Medtronic is hiring a Product Security Engineer II

Medtronic is looking for a Product Security Engineer II to join our team. We are engineers at heart, putting ambitious ideas to work to generate real solutions for real people. In this role, you will lead with purpose, performing critical cybersecurity activities to protect our medical devices and ensure patient safety.

What You'll Do

• Perform product and device-oriented cybersecurity activities ranging from incident response to vulnerability assessments to mitigation implementation.
• Develop and perform product-level intrusion detection activities.
• Perform product risk assessments in conjunction with product R&D teams and develop and recommend specific security controls for product/system-wide security needs.
• Participate in the creation and testing of product security-related requirements and processes.
• Manage security-related deliverables for regulatory bodies, ensuring compliance with key standards and guidance documents.
• Evaluate and test security risks on programs across the entire development lifecycle, including market-released product.
• Take part in Agile ceremonies to support continuous development and secure design practices.

What We're Looking For

• Bachelor’s degree in Computer Science, Software Engineering, or a related field, or equivalent experience.
• CISSP or similar certification, or sufficient demonstrated experience and/or formal education in cyber security and information assurance.
• Minimum 4 years of relevant experience, or advanced degree with minimum 2 years of relevant experience.
• OS systems-level experience within one or more of: Linux, Windows, Android, iOS.
• Understanding of networking (ports/protocols), firewalls, load balancers, etc.
• Strong problem-solving skills and attention to detail.
• Excellent communication and teamwork skills.

Nice to Have

• Security incident management experience.
• Log event management and searching experience (Splunk or similar).
• Programming skills in one or more of: C, C++, Python, Java, .NET, Go, Ruby, Scala, Bash.
• Experience in the Healthcare industry or other heavily regulated industry.
• Understanding of national and international laws, regulations, and policies related to regulated medical device cybersecurity.
• Wireless communication systems knowledge and experience.
• Knowledge in FDA and ISO design control requirements.

Technical Stack

• Operating Systems: Linux, Windows, Android, iOS
• Tools: Splunk
• Languages: C, C++, Python, Java, .NET, Go, Ruby, Scala, Bash

Benefits & Compensation

• Competitive Salary
• Flexible Benefits Package
• Short-term incentive plan (Medtronic Incentive Plan - MIP)

Medtronic is an equal opportunity employer.