Principal Product Security Engineer – Embedded (REMOTE) at Stryker #vacancy #remote

Why engineering at Stryker? At Stryker we are dedicated to improving lives, with a passion for researching and developing new medical device products. As an engineer at Stryker, you will be proud of the work that you will be doing, using cutting-edge technologies to make healthcare better. Here, you will work in a supportive culture with other incredibly talented and intelligent people, creating industry-leading medical technology products. You will also have growth opportunities as we have a culture that supports your personal and professional development. Need another reason to apply? Check out these 8 reasons to join Stryker’s engineering team: We are proud to be named one of the World’s Best Workplaces and a Best Workplace for Diversity by Fortune Magazine! Learn more about our award-winning organization by visiting stryker.com Who We Want: The Principal Product Security Engineer will be a valued professional within the Stryker Product Security organization. They will work with product development team members during the systems development processes to guide product teams with security controls through concept, requirements, design and build phases of new/evolving product. This Engineer will focus mainly on embedded devices, but can support cloud, mobile devices (iOS, Android, and others) in the IoT ecosystem, to shape how the security of Stryker products is defined before release to market. This role will drive the consistent generation of threat models, security requirements, aligned design, build and configuration of products through definition and execution of validation, verification, and post-market processes, as needed throughout the product lifecycle. What You Will Do: Technical Responsibilities: Collaborate with product teams to assess security risks and drive design decisions for new and evolving products and related systems. Guide product development teams in completing threat models as input into security risk analysis processes. Assemble Security requirements applicable to the new or evolving product under consideration. Support the Security Assurance team working with product teams to guide the generation of software bills of material for a variety of medical device technologies. Support product security incident response (PSIRT) teams, when needed, so they can effectively address (contain or remediate) and then document security incidents. Draft internal and external communications summarizing details concerning security concepts used in requirements, design, and build phases related to medical products and related systems. Provide product security guidance and leadership to internal taskforce teams. Develop and deliver presentations and communications to clearly convey complex technical topics up to next level leaders. Recommend efficiency and process improvements. Knowledge and Capabilities: Thorough understanding of the current revisions of FDA, NIST, ISO, IEC and other related security frameworks. Proven experience building successful working relationships with internal and external personnel in various departments. Expertise in applying security control frameworks, threat modeling, and scoring the severity of security threats and vulnerabilities. Experience analyzing and selecting embedded hardware that enabled security controls to be established, along with designing secure products, as part of a broad eco-system (embedded devices + clouds + mobile devices) in the IoT ecosystems that healthcare providers need and expect to support safety. What You Will Need: Basic Qualifications: Bachelor’s Degree in product security, computer science, mathematics, statistics, or related field 8+ years of applicable (product) security work experience Preferred Qualifications: Master’s degree in security related discipline Understands quality management systems, preferably in the healthcare, medical device, or industries that leverage cyber-physical systems. Experience implementing secure technologies in embedded devices, clouds and mobile devices using secure controls, including but not limited to transport and communication protocols. One or more active, industry recognized, and relevant cybersecurity certifications. $126k – $279k salary plus bonus eligible + benefits. Actual minimum and maximum may vary based on location. Individual pay is based on skills, experience, and other relevant factors. About Stryker Our benefits: 12 paid holidays annually Health benefits include: Medical and prescription drug insurance, dental insurance, vision insurance, critical illness insurance, accident insurance, hospital indemnity insurance, personalized healthcare support, wellbeing program and tobacco cessation program. Financial benefits include Health Savings Account (HSA), Flexible Spending Accounts (FSAs), 401(k) plan, Employee Stock Purchase Plan (ESPP), basic life and AD&D insurance, and short-term disability insurance. For a more detailed overview of our benefits or time off, please follow this link to learn more: US Stryker employee benefits ( About Stryker Stryker is a global leader in medical technologies and, together with its customers, is driven to make healthcare better. The company offers innovative products and services in MedSurg, Neurotechnology, Orthopaedics and Spine that help improve patient and healthcare outcomes. Alongside its customers around the world, Stryker impacts more than 130 million patients annually. More information is available at stryker.com. ( Know someone at Stryker? Be sure to have them submit you as a referral prior to applying for this position. Learn more about our employee referral program on our referral page ( Stryker is driven to work together with our customers to make healthcare better. Employees and new hires in sales and field roles that require access to customer accounts as a function of the job may be required, depending on customer requirements, to obtain various vaccinations as an essential function of their role. Stryker Corporation is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status. Stryker is an EO employer – M/F/Veteran/Disability.

ISO standards iOS validation verification Android cloud-computing Security IoT communication-protocol Healthcare industry mobile-devices Embedded

Leave a Reply