SunnyvaleRecruiter Since 2001
the smart solution for Sunnyvale jobs

Senior Product Security Engineer

Company: Careerbuilder-US
Location: Sunnyvale
Posted on: November 25, 2022

Job Description:

Company DescriptionAt Intuitive, we are united behind our mission: we believe that minimally invasive care is life-enhancing care. Through ingenuity and intelligent technology, we expand the potential of physicians to heal without constraints. As a pioneer and market leader in robotic-assisted surgery, we strive to foster an inclusive and diverse team, committed to making a difference. For more than 25 years, we have worked with hospitals and care teams around the world to help solve some of healthcare's hardest challenges and advance what is possible.Intuitive has been built by the efforts of great people from diverse backgrounds. We believe great ideas can come from anywhere. We strive to foster an inclusive culture built around diversity of thought and mutual respect. We lead with inclusion and empower our team members to do their best work as their most authentic selves.Passionate people who want to make a difference drive our culture. Our team members are grounded in integrity, have a strong capacity to learn, the energy to get things done, and bring diverse, real world experiences to help us think in new ways. We actively invest in our team members to support their long-term growth so they can continue to advance our mission and achieve their highest potential.Join a team committed to taking big leaps forward for a global community of healthcare professionals and their patients. Together, let's advance the world of minimally invasive care.Job DescriptionResponsibilities:Complete comprehensive security threat modeling for Intuitive products and services, to include the development and publishing of threat modeling documentation.Create, manage and maintain processes and procedures for Intuitive's threat modeling program.Assist and advise Intuitive engineering teams and product owners in addressing security risks as identified through threat modeling and assist cross-functional partners with threat modeling questions.Monitor and track compliance with engineers and product owners to ensure implementation of security controls as prescribed.Develop reports for management concerning residual risk and non-compliance with prescribed security requirements.Work with Product Security leadership to develop strategies and plans to enforce threat modeling processes and address identified control gaps.Assist in validation of security controls against outputs of vulnerability scanning tools to enable auditability and verifiability.Assist in the development, maintenance, enhancement, and implementation of secure design requirements and security hardening standards across multiple technical stacks and with multiple engineering teams.QualificationsMinimum Bachelor's degree in computer science, information systems, or cybersecurity or similar experience.Minimum 5

  • years' experience with software application security threat modeling.Minimum 5
  • years' experience with implementing security threat modeling and risk management processes.Minimum 5
  • years' experience in developing, documenting, and maintaining security policies, processes, procedures and standards.Minimum 5
  • years Product Security, Application Security, or Software Security experience.Minimum 5
  • years' experience with common security management and application frameworks: NIST 800-53, CSF, OWASP, etc.Minimum 3
  • years with threat modeling frameworks, attack vectors and vulnerability analysis: CAPEC, ATT&CK, STRIDE, etc.Minimum 5
  • Experience with using a security-based risk scoring system (CVSS).Minimum 5
  • years' experience with software security environments, preferably featuring Python, JavaScript, MySQL.Excellent communication and collaboration skills, able to network, interface and influence at all levels of the organization, cross sector, cross-functionally and globally.Nice to Have:Familiarity with FDA and/or other global regulatory medical device/healthcare cybersecurity guidance requirements and submission processes preferred.Understanding of HIPAA/HITRUST preferred.Minimum 5
    • years' experience with cloud security architectures, preferably AWS, Azure or Salesforce.Previous work experience in the Medical Device industry, or other regulated industry preferred.Additional InformationDue to the nature of our business and the role, please note that Intuitive and/or your customer(s) may require that you show current proof of vaccination against certain diseases including COVID-19. Details can vary by role.Intuitive is an Equal Employment Opportunity Employer. We provide equal employment opportunities to all qualified applicants and employees, and prohibit discrimination and harassment of any type, without regard to race, sex, pregnancy, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status, genetic information or any other status protected under federal, state, or local applicable laws.We will consider for employment qualified applicants with arrest and conviction records in accordance with fair chance laws.Shift :Day Travel : 10% of the timeJobSummaryJob number: JOB2509Date posted : 2022-11-01Profession: Product Engineering & DesignEmployment type: Full-timeSDL2017

Keywords: Careerbuilder-US, Sunnyvale , Senior Product Security Engineer, Engineering , Sunnyvale, California

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest California jobs by following @recnetCA on Twitter!

Sunnyvale RSS job feeds