Projectus
Overview
Imagine standing at the crossroads of surgery and cybersecurity. A team is pioneering the next generation of surgical guidance and digital health platforms, blending augmented reality and artificial intelligence to transform how clinicians see and operate. With connected devices shaping the future of care, the challenge is clear: protect patients, data, and systems against ever-evolving threats. Thats where you come in. As a
Medical Device Product Security Engineer , youll build the backbone of trust behind life-changing technologies. Youll design secure systems, anticipate vulnerabilities, and ensure that regulatory compliance and patient safety are at the heart of every innovation. Responsibilities Secure Product Development Build security into devices from day one from secure boot to encrypted updates Map out potential risks with threat modeling and anticipate attack vectors Partner with engineering teams (hardware, software, cloud) to set clear security requirements Continuously test and validate products already on the market to keep them protected
Risk & Regulatory Alignment
Make sure products meet FDA, ISO, NIST, and other key cybersecurity guidelines Write and update internal security policies and procedures so they hold up in audits Feed into risk files and hazard analyses to prove safety and resilience Draft the cybersecurity documentation needed for regulatory approvals and submissions
Vulnerability & Incident Management
Track and prioritize known vulnerabilities (like CVEs) across devices and platforms Jump in fast when an incident happens, helping with response and containment Establish best practices and tools to prevent issues before they spread Design practical fixes and long-term improvements to strengthen defenses Be the go-to expert on cybersecurity across the product organization Shape roadmaps so security is built in, not bolted on at the end Coach engineers, QA, and product staff on secure practices and reviews Weigh in on technical decisions, infrastructure changes, and cost planning
Always Improving
Stay sharp on the latest threats, tools, and medical device security trends Lead or support internal security reviews and audits Flex with the demands of a regulated environment where detail matters Find ways to make the team smarter and more secure every day
Qualifications
Must-Haves Degree in Computer Engineering, Cybersecurity, Biomedical Engineering, or related field 37 years of hands-on product security experience (medical devices or healthcare ideal) Strong background in embedded systems, IoT security, and secure coding practices Familiarity with medical security standards (AAMI, ISO, FDA guidance, etc.) Experience running threat models, penetration tests, and vulnerability scans Working knowledge of encryption, identity management, and incident response
Nice-to-Haves
Experience designing security for Class II/III devices Knowledge of cloud security in AWS or Azure for digital health applications Certifications such as CISSP, CEH, GIAC Familiarity with secure development lifecycle tools and methodologies
Soft Skills
Sharp analytical thinker with a problem-solving mindset Communicates complex ideas clearly, both in writing and in person Thrives in a cross-functional, highly collaborative environment
#J-18808-Ljbffr
Imagine standing at the crossroads of surgery and cybersecurity. A team is pioneering the next generation of surgical guidance and digital health platforms, blending augmented reality and artificial intelligence to transform how clinicians see and operate. With connected devices shaping the future of care, the challenge is clear: protect patients, data, and systems against ever-evolving threats. Thats where you come in. As a
Medical Device Product Security Engineer , youll build the backbone of trust behind life-changing technologies. Youll design secure systems, anticipate vulnerabilities, and ensure that regulatory compliance and patient safety are at the heart of every innovation. Responsibilities Secure Product Development Build security into devices from day one from secure boot to encrypted updates Map out potential risks with threat modeling and anticipate attack vectors Partner with engineering teams (hardware, software, cloud) to set clear security requirements Continuously test and validate products already on the market to keep them protected
Risk & Regulatory Alignment
Make sure products meet FDA, ISO, NIST, and other key cybersecurity guidelines Write and update internal security policies and procedures so they hold up in audits Feed into risk files and hazard analyses to prove safety and resilience Draft the cybersecurity documentation needed for regulatory approvals and submissions
Vulnerability & Incident Management
Track and prioritize known vulnerabilities (like CVEs) across devices and platforms Jump in fast when an incident happens, helping with response and containment Establish best practices and tools to prevent issues before they spread Design practical fixes and long-term improvements to strengthen defenses Be the go-to expert on cybersecurity across the product organization Shape roadmaps so security is built in, not bolted on at the end Coach engineers, QA, and product staff on secure practices and reviews Weigh in on technical decisions, infrastructure changes, and cost planning
Always Improving
Stay sharp on the latest threats, tools, and medical device security trends Lead or support internal security reviews and audits Flex with the demands of a regulated environment where detail matters Find ways to make the team smarter and more secure every day
Qualifications
Must-Haves Degree in Computer Engineering, Cybersecurity, Biomedical Engineering, or related field 37 years of hands-on product security experience (medical devices or healthcare ideal) Strong background in embedded systems, IoT security, and secure coding practices Familiarity with medical security standards (AAMI, ISO, FDA guidance, etc.) Experience running threat models, penetration tests, and vulnerability scans Working knowledge of encryption, identity management, and incident response
Nice-to-Haves
Experience designing security for Class II/III devices Knowledge of cloud security in AWS or Azure for digital health applications Certifications such as CISSP, CEH, GIAC Familiarity with secure development lifecycle tools and methodologies
Soft Skills
Sharp analytical thinker with a problem-solving mindset Communicates complex ideas clearly, both in writing and in person Thrives in a cross-functional, highly collaborative environment
#J-18808-Ljbffr