Posted in

Product Security Engineer II

Product Security Engineer II

CompanyMedtronic
LocationNorthridge, Los Angeles, CA, USA
Salary$96800 – $145200
TypeFull-Time
DegreesBachelor’s, Master’s
Experience LevelMid Level, Senior

Requirements

  • Bachelor’s degree in Software Engineering, Computer Science, or related technical field and 2+ years of cybersecurity experience
  • Or, Advanced Degree in Software Engineering, Computer Science, or related technical field

Responsibilities

  • Facilitate technical teams in threat modeling, security risk evaluations, and vulnerability assessments to identify and mitigate potential security risks throughout the product lifecycle.
  • Collaborate with the product R&D teams helping them to understand the security mindset, guiding them to implement specific security controls for product/system wide security needs.
  • Support integration of security into the product development lifecycle, ensuring that security considerations are incorporated from design to deployment.
  • Contribute to security testing activities, including vulnerability scanning, penetration testing, and code reviews.
  • Assist in maintaining and implementing security standards, policies, and procedures for medical device systems and product development.
  • Perform emerging threat and vulnerability research.
  • Evaluate third-party vendors and suppliers for their security practices and ensure they meet our security requirements.
  • Support the effective response to security incidents, ensuring swift resolution, proper mitigation, and clear communication to stakeholders and management.

Preferred Qualifications

  • Experience with at least one of the following: Embedded Security Experience, Mobile Application Security Experience, Cloud Security Experience, Wireless communication systems knowledge and experience, PKI Key management system design, Penetration or Red Team testing of IoT devices or Mobile Applications, Security Incident Management
  • Prior cybersecurity security design or testing experience in critical industries such as Medical, Aerospace, Automotive, Defense
  • Programming skills in one or more of the following: C, C++, Python, Flutter
  • Experience with Security Frameworks and compliance standards (e.g., ISO 27001, ISO 81001-5-1, NIST, FDA Premarket Guidance)
  • Threat Modeling Experience (STRIDE)