This job listing has expired and the position may no longer be open for hire.

Principal Mobile Security Design Engineer at Medtronic

Posted in General Business 30+ days ago.

This job brought to you by eQuest

Type: Full-Time
Location: northridge, California

Job Description:

Careers that Change Lives
Security needs to be "baked in" to a system architecture, you know how to do it. What if you could use your Cyber and analytical skills to create, deploy and monitor security for medical devices used daily by patients? We're looking for an engineer who wants to be on the frontlines of this emerging specialty.

Be a technical leader within a team responsible for solutions for Medtronic's medical devices. Identify and implement ways to harden medical devices and reduce their attack surface.

Interact with external and internal cybersecurity researchers to identify and remediate vulnerabilities within products and systems.

Work directly with R&D teams to ensure all relevant security risks are identified, evaluated, and appropriate and well-balanced solutions are implemented.

Develop security solution that comply with standards/guidance documents established by regulatory bodies.

Lead the work to communicate cybersecurity technology to customers, regulatory bodies, and other stakeholders.

A Day in the Life
 Direct product and device cybersecurity activities ranging from incident response to vulnerability assessments to mitigation implementation.

 Maintain a high level of technical knowledge on security.

 Champion consistent implementation of the Security Development Lifecycle across projects

 Guide product risk assessments with product R&D teams to develop and recommend specific security controls for product/system wide security needs.

 Participate in the creation and testing of product security-related solutions and processes.

 Evaluate and verify security risks across the entire development lifecycle, including market-released product.

 Manage security-related deliverables for regulatory bodies.

 Contribute to Medtronic's understanding of current industry best practices and how they can be applied to the Diabetes Products.

Responsibilities may include the following and other duties may be assigned:

  • Design security solutions for mobile applications based on the system security architecture

  • Monitor iOS/Android security features and OS changes to ensure security requirements are considered and fulfilled in the solutions and design.

  • Coordinate with Software Architect and Developers to ensure the security design is implemented as intended

  • Coordinate with SW test to ensure the implementation of security design is verified

  • Coordinate with SW build and distribution to ensure security needs are met.

  • Monitor industry best practices, changes in threat landscape and update the design accordingly

  • Generate security engineering policies, standards and procedures.

    Must Have: Minimum Requirements
     Bachelor's degree in engineering or sciences.

     7+ years of related experience with BS Degree in engineering or sciences

     5+ years of related experience with MS Degree in engineering or sciences

    Nice to Have

     Experience with 2 or more of the following:

    o Mobile Application security testing

    o Android and iOS security

    o Clinical IT and Clinical IT Security design

    o Wireless communication systems knowledge and experience

    o PKI Key management system design

    o Token based authentication systems design

    o Cloud security design and testing

     Prior security design experience in critical industries such as Medical, Aerospace, Automotive, Defense

     Demonstrated very strong analytical problem solving skills

     Demonstrated ability to develop and grow productive, trusting and open relationships with a wide variety of constituencies.

     Programming skills in mobile application development.

     CISSP Certification

     Security incident management experience

     PKI Key management

     Risk assessments and cybersecurity regulatory requirements

     Token based authentication systems

     Medical device technology

     Understanding of information security practices, risk management processes, cybersecurity principles, and incident response methodologies

     Proven record of working without extensive direction

     Leadership and collaboration skills with ability to communicate complexity in a clear manner with internal and external stakeholders

    About Medtronic

    Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology, therapies and services can do to help alleviate pain, restore health and extend life. We challenge ourselves and each other to make tomorrow better than yesterday. It is what makes this an exciting and rewarding place to be.

    We want to accelerate and advance our ability to create meaningful innovations - but we will only succeed with the right people on our team. Let's work together to address universal healthcare needs and improve patients' lives. Help us shape the future.

    Physical Job Requirements

    The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role. (ADA-United States of America)

    Additional Information

    • Posting Date: Jan 15, 2021
    • Travel: No

  • Sponsors