Be an early applicantLess than 25 applicants

Company

Original Job Post

Baxter International Inc. · 3 days ago

Senior Principal Engineer, Product Security

Round Lake, IL

Full-time

Onsite

Senior Level

$128K/yr - $176K/yr

8+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

BiotechnologyClinical Trials

Actively Hiring

Insider Connection @Baxter International Inc.

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Implement proof of concept project to define innovative solutions on platforms/server platforms

Lead implementation of medical device cybersecurity principles as part of an overall security architecture

Create, own, and maintain system requirements, architectures, risk analysis and other specifications that define the cybersecurity functionality of medical device systems both embedded and hosted.

Create threat models of medical device systems and the interfaces between medical devices.

Perform vulnerability scanning of medical device systems and analyze results.

Monitor threat intelligence and analyze CWEs and CVEs that affect medical device systems and propose solutions.

Drive cybersecurity improvements through product the cross functional teams, primarily software.

Lead discussions to resolve competing constraints between interrelated functions (Engineering, Risk Management, Compliance, Clinical, Human Factors, Regulatory, Marketing, Service).

Ensure compliance to the product development process and Quality System and Design Control requirements.

Interface with regulatory bodies, representing Baxter and Baxter products, and ensure that regional cybersecurity needs are met.

Contribute to external communications (bulletins, FAQs, etc.) related to cybersecurity.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Threat modelingPenetration testingFuzz testingVulnerability scanningSecure code analysisCybersecurity softwareThreat intelligenceCWEsCVEsCybersecurity organizationsUL-2900ICS-CERTFIPS 140Embedded systemsHosted software applicationsConvincing managementBusiness objectivesProblem-solvingCommunicationOrganizationInterpersonalMedical Device Experience

Required

BS in computer science, engineering, mathematics, information management, or related field with 8+ years of industry experience (medical devices preferred).

Experience with threat modeling, penetration testing, fuzz testing, vulnerability scanning, secure code analysis.

Experience with cybersecurity related software such as Blackduck, Coverity, etc.

Experience dealing with threat intelligence, CWEs and CVEs.

Familiarity with cybersecurity related organizations and certifications such as UL (UL-2900), ICS-CERT, FIPS 140, etc.

Experience with cybersecurity functionality on embedded systems and hosted software applications.

Requires strong organization and communication skills, with the ability to interface with both technical and non-technical personnel.

Ability to convince management on courses of action with minimal assistance using both written and verbal methods.

Must be able to provide solutions that reflect understanding business objectives.

Preferred

Medical device experience a plus.

Company

Baxter International Inc.

Glassdoor

3.7

For nearly a century, we have delivered on our commitment to saving and sustaining the lives of patients, working alongside clinicians and providers around the world.

Founded in 1931

Deerfield, Illinois, USA

10,001+ employees