Senior Product Security Engineer (Medtech)
ΠΡΡΡ & Π‘ΠΎΠΏΡΠΎΠ²ΠΎΠ΄
ΠΠ»Ρ ΠΌΡΡΡΠ° Ρ ΡΡΠΎΠΉ Π²Π°ΠΊΠ°Π½ΡΠΈΠ΅ΠΉ Π½ΡΠΆΠ΅Π½ Plus
ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅ Π²Π°ΠΊΠ°Π½ΡΠΈΠΈ
TL;DR
Senior Product Security Engineer (Medtech): Leading the integration of security measures into the development lifecycle of therapeutic medical devices with an accent on cyber-resiliency, threat modeling, and regulatory compliance. Focus on designing secure architectures for embedded systems and ensuring robust protection for life-critical healthcare software.
Location: Must be based in Mounds View, MN (Hybrid: 4 days per week on-site)
Salary: $132,000 - $198,000 USD
Company
is a global leader in healthcare technology dedicated to alleviating pain, restoring health, and extending life through innovative medical solutions.
What you will do
- Lead the integration of security into the product development lifecycle from design to deployment.
- Conduct threat modeling, security risk evaluations, and vulnerability assessments for medical devices.
- Contribute to the design of secure architectures, including secure boot, data protection, and access controls.
- Collaborate with cross-functional Agile teams to ensure security standards are embedded in product development.
- Manage security incidents and ensure swift resolution and stakeholder communication.
- Evaluate third-party vendors for security compliance and best practices.
Requirements
- Bachelorβs degree in a technical discipline with 4+ years of experience, or advanced degree with 2+ years of experience.
- Must possess unrestricted U.S. work authorization at the time of hire.
- Proven experience as a security engineer for software products.
- Hands-on experience in cybersecurity, threat modeling, and incident management.
- Experience working in Agile software development teams.
- Proficiency in developing, debugging, and troubleshooting software issues.
Nice to have
- 2+ years of embedded device experience in a regulated industry.
- Security certifications such as GSEC, CISSP, CISA, GCIH, or CC.
- Familiarity with medical device security standards like NIST, IEC 60601-4-5, and IEC 81001-5-1.
- Experience mentoring junior engineers.
Culture & Benefits
- Comprehensive health, dental, and vision insurance.
- 401(k) plan with employer contribution and match.
- Paid time off and paid holidays.
- Tuition assistance and reimbursement programs.
- Employee Stock Purchase Plan.
- Inclusive culture focused on professional growth and cross-functional collaboration.
ΠΡΠ΄ΡΡΠ΅ ΠΎΡΡΠΎΡΠΎΠΆΠ½Ρ: Π΅ΡΠ»ΠΈ ΡΠ°Π±ΠΎΡΠΎΠ΄Π°ΡΠ΅Π»Ρ ΠΏΡΠΎΡΠΈΡ Π²ΠΎΠΉΡΠΈ Π² ΠΈΡ ΡΠΈΡΡΠ΅ΠΌΡ, ΠΈΡΠΏΠΎΠ»ΡΠ·ΡΡ iCloud/Google, ΠΏΡΠΈΡΠ»Π°ΡΡ ΠΊΠΎΠ΄/ΠΏΠ°ΡΠΎΠ»Ρ, Π·Π°ΠΏΡΡΡΠΈΡΡ ΠΊΠΎΠ΄/ΠΠ, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡΠ΅ ΡΡΠΎΠ³ΠΎ - ΡΡΠΎ ΠΌΠΎΡΠ΅Π½Π½ΠΈΠΊΠΈ. ΠΠ±ΡΠ·Π°ΡΠ΅Π»ΡΠ½ΠΎ ΠΆΠΌΠΈΡΠ΅ "ΠΠΎΠΆΠ°Π»ΠΎΠ²Π°ΡΡΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡΠΈΡΠ΅ Π² ΠΏΠΎΠ΄Π΄Π΅ΡΠΆΠΊΡ. ΠΠΎΠ΄ΡΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β