Security Engineer designing and implementing security measures to protect Snap Inc.'s infrastructure. Collaborating across teams while focusing on threat detection and response strategies.
About the role
- Staff Product Security Engineer focused on implementing cybersecurity in medical device design and development at Johnson & Johnson. Contributing to new product development teams and ensuring patient safety.
Responsibilities
- Identify threats and vulnerabilities to patient safety and product integrity, assess current security controls and determine potential impact of a threat and the risk level associated with threat/vulnerability pairs.
- Drive architecture, requirements, and design to ensure that decisions incorporate security considerations.
- Advise embedded system security software to ensure system hardening and secure coding practices.
- Support all stakeholders on patch management, vulnerability handling, and SBOM scanning
- Document designs and specifications per design control processes and conform to Industry Standards for Medical Device Software (IEC 62304)
Requirements
- Bachelor’s degree in Computer Science, Computer Engineering, Cybersecurity or related degree
- 6+ years’ experience (or 4+ with M.S.) establishing security architecture or implementing security solutions in consumer products or medical devices
- 3+ experience in a software engineering or software architectural role in a New Product Development (NPD) environment
- Proven experience with threat modeling and risk assessments for connected products or medical devices
- Ability to work autonomously and proactively seek out security opportunities within the different surgical robotics teams
- Ability to think big picture and have attention to detail – aligning strategic objectives with tactical implementation.
- Proven experience with electrical and embedded software design
- Experience developing software for embedded Real-Time Operating Systems (RTOS)
- Experience developing embedded software systems using Modern C++ (preferably standards 17+)
- A results and performance driven demeanor with strong sense of accountability
- Understanding of penetration testing, vulnerability scanning, and/or other general security testing principles
- Experience with FDA, data governance, and privacy standards (HIPAA, ISO 27001, UL 2900)
- Work experience with Systems Engineering activities: requirements management and development, risk management, and verification
- Strong collaboration, proven technical leadership capabilities, and conflict resolution skills
- A security certification from an accredited body is preferred and may be considered in lieu of a portion of required years of experience
- Ability to travel up to 10% domestic US and Internationally
Benefits
- medical
- dental
- vision
- life insurance
- short- and long-term disability
- business accident insurance
- group legal insurance
- consolidated retirement plan (pension)
- savings plan (401(k))
- long-term incentive program
- Vacation – up to 120 hours per calendar year
- Sick time - up to 40 hours per calendar year
- Holiday pay, including Floating Holidays – up to 13 days per calendar year
- Work, Personal and Family Time - up to 40 hours per calendar year
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Security & Compliance Head at Lonza leading security strategy and managing global risk. Collaboration with senior leadership to enhance information security across Capsules & Health Ingredients business.
Senior Security Manager leading security for Sanofi meetings and events across North America. Ensuring compliance with global meeting policies and managing event security operations in high - stake environments.
Security Officer maintaining safety protocols at Aloft New Orleans. Responsible for patrolling, monitoring security systems, and assisting guests with safety - related concerns.
Security Detection Specialist responsible for detecting cybersecurity incidents using advanced security technologies. Analyzing data feeds and leveraging security tools for incident detection and reporting.
Senior Incident Response Engineer at Walmart focusing on security threat campaigns to enhance detection and response capabilities. Collaborating with SOC and engineering teams to improve security posture.
Head of Infrastructure & Security at Kinatico, a RegTech leader, focused on cloud infrastructure and security governance. Leading a technically deep team of cloud engineers and security specialists in a hybrid environment.
Security Engineer at KAYAK responsible for implementing security improvements and managing security tools in Berlin office infrastructure. Collaborating with teams to monitor incidents and enhance security protocols.
Security Supervisor responsible for loss prevention and safety at WarHorse Gaming casino in Omaha. Ensuring compliance with regulations and managing security team operations.
Security Shift Manager overseeing security operations at WarHorse Gaming Omaha. Responsible for team safety, compliance with regulations, and staffing in the security department.