Sr Product Security Engineer -Neuro

A Day in the Life

Medtronic’s mission is to alleviate pain, restore health, and extend life. The Senior Product Security Engineer will protect medical devices, patients, and sensitive data by delivering proactive cyber‑security solutions while ensuring uninterrupted functionality and patient safety.

• Implement security requirements across the medical device development lifecycle, collaborating with teams from design to deployment.
• Conduct threat modeling and vulnerability assessments to identify and mitigate security risks throughout the product lifecycle.
• Support the design and deployment of secure medical devices, including secure boot, communications, data protection, updates, integration, and access controls.
• Develop a post‑Quantum security strategy with quantum‑resistant cryptographic algorithms and robust key‑management using HSMs.
• Apply advanced AI techniques (LLMs, deep learning) to identify and remediate vulnerabilities automatically.
• Ensure compliance with industry standards and regulations (NIST, IEC 60601‑4‑5, IEC 81001‑5‑1, ISO/IEC 27001, ISO 14971, HITRUST).
• Oversee incident response, ensuring quick resolution and stakeholder communication.
• Maintain awareness of current cybersecurity trends in medical devices and update security strategies accordingly.

• Prior cyber‑security engineering for embedded software in a regulated industry.
• Experience with threat modeling, incident management, and proactive security strategy development.
• Hands‑on experience in cyber‑security architecture, cloud security, and cryptography.
• Agile software development team experience.

• Bachelor’s degree in Computer Science or related field with 4+ years of cyber‑security/embedded systems work; OR Advanced degree with 2+ years of relevant experience.

• Medical device or regulated‑industry experience.
• Comprehensive cyber‑security risk management skills.
• CompTIA Security+, CISSP, CISM, or ITIL certification.

• Strong understanding of NIST, OWASP, MITRE frameworks.
• Familiarity with ISO 27001, ISO 14971, HITRUST.
• Secure software development lifecycle and Dev Sec Ops  principles.
• Advanced cryptography, HSM concepts, secure key generation and management.

• Proactive communication and risk presentation to leadership.
• Strong problem‑solving and analytical abilities.
• Effective cross‑functional collaboration.

Work is office‑based: regular independent mobility, computer use, and interaction with peers. Reasonable accommodations are available for disabilities.

Competitive salary ($125,600 – $188,400 USD annually) and eligibility for the Medtronic Incentive Plan.

Benefits include health, dental, vision, HSA, FSA, life insurance, disability, tuition assistance, and a global well‑being program.

Retirement and equity options: 401(k) with employer match, Employee Stock Purchase Plan, and other incentive plans.

Medtronic provides equal employment opportunity to all individuals, regardless of protected characteristics, and offers reasonable accommodations for qualified persons with disabilities.