Loading...
Share this Job

Job Title:  Senior Software Engineer, Device Security

Req ID:  24937
Job Category:  Engineering

MENTOR, OH, US, 44060

Description: 

At STERIS, we help our Customers create a healthier and safer world by providing innovative healthcare and life science product and service solutions around the globe.

Position Summary

Join an organization and a team where you can have an impact on creating a healthier and safer world. 

As a Senior Software Engineer within the Infection Prevention Technology (IPT) Team you will work within a software development team to achieve and maintain the security of medical equipment connected to local hospital networks and remote applications in the cloud.  You will be an active participant in the corporate cybersecurity working group to share best practices, software tools, vendor selection, and other cybersecurity related activities.  The Sr. Software Engineer will also support multiple product development and product sustaining teams in security related product requirements, design specifications, risk analysis, and verification, as well as develop work instructions for the maintenance and verification of security for product software.

Duties

  • Leads product development teams in the development of a product cybersecurity plans per STERIS work instructions
  • Supports product development teams in creation of product cybersecurity threat model based upon software system design
  • Leads product development teams in creation of cybersecurity vulnerability assessments to calculate CVSS scores and specify risk controls
  • Supports teams in creation of documentation of cybersecurity risk management file
  • Keeps abreast of state of the art cybersecurity practices and latest standards and verification techniques
  • Maintains regular, periodic vigilance of latest vulnerabilities in third party software and works with Regulatory and Quality teams to action to patch or develop work arounds for new vulnerabilities posing unacceptable risk
  • Performs regular, periodic product security testing against STIGs for products sold into DOD medical centers
  • Performs vulnerability scans on all device software prior to production release
  • Patches fielded product software and performs or oversees verification of patched software (static/dynamic analysis, regression testing, vulnerability scans, etc.)
  • Assists product development teams in penetration and fuzz testing of new products containing software
  • Participates in design and code reviews and/or inspections to ensure proper implementation of security control measures defensive coding practices.
  • Maintains MDS2 forms (Manufacturer Disclosure Statement for Medical Device Security) and/or white papers that describe product security characteristics and processes used to ensure a secure product.
     

Required Experience


•    Bachelor in Computer Engineering, Computer Science, Software Engineering, Electrical Engineering, or Cybersecurity required.   (A degree in another Engineering or Scientific discipline may be acceptable with proven software education and/or training and demonstrated software experience.)
•    Requires 3+ years overall of related software engineering experience in development and/or verification

 

Preferred Experience

•    Certification or training in software security is highly desirable
•    Significant course work or at least 1 year of direct experience in the cybersecurity field desirable
•    3+ years experience of software development in C, C++, or C# highly desirable
•    2+ years experience in network communication interfaces desirable
•    Experience performing risk assessments desirable

What STERIS Offers

The opportunity to join a company that will invest in you for the long-term. STERIS couldn’t be where it is today without our incredible people. That’s why we share in our success together by rewarding you for your hard work. Hiring people who are in it for the long run with STERIS is our ultimate goal. We do this by providing competitive salaries, healthcare benefits, tuition assistance, paid-time off, holidays, matching 401(k), annual merit, and incentive plans.  Join us and help write our next chapter.


#LI-KK1

 

 

STERIS is a leading provider of products and services that meet the needs of growth areas within Healthcare: procedures, devices, vaccines and biologics.  We exist to fulfill our MISSION TO HELP OUR CUSTOMERS CREATE A HEALTHIER AND SAFER WORLD. STERIS is a $3B, publicly traded (NYSE: STE) company with approximately 16,000 associates and Customers in more than 100 countries.

If you need assistance completing the application process, please call 1 (440) 392.7047. This contact information is for accommodation inquiries only and cannot be used to check application status.

STERIS is an Equal Opportunity Employer.  We are committed to equal employment opportunity and the use of affirmative action programs to ensure that persons are recruited, hired, trained, transferred and promoted in all job groups regardless of race, color, religion, age, disability, national origin, citizenship status, military or veteran status, sex (including pregnancy, childbirth and related medical conditions), sexual orientation, gender identity, genetic information, and any other category protected by federal, state or local law.  We are not only committed to this policy by our status as a federal government contractor, but also we are strongly bound by the principle of equal employment opportunity.

The full affirmative action program, absent the data metrics required by § 60-741.44(k), shall be available to all employees and applicants for employment for inspection upon request. The program may be obtained at your location’s HR Office during normal business hours.

Req ID:  24937
Job Category:  Engineering

MENTOR, OH, US, 44060


Nearest Major Market: Cleveland
Nearest Secondary Market: Akron

Job Segment: Developer, Medical, Engineer, Software Engineer, Electrical, Technology, Healthcare, Engineering