Boston Scientific Gruppe
Device Cybersecurity Engineer - Urology R&D
Boston Scientific Gruppe, Saint Paul, Minnesota, United States, 55199
Overview
Device Cybersecurity Engineer - Urology R&D
Onsite Location(s): Arden Hills, MN, US, 55112
Additional Location(s): US-MA-Marlborough
Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance
At Boston Scientific, we’ll give you the opportunity to harness all that’s within you by working in teams of diverse and high-performing employees, tackling some of the most important health industry challenges. Here, you’ll be supported in progressing – whatever your ambitions.
About the role:
Boston Scientific is seeking a Principal Device Cybersecurity Engineer to serve as a strategic thought leader and subject matter expert. In this role, you will lead the design, implementation, and governance of robust cybersecurity frameworks to ensure the safety, reliability, and compliance of medical devices, including capital equipment and active implantable products.
You will be responsible for operationalizing and supporting various cybersecurity initiatives, including evaluating and documenting the security posture of the company’s products and applications, implementing cybersecurity plans and supporting infrastructure, and ensuring compliance with Quality Systems and associated processes.
Success in this role requires strong communication and technical skills to effectively execute and support both the functional and technical elements of the cybersecurity plan. You will work closely with internal staff, external consultants, and multidisciplinary teams to tackle complex cybersecurity challenges within highly regulated environments—and help shape the future of connected healthcare solutions.
This position is part of the Urology Research and Development organization. Working alongside analysts, IT/R&D engineers, and architects, the Cybersecurity Engineer will support both pre- and post-market product security efforts. These efforts include application security, vulnerability assessments, threat modeling, penetration testing, security tool implementation, addressing hospital cybersecurity inquiries, and conducting contract reviews.
Work mode:
At Boston Scientific, we value collaboration and synergy. This role follows a hybrid work model requiring employees to be in our local office at least three days per week.
Responsibilities
Define and lead the cybersecurity strategy for medical devices, ensuring alignment with industry regulations and best practices.
Act as a thought leader by guiding teams on emerging threats, evolving standards, and technology trends in cybersecurity and healthcare.
Develop and oversee risk assessment methodologies, including threat modeling, vulnerability assessments, and penetration testing.
Ensure effective implementation of risk mitigation strategies across the product lifecycle, from concept through post-market surveillance.
Advocate for a “secure by design” approach to minimize risks across interconnected medical devices and healthcare IT systems.
Support and manage tools for pre- and post-market security testing, and integrate these tools into quality system processes.
Contribute to post-market efforts by identifying known and unknown vulnerabilities in both new and existing products, and provide technical input to mitigate identified risks.
Monitor changes in product security controls, maintain the product inventory and tracking database, and communicate updates to relevant stakeholders.
Support cybersecurity agreement negotiations by reviewing technical clauses in collaboration with Legal and R&D subject matter experts.
Provide security risk assessment and threat modeling support throughout the product development lifecycle for Urology business units.
Assist with application security reviews, as well as vulnerability and penetration testing of Boston Scientific’s medical devices and software.
Required qualifications
A bachelor’s degree from an accredited institution.
7+ years of experience in Research & Development and/or Information Technology, with a preference for experience in cybersecurity roles within medical device development or healthcare organizations.
Demonstrated interest in learning and applying cybersecurity principles to the development and support of secure products.
Hands-on experience conducting vulnerability analysis on Windows and Linux operating systems and associated software.
Working knowledge of a broad range of operating systems, including Windows, macOS, Linux, iOS, and Android.
General understanding of established cybersecurity frameworks, such as NIST Special Publications and ISO standards.
Preferred qualifications:
Cybersecurity certifications such as Network+, Security+, CSSLP, HCISPP, CEH, or CISSP.
Requisition ID: 611336
Minimum Salary: $99,100
Maximum Salary: $188,300
The anticipated compensation listed above and the value of core and optional employee benefits offered by Boston Scientific (BSC) – see www.bscbenefitsconnect.com – will vary based on actual location of the position and other pertinent factors considered in determining actual compensation for the role. Compensation will be commensurate with demonstrable level of experience and training, pertinent education including licensure and certifications, among other relevant business or organizational needs. At BSC, it is not typical for an individual to be hired near the bottom or top of the anticipated salary range listed above.
Compensation for non-exempt (hourly), non-sales roles may also include variable compensation from time to time (e.g., any overtime and shift differential) and annual bonus target (subject to plan eligibility and other requirements).
Compensation for exempt, non-sales roles may also include variable compensation, i.e., annual bonus target and long-term incentives (subject to plan eligibility and other requirements).
Equity, compliance and diversity Boston Scientific remains an equal opportunity employer. We are committed to diversity and inclusion and comply with applicable equal employment opportunity laws. We encourage applicants from diverse backgrounds to apply.
