🌎
This job posting isn't available in all website languages
📁
Engineering
📅
210009FK Requisition #
Careers that Change Lives

We are advancing our medical device solutions to be more intelligent, more connected, and cloud centric. This key cybersecurity role is for a hands-on engineer who is detail-oriented, entrepreneurial, and driven to get products delivered with high quality and security. You will contribute heavily to our goal of delivering this increasingly complex and interconnected system of components that requires industry-leading security thinking. 

You will have an opportunity to contribute to advancing security, while working with other Security Engineers, Architects, and Developers throughout the R&D organization to instill the core security mindset and culture. This exciting opportunity also provides an opportunity to collaborate with the broader Medtronic security leadership team, external and internal cybersecurity researchers, and stay on top of current developments for the benefit of Medtronic products and services.

Be a technical leader within a team responsible for solutions for Medtronic’s medical devices. Identify and implement ways to harden medical devices and reduce their attack surface. Develop security solutions that comply with standards/guidance documents established by regulatory bodies.  Lead the work to communicate cybersecurity technology to customers, regulatory bodies, and other stakeholders.

We believe that when people from different cultures, genders, and points of view come together, innovation is the result — and everyone wins. Medtronic walks the walk, creating an inclusive culture where you can thrive.

A Day in the Life
  • Threat modeling and security reviews; you will review the design of services from a security perspective to identify vulnerabilities and weaknesses in the architecture.
  • Collaborate with the product R&D teams helping them to understand the security mindset, guiding them to implement specific security controls for product/system wide security needs.
  • Champion consistent implementation of the Security Development Lifecycle across projects
  • Security Testing: Participate in the creation and testing of product security-related solutions and processes, examine the target systems in detail, looking for vulnerabilities and weaknesses in collaboration with other penetration testing and red teams.
  • Emerging Threat and Vulnerability Research: identify and evaluate new areas for research, perform analysis into emerging threats, including proactive security research on the technologies under consideration for new product capabilities.
  • Tools, Prototypes & development: contribute to the development of tools, processes, and policies to prevent, detect, and resolve classes of issues across the entire development lifecycle, including supply chain and manufacturing.

Responsibilities may include the following and other duties may be assigned:

  • Design security solutions for components and applications based on the system security architecture
  • Conduct product and device cybersecurity activities ranging from incident response to vulnerability assessments to mitigation implementation.
  • Monitor the industry for new and modified attack types, find security holes and gaps in products and systems
  • Monitor Operating System security features and changes to ensure security needs of our systems and products are fulfilled in the solutions and design.
  • Assesses impact of reported incidents, evaluate impact of disclosed vulnerabilities in third-party products
  • Supports selection of hardware components, third-party software, security tools and vendors
  • Coordinate with Electrical and Hardware engineering to ensure security requirements are considered and fulfilled in the hardware selection and design.
  • Coordinate with Software Architect and Developers to ensure the security design is implemented as intended
  • Coordinate with SW test to ensure the implementation of security design is verified
  • Coordinate with SW DevOps, and manufacturing engineering to ensure security needs are met
  • Monitor industry best practices, changes in threat landscape and update the design accordingly
  • Manage security-related deliverables for regulatory bodies.
  • Author security engineering policies, standards and procedures.
  • Providing cybersecurity training to development and operational support teams.
Must Have: Minimum Requirements
  • Bachelor’s degree in engineering or sciences. 
  • 4+ years of related experience with BS Degree in engineering or sciences
  • 2+ years of related experience with MS Degree in engineering or sciences
Nice to Have
  • Experience with 2 or more of the following:
    • Security of embedded technology
    • Android or iOS security
    • Wireless communication systems knowledge and experience
    • Embedded devices design
    • PKI Key management system design
    • Token based authentication systems design
    • Penetration or Red Team testing of IoT devices or Mobile Applications
    • Cloud security Design and Testing
    • Security Incident Management
  • Prior cybersecurity security design or testing experience in critical industries such as Medical, Aerospace, Automotive, Defense
  • Programming skills in one or more of the following: C, C++, Python, Scala, Flutter
  • Soft Skills:
  • strong analytical problem-solving
  • ability to develop and grow productive, trusting and open relationships with a wide variety of constituencies.
  • Proven record of working without extensive direction
  • Leadership and collaboration skills with ability to communicate complexity in a clear manner with internal and external stakeholders
  • Experience in medical device technology
  • CISSP Certification
  • OSCP –Offensive Security Certified Professional

About Medtronic

Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology, therapies and services can do to help alleviate pain, restore health and extend life.  We challenge ourselves and each other to make tomorrow better than yesterday. It is what makes this an exciting and rewarding place to be.

We want to accelerate and advance our ability to create meaningful innovations - but we will only succeed with the right people on our team. Let’s work together to address universal healthcare needs and improve patients’ lives. Help us shape the future.

Physical Job Requirements

The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role. (ADA-United States of America)

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions

Similar Listings

Northridge, California, United States

📁 Engineering

Requisition #: 210009J8

Northridge, California, United States

📁 Engineering

Requisition #: 21000FEF

Plymouth, Minnesota, United States

📁 Engineering

Requisition #: 21000CNA

FORTUNE NAMES MEDTRONIC TO 'CHANGE THE WORLD' LIST

FORTUNE puts Medtronic among the top 20 companies worldwide having a positive social impact through core business strategy.

Read The Story

ENGINEERING

Bring your talents to help us build life-changing technology

LEARN MORE

Three Women Working

INCLUSION AND DIVERSITY

We believe that when people from different cultures, genders, and points of view come together, innovation is the result — and everyone wins. Medtronic walks the walk, creating an inclusive culture where you can thrive.

SEE HOW