Sr. Product Security Engineer (EmbeddedIoT)
Share
Job Location:
Minneapolis, MN - USA
Monthly Salary:
$ 98400 - 147600
Posted on:
3 days ago
Vacancies:
1 Vacancy
Job Summary
At Medtronic you can begin a life-long career of exploration and innovation while helping champion healthcare access and equity for all. Youll lead with purpose breaking down barriers to innovation in a more connected compassionate world.
A Day in the Life
Across our global Neuroscience organization we advance care for some of medicines most complex neurological and spinal conditions. By combining innovative technology data-driven insights and deep clinical expertise we partner with physicians and health systems to improve how patients are treated and supported throughout their care journey.
Our Neuromodulation operating unit delivers advanced therapies for chronic pain movement disorders and nervous system conditions offering SCS DBS and targeted drug delivery. Through proven technology clinical evidence and innovation we provide personalized solutions that restore function and enhance quality of life.
Check us out on LinkedIn: Medtronic Brain Modulation and Pain Interventions
Pelvic Health
Our Pelvic Health Operating Unit advances care for patients living with bladder and bowel control conditions through targeted minimally invasive neuromodulation therapies including sacral and tibial solutions. Designed to modulate nerve pathways and restore communication between the brain and pelvic floor these programmable therapies deliver personalized treatment supported by strong clinical evidence and long-term outcomeshelping improve confidence independence and quality of life.
Check us out on LinkedIn: Medtronic Pelvic Health
Onsite
Wereworking onsite 4 days a week at our Minnesota Rice Creek East facility to driveperformance foster an environment of belonging and collaborate to inspire as we engineer the extraordinary.
At Medtronicweredriven by our Mission to alleviate pain restore health and extend life for millions of people around the world through innovative biomedical devices and connected health solutions. As our products become increasingly connected securing themedical device ecosystem at the product and system levelis critical to ensuring patient safety and product integrity.TheSenior Product Security Engineerwill play a key role in securing connected and embedded medical devices across the full product lifecycle. This role is focused ondevice/product security engineering(not enterprise IT security) and partners closely with R&D software systems and quality teams to design and implement robust scalable security controls.
The ideal candidate bringshands-on experience securing embedded or IoT products in regulated environments with strong depth in threat modeling secure architecture cryptography and device-level risk management.
Key Responsibilities:
Product Security Engineering Embed security requirements into the medical device development lifecycle partnering with R&D and systems teams from architecture through release.
Threat Modeling & Risk Assessment Perform system-level threat modeling (e.g. STRIDE or similar) attack surface analysis and vulnerability assessments for connected and embedded medical devices.
Secure Architecture Support and review implementation of device security capabilities such as:
Securebootandrootof trust
Secure firmware/software update mechanisms
Device identity and authentication
Secure communications and protocol hardening
Data protection at rest and in transit
Key management and Hardware Security Module (HSM) concepts
Cryptography & Post-Quantum Readiness Apply modern cryptographic principles and support forward-looking strategies including quantum-resistant approaches where applicable.
Secure SDLC Integration Partner with agile development teams to embed security into design reviews code reviews CI/CD pipelines and verification activities.
Verification & Validation Define and support security V&V activities including penetration testing static/dynamic analysis fuzz testing and vulnerability management.
Standards & Compliance Ensure alignment with medical device cybersecurity expectations including:
FDA premarket cybersecurity guidance
IEC
ISO 14971
NIST frameworks
Relevant Medtronic quality processes
Incident & Vulnerability Management Support coordinated vulnerability disclosure post-market monitoring and security issue response for released products.
Cross-Functional Partnership Work closely with R&D systems software quality and regulatory teams to drive secure product development.
Industry Awareness Maintain awareness of evolving threats healthcare cybersecurity trends and regulatory expectations for connected medical devices.
MinimumRequirements
Bachelors degree in Computer Science Computer Engineering Electrical Engineering or related technical fieldand4 years of experience in:
Embedded/device security
IoT security
Product security engineering
OR advanced degree with 2 years of relevant experience
To Be Successful in This Role:
Device/Product Security Depth Demonstrated hands-on experience securing embedded or connected products (medical device experience strongly preferred).
Threat Modeling Expertise Practical experience performing system or device-level threat modeling and risk assessments.
