. Lead the work to security monitoring and secure operation of connected medical device systems.
At Medtronic Diabetes, our IoT solutions, Application and Cloud systems connect a planet’s worth of medical device health data to deliver patient and hospital solutions that make a real difference in how people live their lives every day. Our software systems are truly “the core” that powers our business’ clinical studies, data analytics, and customer-facing therapy solutions.
We are advancing our digital solutions and data management systems to be highly cloud-centric with connected web and mobile applications. This key cybersecurity role is for a hands-on engineer who is detail-oriented, entrepreneurial, and driven to get her/his products and services delivered with high quality and security. You will contribute heavily to our goal of delivering this increasingly complex and interconnected system of components that requires industry-leading security thinking.
You will have an opportunity to contribute to advancing security while working with other Security Engineers, Architects, Program Managers, and Developers throughout the R&D organization to instill the core security mindset and culture. This job also provides an opportunity to collaborate with the broader Medtronic security leadership team, external and internal cybersecurity researchers, Global IT Organization, and stay on top of current developments for the benefit of Medtronic products and services.
This position is onsite in Northridge, CA (hybrid - 3 days per week)
Key Responsibilities
Lead and perform product and network cybersecurity-related activities ranging from security monitoring to incident response to vulnerability assessments and mitigation implementation.
Work directly with architecture and development teams, and IT to ensure all relevant operational security risks are identified and evaluated. Develop and recommend specific security controls for product/system wide security needs.
Develop and perform product-level intrusion detection activities.
Contribute to Medtronic’s understanding of current industry best practices and how they can be applied to the Diabetes Products.
Contribute to the development of tools, processes, and policies to prevent, detect, and resolve classes of issues across the entire development lifecycle, including supply chain and manufacturing.
Lead and guide cybersecurity compliance activities, such as ISO 27001, FEDRAMP, and other international compliance certifications.
Responsibilities may include the following and other duties may be assigned:
Build and maintain the security monitoring roadmap and advocate for resources required to achieve aligned organizational objectives.
Maintain alignment and supporting evidence of security operations practices to organizational certification and assurance objectives.
Lead and continue to mature the Cyber Defense framework, policies, and procedures.
Analyze penetration/assessment test results and engage with Information Technology and business units to resolve and track identified findings and recommendations.
Work with outside consultants as appropriate for independent security audits, assessments, and intrusion and penetration testing.
Must Have: Minimum Requirements
Bachelor’s degree in Software Engineering, Computer Science, or related technical field and 7+ years of cybersecurity experience with 5+ years of managerial experience.
Or Advanced Degree in Software Engineering, Computer Science, or related technical field and 5+ years of cybersecurity experience with 5+ years of managerial experience.
Nice to Have
CCSP, CISSP or similar certification, or sufficient demonstrated experience and/or formal education in cybersecurity and information assurance.
Demonstrated experience with security incident monitoring and response.
Demonstrated understanding of information security practices, risk management processes, cybersecurity principles, and incident response methodologies.
Direct and recent working experience with ISO 27001.
Physical Job RequirementsThe above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.
The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.
Benefits & CompensationMedtronic offers a competitive Salary and flexible Benefits Package. A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.
Salary ranges for U.S (excl. PR) locations (USD): $175,200.00 - $262,800.00. This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP). The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).
About MedtronicWe lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions. Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 90,000+ passionate people. We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab to the factory floor to the conference room, every one of us experiments, creates, builds, improves, and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.
#J-18808-Ljbffr
A Day in the LifeThe Medtronic Diabetes organization is looking for a Senior Manager to join our Software Cybersecurity Organization. Be a technical leader within a team responsible for solutions for Medtronic’s medical devices. Lead the work to security monitoring and secure operation of connected medical device systems.
At Medtronic Diabetes, our IoT solutions, Application and Cloud systems connect a planet’s worth of medical device health data to deliver patient and hospital solutions that make a real difference in how people live their lives every day. Our software systems are truly “the core” that powers our business’ clinical studies, data analytics, and customer-facing therapy solutions.
We are advancing our digital solutions and data management systems to be highly cloud-centric with connected web and mobile applications. This key cybersecurity role is for a hands-on engineer who is detail-oriented, entrepreneurial, and driven to get her/his products and services delivered with high quality and security. You will contribute heavily to our goal of delivering this increasingly complex and interconnected system of components that requires industry-leading security thinking.
You will have an opportunity to contribute to advancing security while working with other Security Engineers, Architects, Program Managers, and Developers throughout the R&D organization to instill the core security mindset and culture. This job also provides an opportunity to collaborate with the broader Medtronic security leadership team, external and internal cybersecurity researchers, Global IT Organization, and stay on top of current developments for the benefit of Medtronic products and services.
This position is onsite in Northridge, CA (hybrid - 3 days per week)
Key Responsibilities
Lead and perform product and network cybersecurity-related activities ranging from security monitoring to incident response to vulnerability assessments and mitigation implementation.
Work directly with architecture and development teams, and IT to ensure all relevant operational security risks are identified and evaluated. Develop and recommend specific security controls for product/system wide security needs.
Develop and perform product-level intrusion detection activities.
Contribute to Medtronic’s understanding of current industry best practices and how they can be applied to the Diabetes Products.
Contribute to the development of tools, processes, and policies to prevent, detect, and resolve classes of issues across the entire development lifecycle, including supply chain and manufacturing.
Lead and guide cybersecurity compliance activities, such as ISO 27001, FEDRAMP, and other international compliance certifications.
Responsibilities may include the following and other duties may be assigned:
Build and maintain the security monitoring roadmap and advocate for resources required to achieve aligned organizational objectives.
Maintain alignment and supporting evidence of security operations practices to organizational certification and assurance objectives.
Lead and continue to mature the Cyber Defense framework, policies, and procedures.
Analyze penetration/assessment test results and engage with Information Technology and business units to resolve and track identified findings and recommendations.
Work with outside consultants as appropriate for independent security audits, assessments, and intrusion and penetration testing.
Must Have: Minimum Requirements
Bachelor’s degree in Software Engineering, Computer Science, or related technical field and 7+ years of cybersecurity experience with 5+ years of managerial experience.
Or Advanced Degree in Software Engineering, Computer Science, or related technical field and 5+ years of cybersecurity experience with 5+ years of managerial experience.
Nice to Have
CCSP, CISSP or similar certification, or sufficient demonstrated experience and/or formal education in cybersecurity and information assurance.
Demonstrated experience with security incident monitoring and response.
Demonstrated understanding of information security practices, risk management processes, cybersecurity principles, and incident response methodologies.
Direct and recent working experience with ISO 27001.
Physical Job RequirementsThe above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.
The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.
Benefits & CompensationMedtronic offers a competitive Salary and flexible Benefits Package. A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.
Salary ranges for U.S (excl. PR) locations (USD): $175,200.00 - $262,800.00. This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP). The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).
About MedtronicWe lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions. Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 90,000+ passionate people. We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab to the factory floor to the conference room, every one of us experiments, creates, builds, improves, and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.
#J-18808-Ljbffr