Senior Principal Product Security Engineer

Role Overview

• Ensure the security of Medtronic Surgical Operating Unit medical device solutions
• Drive the integration of advanced cybersecurity measures, identify and mitigate potential vulnerabilities
• Support initiatives that improve cyber-resiliency throughout the product lifecycle
• Serve as a technical subject matter expert and mentor, collaborating across teams
• Contribute to long-term improvements in our security posture
• Engage in continuous professional development to stay updated with the latest cybersecurity trends
• Lead efforts to embed security into the product development lifecycle
• Perform threat modeling, security risk evaluations, and vulnerability assessments
• Aid in devising and deploying secure medical device solution architectures
• Maintain and enforce security standards, policies, and procedures
• Drive and promote security awareness and training across cross-functional product development teams
• Ensure compliance with industry standards and regulations
• Evaluate third-party vendors and suppliers for their security practices
• Lead and support the effective response to security incidents
• Maintain detailed documentation of security best practices

Requirements

• Bachelor’s degree or higher (completed and verified prior to start)
• Minimum 10 years of relevant experience or advanced degree with a minimum of 8 years of relevant experience
• Minimum 5 years of embedded device product security experience in a regulated industry
• Master’s degree in related engineering or cybersecurity from an accredited institution (Nice to Have)
• Ability to adapt to the fast-evolving cybersecurity landscape and implement proactive strategies
• Demonstrated aptitude in identifying challenges and providing innovative solutions
• Experience in mentoring and leading junior security engineers
• Demonstrated experience in staying updated with evolving regulations in the medical device sector
• Industry-recognized certifications such as [CISSP, CSSLP, CISM] are highly desirable
• Proficiency in secure coding methodologies and standards

Tech Stack

• Cyber Security

Benefits

• Health, Dental and vision insurance
• Health Savings Account
• Healthcare Flexible Spending Account
• Life insurance
• Long-term disability leave
• Dependent daycare spending account
• Tuition assistance/reimbursement
• Simple Steps (global well-being program)
• Incentive plans
• 401(k) plan plus employer contribution and match
• Short-term disability
• Paid time off
• Paid holidays
• Employee Stock Purchase Plan
• Employee Assistance Program
• Non-qualified Retirement Plan Supplement (subject to IRS earning minimums)
• Capital Accumulation Plan (available to Vice Presidents and above, or subject to IRS earning minimums)