Embedded/IoT Security Knowledge Strong understanding of:
Embedded systems
Firmware/software interactions
Device communications
Hardware-software security boundaries
Cryptography Fundamentals Working knowledge of:
Modern cryptographic primitives
Key management
PKI concepts
Secure protocol implementation
Regulatory Awareness Familiarity with medical device cybersecurity expectations and regulated product environments.
Secure Development Practices Experience working with agile teams and integrating security into SDLC/DevSecOpsworkflows.
Collaboration Skills Strong ability to influence cross-functional engineering teams.
Technical Skills
Embedded or IoT security
Threat modeling methodologies (STRIDE or similar)
Secure boot / root of trust concepts
Secure firmware update mechanisms
Network and device protocol security
Cryptography and key management
Vulnerability assessment and penetration testing
Familiarity with NIST MITRE OWASP (device context)
Preferred:
Medical device cybersecurity experience
Experience with IEC
Experience with FDA cybersecurity submissions
Background in connected healthcare products
Security certifications (Security CISSP etc.)
For Baccalaureate degrees earned outside of the United States a degree that satisfies the requirements of 8 C.F.R. 214.2(h)(4)(iii)(A) is required.
Physical Job Requirements
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position but they are not an exhaustive list of all the required responsibilities and skills of this position.
The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job the employee is regularly required to be independently mobile. The employee is also required to interact with a computer and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.
U.S. Work Authorization & Sponsorship
At Medtronic we are committed to fostering an environment where employees can thrive and make a meaningful alignment with our enterprise-wide workforce planning approach U.S. work authorization sponsorship (H-1B TN J etc.) is offered exclusively for Principal-level roles and above where specialized expertise aligns with long-term business needs. Roles below the Principal level require candidates to possess unrestricted U.S. work authorization at the time of hire and for the duration of employment.
Join us in our mission to alleviate pain restore health and extend lifewhere your unique background and perspective are valued.
Benefits & Compensation
Medtronic offers a competitive Salary and flexible Benefits Package
A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create. We offer a wide range of benefits resources and competitive compensation plans designed to support you at every career and life stage.
The following benefits and additional compensation are available to those regular employees who work 20 hours per week: Health Dental and vision insuranceHealth Savings AccountHealthcare Flexible Spending AccountLife insurance Long-term disability leaveDependent daycare spending accountTuition assistance/reimbursement andSimple Steps (global well-being program).
The following benefits and additional compensation are available to all regular employees:Incentive plans 401(k) plan plus employer contribution and matchShort-term disabilityPaid time offPaid holidaysEmployee Stock Purchase PlanEmployee Assistance ProgramNon-qualified Retirement Plan Supplement (subject to IRS earning minimums) andCapital Accumulation Plan (available to Vice Presidents and above or subject to IRS earning minimums).
Regular employees are those who are not temporary such as interns. Temporary employees are eligible for paid sick time as required under applicable state law and the Employee Stock Purchase Plan. Please note some of the above benefits may not apply to workers in Puerto Rico.
Further details are available at the link below:
Medtronic benefits and compensation plans
About Medtronic
We lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.
Our Mission to alleviate pain restore health and extend life unites a global team of 95000 passionate people.
We are engineers at heart putting ambitious ideas to work to generate real solutions for real people. From the R&D lab to the factory floor to the conference room every one of us experiments creates builds improves and solves. We have the talent diverse perspectives and guts to engineer the extraordinary.
Learn more about our business mission and our commitment to diversity here.
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age color national origin citizenship status physical or mental disability race religion creed gender sex sexual orientation gender identity and/or expression genetic information marital status status with regard to public assistance veteran status or any other characteristic protected by federal state or local addition Medtronic will provide reasonable accommodations for qualified individuals with disabilities.
If you are applying to perform work for Medtronic Inc. (Medtronic) in any position which will involve performing at least two (2) hours of work on average each week within the unincorporated areas of Los Angeles County you can findhere a list of all material job duties of the specific job position which Medtronic reasonably believes that criminal history may have a direct adverse and negative relationship potentially resulting in the withdrawal of a conditional offer of employment. Medtronic will consider for employment qualified job applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
Required Experience:
Senior IC
About Company
About Medtronic Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology can do to help alleviate pain, restore health and extend life. We challenge ourselves and each other to make tomorrow better than yesterday. It is what makes this an excit ... View more
