Sr Product Security Engineer

  • Posted 54 days ago | Updated 2 hours ago

Overview

Remote
To define
Full Time

Skills

Product development
IT project management
Web application security
Medical devices
Health care
Life insurance
Product engineering
Hardware development
Security analysis
Analytical skill
Security architecture
Design controls
Security QA
Technical Support
Product management
Software engineering
Sales process
Regulatory Compliance
Information security
Software development
Software security
Project management
Risk management
Embedded systems
Real-time
Operating systems
Computer science
IMPACT
Insurance
FSA
Cyber security
Design
Testing
Marketing
Training
Privacy
Policies
SAP BASIS
Reasoning
FDA
ISO 9000
Communication
IoT
Firmware
RFID
Wireless communication
Bluetooth
SAP LE
CISSP
OSCP
Mechanical engineering
Biomedicine
Electrical engineering

Job Details

Arthrex, Inc. is a global medical device company and a leader in new product development and medical education. We are a privately held company that strives to accomplish our corporate mission of Helping Surgeons Treat Their Patients Better . We are committed to delivering uncompromising quality to the health care professionals who use our products, and ultimately, the millions of patients whose lives we impact.

Arthrex 2023 Benefits

Medical, Dental and Vision Insurance
Company-Provided Life Insurance
Voluntary Life Insurance
Flexible Spending Account (FSA)
Supplemental Insurance Plans (Accident, Cancer, Hospital, Critical Illness)
Matching 401(k) Retirement Plan
Annual Bonus
Wellness Incentive Program
Free, Onsite Medical Clinics
Free Lunch
Tuition Reimbursement Program
Trip of a Lifetime
Paid Parental Leave
Paid Time Off
Volunteer PTO
Employee Assistance Provider (EAP)

Please note, most benefits are for regular, full time employees.

Arthrex is a global medical device company and a leader in new product development and medical education in orthopedics. Arthrex is actively seeking a Sr Product Security Engineer who works directly with the Product Engineering departments within Arthrex and is responsible for product software and hardware design implementations from a cybersecurity perspective, and identifying and resolving security issues, including the appropriate security analysis, defenses, and countermeasures at each phase of the product lifecycle, to result in robust and reliable products. Excellent communications and analytical skills, strong technical project management skills will be essential for this position.Join our talented team at a global medical device company focused onHelping Surgeons Treat Their Patients Better .
This is an onsite position with a hybrid work schedule

Essential Duties and Responsibilities:
* Designs security architecture of components or functional systems and modifies existing designs to develop or improve products.
* Recommends alterations to development and design to improve the security of products and/or procedures.
* Contributes to a broader design perspective and considers how an application interacts with the underlying infrastructure or external resources.
* Develops threat scenarios and designs responses for associated vulnerabilities to mitigate risk.
* Maintains design history file for assigned projects, adhering to Arthrex design control procedures.
* Determines the necessity of security testing and initiates testing of assigned products.
* Provides Regulatory department technical support for assigned projects as needed.
* Supports Marketing and Product Management with technical information to be used for training and marketing of assigned products.
* Supports Software Engineering to design and develop components, processes, and training using Security-by-Design and Privacy-by-Design principles.
* Supports surgeon and distributor customers in the sales process by educating and demonstrating security-focused aspects of assigned products as needed.
* Partner with Legal, Compliance, Privacy, and Information Security departments to ensure products and staff comply with required laws, regulations, and policies.
* Reports progress and status of assigned projects on a timely basis.
* May be required to travel; International travel may be required.

Knowledge
* Complete understanding and application of principles, concepts, practices, and standards. Full knowledge of industry practices.

Reasoning Ability
* Develops solutions to a variety of complex problems. May refer to established precedents and policies.

Discretion/ Latitude
* Work is performed under general direction. Participates in determining objectives of assignment. Plans schedules and arranges own activities in accomplishing objectives. Work is reviewed upon completion for adequacy in meeting objectives.

Skills
* Knowledgeable of System and Software Development Processes and Lifecycles required.
* Knowledgeable of application security best practices required.
* Knowledgeable of FDA and ISO guidelines for the development of medical devices preferred.
* Project management and communication skills preferred.
* Proficiency in the development of threat scenarios and risk mitigation techniques preferred.
* Proficiency in the use of the privacy by design principle preferred.
* Experience in web application security and controls concepts preferred.
* Experience in embedded system development, IoT lifecycle, real-time operating systems, firmware, RFID, CANbus, WiFi, or Bluetooth LE preferred.
* Cybersecurity Industry certifications preferred: CISSP, OSCP, OSWA, OSWE.

Education/ Experience
* 5 years of related experience
* Bachelor s degree required preferably in Engineering (Mechanical, Biomedical, Electrical or Software Engineering), Computer Science, Information Security, or Cybersecurity.


Arthrex 2024 Benefits
* Medical, Dental and Vision Insurance
* Company-Provided Life Insurance
* Voluntary Life Insurance
* Flexible Spending Account (FSA)
* Supplemental Insurance Plans (Accident, Cancer, Hospital, Critical Illness)
* Matching 401(k) Retirement Plan
* Annual Bonus
* Wellness Incentive Program
* Gym Reimbursement Program
* Tuition Reimbursement Program
* Trip of a Lifetime
* Paid Parental Leave
* Paid Time Off
* Volunteer PTO
* Employee Assistance Provider (EAP)



All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

About Arthrex