Medtronic is looking to deliver secure, scalable, and innovative applications that empower patients and healthcare providers to connect and deliver care anytime, anywhere, while ensuring compliance with rigorous medical device software standards.
Requirements
- Deep technical expertise in application security
- Experience with APIs and data platforms, familiarity with JSON and YAML data formats
- Experience in a regulated environment
- Proficient in using tools such as Fortify, BlackDuck, BurpSuite, and Postman
- Experience with software test methodologies, quality standards/metrics
- Strong organization acumen with the ability to communicate effectively to non-technical audiences
- Deep expertise in software test methodologies, quality standards/metrics
Responsibilities
- Review the scope of changes (ESFs, Jira tickets, Dev discussions) for CareLink releases.
- Regularly attend cross-scrum technical calls (User Apps and User Services) to understand the scope of changes
- Complete security assessments of the changes for CareLink releases.
- Fill out the detailed ESF write-ups for each change, as needed for security reports
- Review the write-ups with Product security team/ISAC and address any comments.
- Run periodic security scans of source code during each Sprint cycle, and share results with Dev team.
- Conduct ad-hoc testing to validate pen test findings and mitigations.
Other
- Bachelor's degree with a minimum of 7 years of related experience or an Advanced degree with a minimum of 5 years of related experience
- Strong organization acumen with the ability to communicate effectively to non-technical audiences
- Ability to work in a team environment and collaborate with cross-functional teams
- Ability to communicate effectively with non-technical audiences
- Must be able to work in an office environment and interact with a computer and communicate with peers and co-workers
