Job was saved successfully.
Job was removed from Saved Jobs.

Job Details


(REMOTE) - Product Security Manager (R466669)

Law Enforcement and Security

Diplomatic Security

Yearly

No

Virtual, Ohio, United States

Why join Stryker?

We are proud to be named one of the World’s Best Workplaces and a Best Workplace for Diversity by Fortune Magazine! Learn more about our award-winning organization by visiting stryker.com

Our benefits include bonuses; commissions; healthcare; insurance benefits; retirement programs; stock based plans; paid time off plans; family and parenting leaves; tuition reimbursement; wellness programs; onsite fitness centers and cafeterias; discount purchase programs; and service and performance awards – not to mention various social and recreational activities.


Product Security is driven to make healthcare better by ensuring that Stryker designs, develops, and maintains indus­try leading cyber secure products for our customers. This corporate program guides and governs the implementation and maintenance of security across the global product portfolio. The program is responsible to ensure the security, integrity, and resilience of our products to protect our customers and their patients.

The Product Security Manager will report to the Senior Manager, Governance, Risk & Compliance and will work directly with international business divisions. In this role you will have the capability to directly influence technical innovation and enhance security maturity of our software enabled products.

What you will do-

  • Act as of Product Security representative and subject matter expert to the focal Stryker division/s.

  • Work closely with leadership and work teams to implement security controls in new product development and operational security activities.

  • Participate in divisional design reviews to ensure appropriate security controls implemented as design inputs (DI).

  • Guide software development and architecture documentation related to Product Security (Software requirements specifications, Software Architecture Diagrams, Risk mitigation traceability).

  • Support Engineering / Architecture and data flow diagram Reviews.

  • Facilitate/Approve Environment Security deliverables that achieve and maintain compliance with regulatory requirements and/or industry certifications.

  • Facilitate/Approve Security Risk Table.

  • Facilitate the use of internally developed security technologies, capabilities, and relevant vendor tools based on security requirements.

  • Monitor Security Pre/Post-Market Software Management.

  • Monitor Vulnerability and Exploitability Assessments.

  • Support Security Event/Incident Management.

  • Monitor Security Status updates for division product portfolio.

  • Support Security-Related Customer Communications.

  • Support Divisional Process Owners to integrate compliance requirements and security best practices into their quality system procedures.

  • Monitor and communicate division Key Performance and Key Risk Indicators.

  • Follow established quality measures to assess overall success of team program and provides reports to leadership. Recommends changes to established quality measurements as appropriate.

  • Encourages ongoing skill development by providing opportunities for continued education.

What you need-

Minimum Qualifications:

  • Bachelor's Degree in Computer Science, Information Systems, Engineering or related field is required. (An advanced degree is preferred).

  • 8 years of experience in product security or cloud environment security is required.

Preferred Qualifications:

  • CISSP, CCSP, LPT, or other security specific certifications

  • Strong experience with System and Software Development processes and lifecycles for new product development, including embedded software

  • Experience with QNX, Windows Embedded, and custom Linux OS distributions.

  • Experience with cellular carrier security configurations for 3G, 4G, 5G networks

  • Experience in working with cloud-based and hybrid IoT environments

  • Strong experience security technologies that support static and dynamic code analysis, fuzz testing, software composition analysis, GRC, vulnerability analysis

  • Experience with risk management methodologies, trending, design control, threat modelling, vulnerability ranking, and product enhancements

  • Experience in developing and delivering detailed presentations

  • Demonstrated experience in developing and streamlining key aspects of quality systems to ensure compliance with applicable regulations

  • Experience with event and incident response, including incident documentation

  • Demonstrated knowledge of Project Management

  • Experience in supporting compliance requirements for industry certifications (HIPAA, SOC2 Type2, or CMMC)

Min: $107,300 - Max: $228,200 salary plus bonus eligible + Benefits (Health, Vision, Dental, 401K, Tuition Reimbursement, Employee Assistance Program, Wellbeing Program, Employee Stock Purchase Program). This information reflects the anticipated salary range for this position based on current national data. Actual minimum and maximum may vary based on location. Individual pay is based on skills, experience, and other relevant factors.

#DREEngineering


Know someone at Stryker?

Be sure to have them submit you as a referral prior to applying for this position. Learn more about our employee referral program at https://careers.stryker.com/referrals/

About Stryker

Stryker is one of the world’s leading medical technology companies and, together with our customers, is driven to make healthcare better. We offer innovative products and services in Orthopaedics, Medical and Surgical, and Neurotechnology and Spine that help improve patient and hospital outcomes.

We are proud to be named one of the World’s Best Workplaces and a Best Workplace for Diversity by Fortune Magazine! Learn more about our award-winning organization by visiting stryker.com