Share this Job

Principal Application Security Engineer

Apply now »

Date: Nov 22, 2022

Location: Lakewood, CO, US

Company: Terumo BCT, Inc.

At Terumo Blood and Cell Technologies, Innovation and Development (I&D) designs, engineers, builds and codes medical technology that helps save lives.  Terumo believes in integrating security into all aspects of our product development and business.  The Principal - Cyber & Product Security designs and implements strategies to secure software, systems, and processes throughout our research, development, and engineering activities, influencing the overall success of varied cross-functional teams.

ESSENTIAL DUTIES

  • Directs product security and cyber security practices, through helping lead the Product Security Working Group and by setting policy and giving practice guidance to systems, hardware, embedded device software, and application software teams.
  • Develops and improves processes and systems that proactively provide cyber security into complex enterprise-scale systems.  Implements roadmaps and project plans to support continuous improvement for I&D teams.
  • Educates and influences the engineering leadership and product development teams on good cyber practices and their role as a steward of product security.  Provides thought leadership on and evangelizes to make cyber security a mindset embraced throughout the product development lifecycle.
  • Establishes and owns monitoring, metrics, and SLAs for cyber security process effectiveness.
  • Resolves or facilitates resolution of problems and can evaluate recommendations relating to business opportunities and influence policy and process improvements.
  • Governs and enforces the effective implementation of product security practices in NPD (New Product Development) and Sustaining domains, including emphasis on security requirements and oversight/approval during design and other phase gate related security reviews.
  • Develops and drives approaches to identify and prevent security vulnerabilities earlier in the development process in an automated scalable manner and work with engineering to deploy and utilize these approaches.
  • Acts as the focal point for compliance activities, external security certifications, and regulatory activities.

 

OTHER DUTIES AND RESPONSIBILITIES

  • Influences customer and management at project lead level.
  • Provides technical leadership to team members, mentoring staff on the latest technology.
  • Supports vendor management as needed.
  • Participates in regulatory and safety reviews.
  • Guides, channels, facilitates and transfers knowledge of technologies.  May act as consultant between various technologies.

 

 

MINIMUM QUALIFICATION REQUIREMENTS

 

EDUCATION

 

Bachelor’s degree in Computer Science or, equivalent of education and experience sufficient to successfully perform the essential functions of the job may be considered.

 

Experience

Minimum 8 years’ experience

  • Requires experience with mission critical applications, preferably medical products/devices.
  • Knowledge of regulatory requirements preferred.

 

Skills

  • Experience developing cyber security practices.
  • Working knowledge of modern software development practices, strongly preferred.
  • Experience leading product and/or cyber security practices in a regulated industry or environment; knowledge of global standards and frameworks (ISO, NIST, FDA, ITIL, EUMDR, etc.) strongly preferred.
  • Professional certification in cyber security practices (CISSP or similar), preferred.
  • Demonstrates creativity and takes initiative in problem solving.
  • Experience with automation, virtualization, orchestration, and pipeline implementations, preferred.
  • Experience with modern cloud platform and architectures, microservices, and CI/CD; Azure ecosystem preferred.
  • Experience using risk analysis and mitigation methodologies.
  • Quality and continuous improvement mindset.
  • Demonstrated ability to communicate effectively both verbally and in writing.

 

-Or-

An equivalent competency level acquired through a variation of these qualifications may be considered.

 

PHYSICAL REQUIREMENTS

 

Typical Office Environment requirements include: reading, speaking, hearing, close vision, walking, bending, sitting, and occasional lifting up to 20 pounds.

 

The physical demands described here are representative of those that must be met by an associate to successfully perform the essential duties of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential duties.

 

 

 

 

 

Target Pay Range:  $114,500.00 to $143,100.00  -  Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant, internal equity, and alignment with market data
Target Bonus on Base:  10.0%

 

At Terumo Blood and Cell Technologies, we provide competitive total reward offerings that consist of compensation, benefits, recognition, along with a wealth of other well-being, work-life and recognition programs which support in unlocking the potential for you and your family. Included in our expansive list of benefits offerings are multiple group medical, dental and vision plans, a robust wellness program, life insurance and disability coverages, also a variety of voluntary programs such as group accident, hospital indemnity, critical illness, pet insurance and much more. To help you save for retirement, we offer a 401(k) plan with a matching contribution and for work-life balance we have vacation and sick time programs for associates. For us, it’s about protecting the personal welfare of our associates and their families, helping to achieve personal goals and offering those extra touches for convenience, security and overall peace of mind.

 


Nearest Major Market: Denver

Job Segment: Application Engineering, Product Development, Cloud, Embedded, Medical Technology, Engineering, Research, Technology, Healthcare