Sr Product Security Engineer Job Vacancy in Medtronic Hyderabad, Telangana – Updated today
Are you looking for a New Job or Looking for better opportunities?
We got a New Job Opening for
Full Details :
Company Name : Medtronic
Location : Hyderabad, Telangana
Position :
Job Description : Careers that Change Lives
We value what makes you unique. Be a part of a company that thinks differently to solve problems, make progress, and deliver meaningful innovations.
The Cardiac and Vascular Group brings all of our cardiac and vascular businesses together into one cross-functional, collaborative operating unit to employ the full breadth of our talent, technologies, products, services, and solutions to address the needs of customers and patients across the globe. Cardiac Rhythm Management offers devices and therapies to treat abnormal heart rhythms, as well as cardiac monitoring solutions.
Be on the frontlines of the emerging area of medical device cybersecurity as an integral member and technical leader within a team responsible for creating, deploying, and monitoring cybersecurity and information security solutions for Medtronic’s medical devices and supporting IT infrastructure. Interact with external and internal cybersecurity researchers to identify and remediate vulnerabilities within Medtronic products and systems. Work directly with R&D teams to ensure all relevant security risks are identified and evaluated, and appropriate and well-balanced solutions are implemented. Develop project security management deliverables for regulatory bodies to comply with standards / guidance documents, and successfully communicate cybersecurity technology to customers, regulatory bodies, and other stakeholders.
A Day in the Life
Lead and perform product and device-oriented cybersecurity-related activities ranging from incident response to vulnerability assessments and mitigation implementation.
Develop and perform product-level intrusion detection activities.
Lead product risk assessments in conjunction with product R&D teams and develop and recommend specific security controls for product/system wide security needs.
Participate in the creation and testing of product security-related requirements and processes.
Manage security-related deliverables for regulatory bodies, ensuring compliance with key standards / guidance documents.
Evaluate and test security risks on programs across the entire development lifecycle, including market-released product.
Support emerging cybersecurity certification initiatives.
Maintain and update security documentation.Create and maintain threat models using STRIDE
Must Have: Minimum Requirements
An undergraduate (bachelors) or graduate degree in computer science, computer engineering, electrical engineering, or similar discipline.
CISSP or similar certification, or sufficient demonstrated experience
Experience in embedded devices vulnerability assessment, especially medical devices and Threat Modelling and risk scoring
Formal education in cybersecurity and information assurance.
Minimum 10 year experience & 4 years of technical, cybersecurity-related experience,
Experience in analyzing security posture and vulnerability assessment
experience in penetration testing , fuzz testing of Web, enterprise cloud and Desktop solutions, (Black box, Gray box and Whitebox testing)
Experience in static code analysis for security vulnerability
Software Product Development experience, Programming skills in one or more of the following: C, C++, Python, Java, .NET, Go, Ruby and/or Scala
Understanding of national and international laws, regulations, and policies related to regulated medical device cybersecurity
Demonstrated understanding of information security practices, risk management processes, cybersecurity principles, and incident response methodologies
Nice to Have:
Experience as an analyst, engineer, developer, or architect with core cybersecurity responsibility and knowledge in two or more of the following areas:
o Experience in leading application architecture reviews and threat assessments
o Cloud systems architecture and security
o Enterprise and local network infrastructure security
o Experience in code reviews and/or penetration testing
o Large-scale application architecture and security
o Mobile device application architecture and security
o Risk assessments and cybersecurity regulatory requirements
o Experience in static and dynamic code analysis tools and methodologies
Medical devices and systems security experience
Security incident management experience
Log event management and searching experience (Splunk, Sentinel, or similar)
In-depth OS systems-level experience within one or more of the following: Linux, Windows, Android, iOS
Demonstrated understanding of networking (ports/protocols), firewalls, load balancers and IPS
Expertise in Agile and can work with at least one of the common frameworks
Experience in Healthcare industry or other heavily regulated industry.
Understanding of national and international laws, regulations, and policies related to regulated medical device cybersecurity
Experience with container technologies such as Docker, Kubernetes, Mesos, or Open Container Initiative (OCI)
Demonstrated ability to develop and grow productive, trusting, and open relationships with a wide variety of constituencies.
Demonstrated leadership and team work skills
Demonstrated ability to communicate complexity in a clear manner
Demonstrated experience interfacing with customers and other external stakeholders regarding cybersecurity system design and behavior
Demonstrated strong analytical, problem solving skills
About Medtronic
Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology, therapies and services can do to help alleviate pain, restore health and extend life. We challenge ourselves and each other to make tomorrow better than yesterday. It is what makes this an exciting and rewarding place to be.
We want to accelerate and advance our ability to create meaningful innovations – but we will only succeed with the right people on our team. Let’s work together to address universal healthcare needs and improve patients’ lives. Help us shape the future.
Travel
No
This post is listed Under Technology
Disclaimer : Hugeshout works to publish latest job info only and is no where responsible for any errors. Users must Research on their own before joining any company