Medtronic

Senior Product Security Engineer

Hyderabad, India Remote Hybrid
R
Description

At Medtronic you can begin a life-long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.

A Day in the Life

We value what makes you unique. Be a part of a company that thinks differently to solve problems, make progress, and deliver meaningful innovations.

The Cardiac and Vascular Group brings all of our cardiac and vascular businesses together into one cross-functional, collaborative operating unit to employ the full breadth of our talent, technologies, products, services, and solutions to address the needs of customers and patients across the globe. Cardiac Rhythm Management offers devices and therapies to treat abnormal heart rhythms, as well as cardiac monitoring solutions.

Be on the frontlines of the emerging area of medical device cybersecurity as an integral member and technical leader within a team responsible for creating, deploying, and monitoring cybersecurity and information security solutions for Medtronic’s medical devices and supporting IT infrastructure. Interact with external and internal cybersecurity researchers to identify and remediate vulnerabilities within Medtronic products and systems. Work directly with R&D teams to ensure all relevant security risks are identified and evaluated, and appropriate and well-balanced solutions are implemented. Develop project security management deliverables for regulatory bodies to comply with standards / guidance documents, and successfully communicate cybersecurity technology to customers, regulatory bodies, and other stakeholders.

The Senior Product Security Engineer will be responsible for leading and performing product and device-oriented cybersecurity-related activities ranging from incident response to vulnerability assessments and mitigation implementation. The individual will develop and perform product-level intrusion detection activities and lead product risk assessments in conjunction with product R&D teams and develop and recommend specific security controls for product/system-wide security needs. They will participate in the creation and testing of product security-related requirements and processes, manage security-related deliverables for regulatory bodies, ensuring compliance with key standards/guidance documents, evaluate and test security risks on programs across the entire development lifecycle, including market-released products, and support emerging cybersecurity certification initiatives.

Responsibilities may include the following and other duties may be assigned

  • Conduct monitoring of multiple sources of vulnerability and threat intelligence to identify and triage signals pertinent to Medtronic products
  • Create, update, and manage databases of cybersecurity-relevant information on Medtronic products
  • Perform product and device-oriented cybersecurity-related activities ranging from incident response to vulnerability assessments and mitigation implementation.
  • Lead product risk assessments in conjunction with product R&D teams and develop and recommend specific security controls for product/system wide security needs.
  • Participate in the creation and testing of product security-related requirements and processes.
  • Manage security-related deliverables for regulatory bodies, ensuring compliance with key standards/guidance documents.
  • Evaluate and test security risks on programs across the entire development lifecycle, including market-released products.
  • Support emerging cybersecurity certification initiatives. Maintain and update security documentation.
  • Analyze security posture and conduct vulnerability assessments.
  • Understand national and international laws, regulations, and policies related to regulated medical device cybersecurity, as well as information security practices, risk management processes, cybersecurity principles, and incident response methodologies.

Required Knowledge and Experience

  • BTech/ BE in computer science, computer engineering, electrical engineering, or similar discipline.
  • CISSP or similar certification, or sufficient demonstrated experience.
  • Formal education in cybersecurity and information assurance.
  • Minimum of 4 years of experience with 2 years of technical, cybersecurity-related experience. 
  • Familiarity with industry practices and terminology concerning cybersecurity vulnerabilities, including Common Vulnerabilities & Exposures (CVE), Coordinated Vulnerability Disclosure (CVD), vulnerability information sources including the National Vulnerability Database (NVD), and Vulnerability Management Programs (e.g. NIST SP 800-40)
  • Familiarity with distinctions between open-source and closed-source software
  • Familiarity with Software Bills of Material (SBOMs), Common Platform Enumeration (CPE), and Package URL (PURL)
  • Understanding of national and international laws, regulations, and policies related to regulated medical device cybersecurity.
  • Demonstrated understanding of information security practices, risk management processes, cybersecurity principles, and incident response methodologies.
  • Experience in analyzing security posture and conducting vulnerability assessments.

Physical Job Requirements

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position. 

Benefits & Compensation

Medtronic offers a competitive Salary and flexible Benefits Package
A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create.  We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.
 

About Medtronic

We lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.
Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 90,000+ passionate people. 
We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab, to the factory floor, to the conference room, every one of us experiments, creates, builds, improves and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.

Learn more about our business, mission, and our commitment to diversity here  
 

Medtronic
Medtronic
Artificial Intelligence (AI) Biotechnology Health Care Health Diagnostics Medical Device Artificial Intelligence (AI) Biotechnology Health Care Health Diagnostics Medical Device

0 applies

0 views

Other Jobs from Medtronic

Senior Electrical Engineer

Hyderabad, India Remote Hybrid

Principal Enterprise Software Engineer

Hyderabad, India Remote Hybrid

Principal Product Security Engineer

Hyderabad, India Remote Hybrid

There are more than 50,000 engineering jobs:

Subscribe to membership and unlock all jobs

Engineering Jobs

60,000+ jobs from 4,500+ well-funded companies

Updated Daily

New jobs are added every day as companies post them

Refined Search

Use filters like skill, location, etc to narrow results

Become a member

🥳🥳🥳 401 happy customers and counting...

Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.

To try it out

For active job seekers

For those who are passive looking

Cancel anytime

Frequently Asked Questions

  • We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
  • We've got about 70,000 jobs from 5,000 vetted companies. No fake or sleazy jobs here!
  • We aggregate jobs from 5,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
  • We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
  • Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
  • Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
  • Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅

What Fellow Engineers Say