Share this Job

Title:  Cyber Security Principal Engineer

Req ID:  14608
Category:  Engineering
City:  Mentor
State:  OH
Postal Code:  44060
Description: 

At STERIS, we help our Customers create a healthier and safer world by providing innovative healthcare and life science product and service solutions around the globe.

Position Summary

As customers seek to streamline workflow, STERIS is delivering a range of solutions to connect equipment, data, and processes. Delivering a simple and secure solution remains a priority for our business.  The Principal Product Security Engineer will work with cross-functional R&D teams to establish product security awareness and integrate security related activities into the product development process. You will be the subject matter expert on cybersecurity in this highly impactful role. This is a highly visible role within the business as you will recommend and drive security and software solutions for future product development. 

Duties

  • Advises product development teams in the specification and verification of security measures in both new product development and currently marketed products (35% of time)
    • Works independently with minimal supervision.
    • Consults with security experts inside and outside of STERIS.
    • Proposes solutions and defines technical direction for future development efforts.
    • Works as a consultant to engineering project teams, being the subject matter expert on product security.
    • Advises project teams in the development and execution of security plans and definition of product specifications which address security.
    • Collaborates across engineering teams and with other functions such as Quality, Regulatory, Marketing, Service and IT in regard to security related matters.
    • Participates in system design reviews to identify security-related issues and recommends design changes as appropriate; may participate in code reviews and/or inspections to ensure defensive coding measures.
    • Integrates analysis of security risks and appropriate control measures in the risk management process
    • Provides guidance and review of customers’ product security documents such as MDS2 forms (Manufacturer Disclosure Statement for Medical Device Security) and/or white papers that describe product security characteristics and processes used to ensure a secure product.
  • Develops awareness of security concerns and shares best engineering practices company wide (40% of time)
    • Supports technical staff by providing expertise, guidance, tools, and materials in the implementation of security measures and the evaluation and verification of such measures.
    • Collaborates with teams across the company in sharing best practices and driving security related initiatives.
    • Collaborates with other business units and corporate IT in the development and implementation of security-related practices and procedures.
    • Serves as a process champion for continued improvement of security-related processes and tools.  
    • Creates department procedures and work instructions for implementing appropriate design techniques for the development of medical device systems.
    • Trains engineers on good design techniques to improve product security. 
  • Continuously expands knowledge and expertise in cybersecurity (25% of time)
    • Researches and evaluates best practices in designing secured systems, attending conferences and classes.
    • Identifies and evaluates new technologies and tools related to security.
    • Serves as a contact point for security solution vendors.

Required Experience

  • Requires 15+ years of related engineering experience.
  • Bachelor in Computer Engineering, Computer Science, Software Engineering, or Electrical Engineering required. Masters degree in software or computer related field strongly preferred.  (A degree in another Engineering discipline may be acceptable with proven software education and/or training and demonstrated software experience.)
  • Certification or training in software security is desirable.
  • Significant course work or 2+ years of direct experience in the cybersecurity field.
  • 10+ years experience or 5+ years plus completed graduate studies in computer software design, development, and testing
  • 5+ years experience programming in two or more of the following: C, C++, C#, Java
  • Hands-on experience is performing software-based system security threat assessments

 

STERIS Offers:

The opportunity to join a company that will invest in you for the long-term. STERIS couldn’t be where it is today without our incredible people. That’s why we share in our success together by rewarding you for your hard work. Hiring people who are in it for the long run with STERIS is our ultimate goal. We do this by providing competitive salaries, healthcare benefits, tuition assistance, paid-time off, holidays, matching 401(k), annual merit, and incentive plans.  Join us and help write our next chapter.

#LI-KK1

 

 

STERIS is a $2B+, publicly traded (NYSE: STE) organization with approximately 12,000 associates worldwide and operates in more than 100 countries.

If you need assistance completing the application process, please call 1 (440) 392.7047. This contact information is for accommodation inquiries only and cannot be used to check application status.

STERIS is an Equal Opportunity Employer.  We are committed to equal employment opportunity and the use of affirmative action programs to ensure that persons are recruited, hired, trained, transferred and promoted in all job groups regardless of race, color, religion, age, disability, national origin, citizenship status, military or veteran status, sex (including pregnancy, childbirth and related medical conditions), sexual orientation, gender identity, genetic information, and any other category protected by federal, state or local law.  We are not only committed to this policy by our status as a federal government contractor, but also we are strongly bound by the principle of equal employment opportunity.

Req ID:  14608
Category:  Engineering
City:  Mentor
State:  OH
Postal Code:  44060


Nearest Major Market: Cleveland
Nearest Secondary Market: Akron

Job Segment: Medical, Engineer, Electrical, Product Development, Risk Management, Healthcare, Engineering, Research, Finance