Medtronic is searching for a Principal Product Security Engineer – Software for its Coronary & Renal Denervation (CRDN) business. The role involves designing, building and securing software for energy‑based therapeutic medical devices used to treat hypertension.
Job Overview
As Principal Product Security Engineer – Software, you will ensure robust security throughout the product lifecycle, integrate security into embedded devices, and lead initiatives to bolster cyber‑resiliency.
Responsibilities
Support and lead integration of security into the product development lifecycle, ensuring security is built from design to deployment.
Conduct threat modelling, security risk evaluations, and vulnerability assessments; provide mitigation recommendations.
Contribute to the design and deployment of secure medical device architectures, including secure boot, secure communications, data protection, secure updates, and access controls.
Maintain and implement security standards, policies, and procedures for medical device systems; participate in vulnerability scanning, penetration testing, and code reviews.
Promote security awareness and deliver training across cross‑functional product teams.
Ensure compliance with industry standards and regulations such as NIST, IEC 60601‑4‑5, IEC 81001‑5‑1.
Evaluate third‑party vendors and suppliers for their security practices.
Lead and support response to security incidents, including mitigation and communication to stakeholders.
Maintain detailed security documentation, including best practices, configurations, design patterns, incident response plans, and architectures.
Keep abreast of emerging cybersecurity trends and refine product security strategies.
Key Skills & Experience (MUST HAVE)
Level 8 bachelor’s degree in Computer Engineering, Software Engineering, Computer Science, Electrical Engineering, Biomedical Engineering, or a related technical field.
Minimum 7 years of technical experience, or an advanced degree with 5 years of technical experience.
Previous experience as a security engineer for software products.
Experience in cybersecurity, threat modelling, incident management, and proactive security strategies.
Hands‑on experience in developing, debugging, and troubleshooting software issues.
Experience working in agile software development teams.
Nice to Have
Minimum 2 years of embedded device experience in a regulated industry.
Security certifications (e.g., GSEC, CISSP, CISA, GCIH, CC).
Bachelor’s degree in related engineering or cybersecurity.
Proficiency in secure coding practices and methodologies.
Ability to adapt to evolving cybersecurity landscape and propose effective solutions.
Physical Job Requirements
Not specified.
Benefits & Compensation
Competitive salary ranging from €78,320.00 to €117,480.00 in Ireland, with eligibility for the Medtronic Incentive Plan (MIP). Flexible benefits package.
#J-18808-Ljbffr