Other Nearest Major Market: Minneapolis
Job Segment: R&D Engineer, R&D, Medical Device, Testing, Medical Device Engineer, Engineering, Research, Healthcare, Technology
#J-18808-Ljbffr
Onsite Location(s): Arden Hills, MN, US, 55112
Additional Location(s): US-MA-Marlborough
Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance
At Boston Scientific, we’ll give you the opportunity to harness all that’s within you by working in teams of diverse and high-performing employees, tackling some of the most important health industry challenges. Here, you’ll be supported in progressing – whatever your ambitions.
About the role:
Boston Scientific is seeking a Principal Device Cybersecurity Engineer to serve as a strategic thought leader and subject matter expert. In this role, you will lead the design, implementation, and governance of robust cybersecurity frameworks to ensure the safety, reliability, and compliance of medical devices, including capital equipment and active implantable products.
You will be responsible for operationalizing and supporting various cybersecurity initiatives, including evaluating and documenting the security posture of the company’s products and applications, implementing cybersecurity plans and supporting infrastructure, and ensuring compliance with Quality Systems and associated processes.
Success in this role requires strong communication and technical skills to effectively execute and support both the functional and technical elements of the cybersecurity plan. You will work closely with internal staff, external consultants, and multidisciplinary teams to tackle complex cybersecurity challenges within highly regulated environments—and help shape the future of connected healthcare solutions.
This position is part of the Urology Research and Development organization. Working alongside analysts, IT/R&D engineers, and architects, the Cybersecurity Engineer will support both pre- and post-market product security efforts. These efforts include application security, vulnerability assessments, threat modeling, penetration testing, security tool implementation, addressing hospital cybersecurity inquiries, and conducting contract reviews.
Work mode:
At Boston Scientific, we value collaboration and synergy. This role follows a hybrid work model requiring employees to be in our local office at least three days per week.
Responsibilities
Define and lead the cybersecurity strategy for medical devices, ensuring alignment with industry regulations and best practices.
Act as a thought leader by guiding teams on emerging threats, evolving standards, and technology trends in cybersecurity and healthcare.
Develop and oversee risk assessment methodologies, including threat modeling, vulnerability assessments, and penetration testing.
Ensure effective implementation of risk mitigation strategies across the product lifecycle, from concept through post-market surveillance.
Advocate for a “secure by design” approach to minimize risks across interconnected medical devices and healthcare IT systems.
Support and manage tools for pre- and post-market security testing, and integrate these tools into quality system processes.
Contribute to post-market efforts by identifying known and unknown vulnerabilities in both new and existing products, and provide technical input to mitigate identified risks.
Monitor changes in product security controls, maintain the product inventory and tracking database, and communicate updates to relevant stakeholders.
Support cybersecurity agreement negotiations by reviewing technical clauses in collaboration with Legal and R&D subject matter experts.
Provide security risk assessment and threat modeling support throughout the product development lifecycle for Urology business units.
Assist with application security reviews, as well as vulnerability and penetration testing of Boston Scientific’s medical devices and software.
Required qualifications
A bachelor’s degree from an accredited institution.
7+ years of experience in Research & Development and/or Information Technology, with a preference for experience in cybersecurity roles within medical device development or healthcare organizations.
Demonstrated interest in learning and applying cybersecurity principles to the development and support of secure products.
Hands-on experience conducting vulnerability analysis on Windows and Linux operating systems and associated software.
Working knowledge of a broad range of operating systems, including Windows, macOS, Linux, iOS, and Android.
General understanding of established cybersecurity frameworks, such as NIST Special Publications and ISO standards.
Preferred qualifications:
Cybersecurity certifications such as Network+, Security+, CSSLP, HCISPP, CEH, or CISSP.
Requisition ID: 611336
Minimum Salary: $99,100
Maximum Salary: $188,300
The anticipated compensation listed above and the value of core and optional employee benefits offered by Boston Scientific (BSC) – see www.bscbenefitsconnect.com – will vary based on actual location of the position and other pertinent factors considered in determining actual compensation for the role. Compensation will be commensurate with demonstrable level of experience and training, pertinent education including licensure and certifications, among other relevant business or organizational needs. At BSC, it is not typical for an individual to be hired near the bottom or top of the anticipated salary range listed above.
Compensation for non-exempt (hourly), non-sales roles may also include variable compensation from time to time (e.g., any overtime and shift differential) and annual bonus target (subject to plan eligibility and other requirements).
Compensation for exempt, non-sales roles may also include variable compensation, i.e., annual bonus target and long-term incentives (subject to plan eligibility and other requirements).
Equity, compliance and diversity Boston Scientific remains an equal opportunity employer. We are committed to diversity and inclusion and comply with applicable equal employment opportunity laws. We encourage applicants from diverse backgrounds to apply.
Other Nearest Major Market: Minneapolis
Job Segment: R&D Engineer, R&D, Medical Device, Testing, Medical Device Engineer, Engineering, Research, Healthcare, Technology
#J-18808-Ljbffr