Senior Staff Product Security Engineer, Embedded (REMOTE)
Hybrid
Portage, MI, United States(flexible)
Portage, MI, United States(flexible)
Posted 17 days ago
Job Details
Why engineering at Stryker? At Stryker we are dedicated to improving lives, with a passion for researching and developing new medical device products. As an engineer at Stryker, you will be proud of the work that you will be doing, using cutting-edge technologies to make healthcare better. Here, you will work in a supportive culture with other incredibly talented and intelligent people, creating industry-leading medical technology products. You will also have growth opportunities as we have a culture that supports your personal and professional development. Need another reason to apply? Check out these 8 reasons to join Stryker's engineering team: https://www.strykercareersblog.com/post/8-reasons-to-join-strykers-engineering-team We are proud to be named one of the World’s Best Workplaces and a Best Workplace for Diversity by Fortune Magazine! Learn more about our award-winning organization by visiting stryker.com Who We Want:
- Dedicated achievers - People who thrive in a fast-paced environment and will stop at nothing to ensure a project is complete and meets regulations and expectations.
- Curious learners - People who seek out cutting-edge research and information to expand and enhance their ability to be ready for what’s next.
- Self-directed initiators – People who take ownership of their work and need no prompting to drive productivity, change, and outcome and will stop and nothing to ensure a project is complete and meets regulations and expectations.
- Collaborative partners - People who build and leverage cross-functional relationships to bring together ideas, information, use cases, and industry analyses to develop best practices.
- Understand the overall technical capabilities of our products, typical deployment scenarios, and drive platform security posture improvement.
- Collaborate with product teams to create comprehensive product cybersecurity threat models. Guide security risk analysis including threat identification, severity scoring, and selection of appropriate controls to mitigate risks.
- Work closely with cross-functional teams, including Quality, Regulatory, and Marketing in driving alignment around medical device cybersecurity standards and regulations.
- Support all facets of product hardware and software security including system hardening, automated and manual penetration testing, vulnerability scanning, and issue remediation.
- Identify product vulnerabilities through design review, code review, and security testing.
- Lead and own vulnerability and incident response activities through assessing applicability, exploitability, and impact with product teams; developing POC exploits; and planning and executing mitigation and remediation to closure.
- Leverage and implement DevSecOps to create efficiencies in managing security posture of our products.
- Support cybersecurity documentation requests from legal and sales teams on an as-needed basis.
- Lead product teams on conversations from a security PoV. Author and contribute artifacts such as Security Assessment, MDS2, Security Risk, Threat Model, SBOM, OSS etc.
- Coordinate security war gaming activities with R&D product teams to enhance security practices and overall security posture throughout life of a product.
- Bachelor's degree in Computer Science, Software Engineering, Electrical Engineering, Cybersecurity, or related discipline
- Minimum 6 years of related experience
- Demonstrated experience designing and securing embedded systems
- Strong understanding of embedded/IOT security relevant technologies (e.g. secure boot, FIPS 140-2 encryption, anti-tamper, TPM, code signing, TLS, PKI)
- Experience working in medical device, health care, or other regulated industry.
- Knowledge of communication protocols and technologies like TCP/IP, Ethernet, Wi-Fi, Bluetooth, 3G, UWB, and CAN.
- Experience with Embedded Linux
- Proficiency with C/C++
- Familiarity with use of embedded security tools such as logic analyzers, protocol analyzers, disassemblers, Wireshark, Bus Pirate, ChipWhisperer, IDA, MetaSploit, etc.
- $112k - $239k salary plus bonus eligible + benefits. Actual minimum and maximum may vary based on location. Individual pay is based on skills, experience, and other relevant factors.
- 12 paid holidays annually
- Health benefits include: Medical and prescription drug insurance, dental insurance, vision insurance, critical illness insurance, accident insurance, hospital indemnity insurance, personalized healthcare support, wellbeing program and tobacco cessation program.
- Financial benefits include Health Savings Account (HSA), Flexible Spending Accounts (FSAs), 401(k) plan, Employee Stock Purchase Plan (ESPP), basic life and AD&D insurance, and short-term disability insurance.
Learn more about Stryker
Help us maintain the quality of jobs posted on PowerToFly. Let us know if this job is closed.
Mission
We're connecting diverse talent to big career moves. Meeting people who boost your career is hard - yet networking is key to growth and economic empowerment. We’re here to support you - within your current workplace or somewhere new. Upskill, join daily virtual events, apply to roles (it’s free!).
Are you hiring? Join our platform for diversifiying your team