Collabera
Cybersecurity Engineering Support- Medical Device
Collabera, Saint Paul, Minnesota, United States, 55199
Cybersecurity Engineering Support - Medical Device
Job Summary:
The Research and Development Engineer will provide cybersecurity engineering support for the creation and development of new medical device products, both invasive and non‑invasive. This role involves ensuring compliance with applicable corporate and divisional policies, conducting cybersecurity testing and validation, and collaborating across multiple disciplines to deliver secure, high‑quality medical device solutions. Key Responsibilities
Support cybersecurity engineering activities for new product development in the medical device space. Utilize product development software cybersecurity tools to develop threat models, architecture, design, and implementation for embedded systems. Assess cybersecurity risks for new products and identify potential interactions with existing systems. Perform cybersecurity‑related activities including threat modeling, risk management, and secure design reviews. Stay informed on emerging cybersecurity threats and industry trends to manage proactive responses. Collaborate cross‑functionally with systems, software, hardware, regulatory, and manufacturing teams to ensure cybersecurity deliverables meet requirements and deadlines. Apply cybersecurity frameworks to standardize secure development practices. Coordinate and support external security testing activities such as penetration testing. Contribute to cybersecurity maintenance and improvement processes across electrophysiology product lines. Required Qualifications
Bachelor’s degree in Software Engineering, Computer Engineering, Computer Science, or a related field (or an equivalent combination of education and experience). Minimum 7 years of software development experience and 5 years of security experience. Proven experience in cybersecurity architecture, design, and implementation within a regulated medical device environment. Strong understanding of FDA medical device cybersecurity regulations and secure‑by‑design principles. Hands‑on experience with vulnerability management and assessment specific to medical device applications. Experience creating and managing secure design requirements for connected and non‑connected medical devices. Familiarity with cybersecurity frameworks such as NIST, OWASP, and ISO standards. Knowledge of global medical device regulations, including FDA, EU‑MDR, and CFDA. Experience with agile development processes, source code management, and formal software methodologies. Preferred Qualifications
Master’s degree in Software Engineering, Computer Engineering, or Computer Science. Experience in one or more domains including information security risk management, platform security, network security, cloud security, or embedded device security. Hands‑on experience with STRIDE threat modeling and related cybersecurity activities. The Company offers the following benefits for this position, subject to applicable eligibility requirements: medical insurance, dental insurance, vision insurance, 401(k) retirement plan, life insurance, long‑term disability insurance, short‑term disability insurance, paid parking/public transportation, paid time off, paid sick and safe time, hours of paid vacation time, weeks of paid parental leave, and paid holidays annually – as applicable. Pay Range:
$40/hr to $50/hr
#J-18808-Ljbffr
Job Summary:
The Research and Development Engineer will provide cybersecurity engineering support for the creation and development of new medical device products, both invasive and non‑invasive. This role involves ensuring compliance with applicable corporate and divisional policies, conducting cybersecurity testing and validation, and collaborating across multiple disciplines to deliver secure, high‑quality medical device solutions. Key Responsibilities
Support cybersecurity engineering activities for new product development in the medical device space. Utilize product development software cybersecurity tools to develop threat models, architecture, design, and implementation for embedded systems. Assess cybersecurity risks for new products and identify potential interactions with existing systems. Perform cybersecurity‑related activities including threat modeling, risk management, and secure design reviews. Stay informed on emerging cybersecurity threats and industry trends to manage proactive responses. Collaborate cross‑functionally with systems, software, hardware, regulatory, and manufacturing teams to ensure cybersecurity deliverables meet requirements and deadlines. Apply cybersecurity frameworks to standardize secure development practices. Coordinate and support external security testing activities such as penetration testing. Contribute to cybersecurity maintenance and improvement processes across electrophysiology product lines. Required Qualifications
Bachelor’s degree in Software Engineering, Computer Engineering, Computer Science, or a related field (or an equivalent combination of education and experience). Minimum 7 years of software development experience and 5 years of security experience. Proven experience in cybersecurity architecture, design, and implementation within a regulated medical device environment. Strong understanding of FDA medical device cybersecurity regulations and secure‑by‑design principles. Hands‑on experience with vulnerability management and assessment specific to medical device applications. Experience creating and managing secure design requirements for connected and non‑connected medical devices. Familiarity with cybersecurity frameworks such as NIST, OWASP, and ISO standards. Knowledge of global medical device regulations, including FDA, EU‑MDR, and CFDA. Experience with agile development processes, source code management, and formal software methodologies. Preferred Qualifications
Master’s degree in Software Engineering, Computer Engineering, or Computer Science. Experience in one or more domains including information security risk management, platform security, network security, cloud security, or embedded device security. Hands‑on experience with STRIDE threat modeling and related cybersecurity activities. The Company offers the following benefits for this position, subject to applicable eligibility requirements: medical insurance, dental insurance, vision insurance, 401(k) retirement plan, life insurance, long‑term disability insurance, short‑term disability insurance, paid parking/public transportation, paid time off, paid sick and safe time, hours of paid vacation time, weeks of paid parental leave, and paid holidays annually – as applicable. Pay Range:
$40/hr to $50/hr
#J-18808-Ljbffr