Principal Product Security Engineer Role Overview This role leads and enhances product security across a portfolio of technology solutions, ensuring both next-generation and existing products remain secure in a constantly evolving threat landscape.
You will drive security strategy, embed secure-by-design principles, and lead a high-performing team to deliver resilient, compliant, and customer-focused products.
Key Responsibilities Lead and develop a Product Security team supporting multiple products.
Strengthen product resilience and reduce risk across the portfolio.
Embed secure-by-design principles, including threat modelling and proactive vulnerability management.
Align product security activities with enterprise cybersecurity strategy, regulatory requirements, and customer expectations.
Collaborate with R&D, Quality, Regulatory, IT, and engineering teams to integrate security throughout the product lifecycle.
Provide guidance on encryption, authentication, audit logging, system hardening, patch management, disaster recovery, and vulnerability monitoring in line with recognised medical device security standards.
Conduct security risk assessments and hazard analyses, and guide remediation activities.
Facilitate technical design reviews and code assessments.
Support incident response, vulnerability management planning, and security documentation processes (using systems such as SAP, Docu Sign, Share Point or similar).
Ensure compliance with internal development policies and quality management procedures.
Qualifications & Experience Minimum 5 years experience in IT security architecture, secure software development, and system design.
Experience leading and managing a team.
Strong knowledge of encryption, PKI, embedded device security, networking security, and common threat vectors.
Experience with static and dynamic code analysis tools.
Experience working within a regulated environment under a quality management system.
Strong communication and stakeholder management skills.
Proficiency with Microsoft Office tools.
Skills: Product Security Architecture Secure Software Development Threat Modelling Vulnerability Management PKI Encryption