[Remote] Sr II - Embedded Product Security Engineer

Note: The job is a remote job and is open to candidates in USA. Arthrex is a global medical device manufacturer, and their mission is Helping Surgeons Treat Their Patients Better™. The Sr II Embedded Product Security Engineer will assist product design and development teams in securing connected and IoT medical devices, focusing on security architecture and vulnerability testing.

Responsibilities

• Designs security architecture of components or functional systems and modifies existing designs to develop or improve products
• Recommends alterations to development and design to improve the security of products and/or procedures
• Contributes to a broader design perspective and considers how an application interacts with the underlying infrastructure or external resources
• Develops threat scenarios and designs responses for associated vulnerabilities to mitigate risk
• Maintains design history file for assigned projects, adhering to Arthrex design control procedures
• Determines the necessity of security testing and initiates testing of assigned products
• Provides Regulatory department technical support for assigned projects as needed
• Supports Marketing and Product Management with technical information to be used for training and marketing of assigned products
• Supports Software Engineering to design and develop components, processes, and training using Security-by-Design and Privacy-by-Design principles
• Supports surgeon and distributor customers in the sales process by educating and demonstrating security-focused aspects of assigned products as needed
• Partner with Legal, Compliance, Privacy, and Information Security departments to ensure products and staff comply with required laws, regulations, and policies
• Reports progress and status of assigned projects on a timely basis
• May be required to travel; International travel may be required

Skills

• Some experience securing and pen-testing embedded or IoT devices
• Background in electrical engineering or software system design
• Complete understanding and application of principles, concepts, practices, and standards
• Knowledgeable of System and Software Development Processes and Lifecycles
• Knowledgeable of application security best practices
• Knowledgeable of FDA and ISO guidelines for the development of medical devices
• Experience leading strategic discussion that addresses both business and technical risks
• Proficiency in the development of threat scenarios and risk mitigation techniques
• Proficiency in the use of the privacy by design principle
• 8 years of related experience
• Bachelor's degree required preferably in Engineering (Mechanical, Biomedical, Electrical or Software Engineering), Computer Science, Information Security, or Cybersecurity
• Strong Project management and communication skills
• Experience in web application security and controls concepts
• Experience in embedded system development, IoT lifecycle, real-time operating systems, firmware, RFID, CANbus, WiFi, or Bluetooth LE

Benefits

• Medical, Dental and Vision Insurance
• Company-Provided Life Insurance
• Voluntary Life Insurance
• Flexible Spending Account (FSA)
• Supplemental Insurance Plans (Accident, Cancer, Hospital, Critical Illness)
• Matching 401(k) Retirement Plan
• Annual Bonus
• Wellness Incentive Program
• Gym Reimbursement Program
• Tuition Reimbursement Program
• Trip of a Lifetime
• Paid Parental Leave
• Paid Time Off
• Volunteer PTO
• Employee Assistance Provider (EAP)

Company Overview

Company H1B Sponsorship