Senior Principal Engineer, Product Security jobs in United States
cer-icon
Apply on Employer Site
company-logo

Vantive · 2 weeks ago

Senior Principal Engineer, Product Security

positionPlymouth, MN
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$128K/yr - $192K/yr
date8+ years exp

Vantive is a vital organ therapy company focused on extending lives and enhancing the dialysis experience through innovative digital solutions. The Senior Principal Product Security Engineer will be responsible for designing and implementing security measures across Vantive’s medical device software, ensuring the protection of intellectual property and compliance with security standards.

Health CareMedicalTherapeuticsWellness

Responsibilities

Work directly with software developers in building a security by design mindset by defining implementations and coding inline with the Application Security Program mandates
Implement secure code solutions, design patterns, and code guidelines that meet security and privacy requirements defined in the security plans, risk assessments, policies, and procedures
Support security project governance through scheduling activities, planning and prioritization
Proactively drive security solutions implementation in-alignment with the development leads, security architects and product owner(s)
Drive feature implementations in line with the architecture via designs, coding, reviews and tests. Perform Proof of Concept (POC) activities as necessary
Review, Analyze and mitigate SAST, DAST, SCA, and penetration test results in collaboration with the developers for various non-medical and software as medical devices (SaMD) product lifecycles
Review current software security control measures and implement security enhancements for multiple cloud-based products
Participate in post-market product analysis to support vulnerability investigations as required as well as be engaged in continuous security monitoring

Qualification

Product securitySecure coding practicesCloud security controlsWeb application developmentSecurity by designCryptographic algorithmsOWASP Top10 guidelinesSASTDAST analysisAgile methodologiesSoft skills

Required

Bachelor's degree in Computer Science, a related field or equivalent demonstrated experience and knowledge
Minimum 8+ years of experience in software development or related fields
Minimum 5 years technical experience implementing product security requirements in cloud/hosted server environment
4 years working with each of the following: Software development experience using web/application software technologies such as C/C++, Java, .Net, python, etc
Experience analyzing, interpreting, and mitigating security findings from multiple sources including SAST, DAST, SCA and penetration tests
AWS network security controls
Experienced security developer able to interpret and guide software development teams on secure coding practices and application security test report interpretation for various coding languages and multiple cloud services
Strong knowledge of secure software development lifecycle and practices including SAFe/ Agile methodologies for software development
Understanding of security by design principles and architecture level security concepts
Sound understanding and experience in implementing security technologies/techniques like Cryptographic Algorithms/Cipher Suites, Public key Infrastructure (PKI)), network security protocols, OAuth, 2-factor authentication, and data at rest encryption standards
Experience implementing OWASP Top10 application security guidelines in cloud-based web applications
Experience with cloud-based design and security controls (e.g. network security, instance hardening, identify and access control, cloud environment configuration best practices)
Experienced in generating, defining, and reviewing penetration test results through knowledge of standard methodologies and tools including environmental configuration definition, security analysis, threat modeling, and system security audits
Knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
Exposure to international privacy requirements & cross-industry trends

Benefits

Medical, dental and vision coverage that start on day one
Insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
Vantive’s 401(k) retirement savings plan
Flexible Spending Accounts
Educational assistance programs
Paid holidays
Paid time off ranging from 20 to 35 days based on length of service
Family and medical leaves of absence
Paid parental leave
Commuting benefits
The Employee Discount Program
The Employee Assistance Program (EAP)
Childcare benefits

Company

Vantive

twittertwittertwitter
company-logo
Vantive US Healthcare LLC specializes in kidney care and organ support therapies with digital solutions.
location
Deerfield, Illinois, USA
people-size10001+ employees
web-link
https://www.vantive.com

Funding

Current Stage
Late Stage
Total Funding
unknown
2024-08-13Acquired

Recent News

Spectral Medical Inc.
Spectral Medical Announces Third Quarter 2025 Financial Results and Provides Corporate Update
2025-11-08
Vantive
Vantive Introduces HomeAdvantage: Digitally-Enabled Home Therapy Ecosystem Designed to Make Home Dialysis Easier to Start, Manage and Sustain
2025-11-03
Morningstar.com
NKF Launches Home Dialysis Awareness Campaign to Educate and Empower Patients
2025-11-01
Company data provided by crunchbase