Principal SDET, Cybersecurity Test Engineer

Requisition ID:  33940  

At Terumo Blood and Cell Technologies, our 7,000+ global associates proud to come to work each day, knowing that what we do impacts the lives of patients around the world. For Terumo, for Everyone, Everywhere.

We make medical devices and related products that are used to collect, separate, manufacture and process various components of blood and cells. With our innovative technologies and service offerings, we touch a patient’s life every second of every day and are committed to continuing to increase the number of patients we serve. Advancing healthcare with heart.

With some of the best and brightest minds in the industry, an unmatched global footprint, comprehensive benefits and a distinct culture, Terumo Blood and Cell Technologies is a great place to work, grow and be part of a team that is focused on making a difference. Join us and help shape wherever we go next. You create your future and ours.

JOB TITLE: Principal SDET – Cybersecurity Test Engineer

JOB SUMMARY

The Principal SDET - Cybersecurity Test Engineer holds a vital role in our medical device company, committed to improving patient outcomes through cutting-edge, life-saving technology. This position demands close collaboration with architects and team leaders, where the individual will provide technical leadership and drive organizational change.

In this key role, the Principal SDET is responsible for identifying vulnerabilities and potential security risks while also mentoring emerging Cybersecurity Test Engineers. The position's core responsibilities include evaluating, documenting, managing, and developing software cybersecurity tests specifically for TBCT software systems within our R&D department.

Effective collaboration is essential, requiring interaction with internal teams as well as external partners such as business and DX management, consultants, and other stakeholders to ensure all cybersecurity requirements are met. The role requires independent judgment in creating effective methods and techniques to achieve objectives. Drawing on extensive experience in the field, the Principal SDET will be responsible for developing strategy and setting direction in a dynamic environment that prioritizes innovation and excellence.

ESSENTIAL DUTIES

• Design and lead the technical development, direction, and effectiveness of the functional group.
• Oversee the design, development, and execution of automated test scripts to ensure strong cybersecurity protocols.
• Collaborate with cross-functional teams, including development, cybersecurity, and quality assurance, to identify potential vulnerabilities and integrate security testing into the product lifecycle.
• Develop comprehensive test plans and strategies that comply with regulatory standards specific to medical devices.
• Conduct risk assessments and implement security testing protocols to protect sensitive data.
• Stay informed about emerging cybersecurity threats and incorporate proactive measures into testing processes.
• Maintain hands-on involvement by contributing to multiple codebases while providing technical leadership within Agile teams; implement forward-thinking solutions through careful planning.
• Drive cybersecurity testing standards in collaboration with architecture teams.
• Conduct thorough vulnerability assessments on both existing and new products.
• Implement and maintain software automation tools based on current software development technologies.
• Advise on feasibility, implementation, process improvements, and maintenance plans for cybersecurity test automation within the group.
• Lead dynamic application security testing (DAST).
• Stay updated on the latest trends in cybersecurity threats, technologies, best practices; adjusting testing methodologies accordingly.
• Design frameworks and implement design patterns that support security testing activities across all levels of the test pyramid.
• Coordinate with third-party partners for developing and executing security tests collaboratively.
• Develop comprehensive training materials and conduct knowledge transfer sessions specifically tailored for our functional group.
• Guide and mentor team members in best practices for software testing and cybersecurity methodologies, focusing on developing automated software tests using our established software automation framework.
• Address and resolve any environmental setup issues related to software test automation, ensuring seamless integration.
• Work closely with peer engineers and architects to tackle complex problems, guaranteeing end-to-end quality delivery.
• Oversee and approve code/test reviews to uphold high standards of quality within our processes.
• Engage in all levels of testing as necessary to ensure a thorough evaluation of our systems.
• Lead discussions to determine the appropriate level at which functionality should be tested.

OTHER DUTIES AND RESPONSIBILITIES

• Leadership and Development: Oversee and guide the functional group's development and effectiveness by providing strategic leadership. Ensure alignment with organizational policies and processes while actively supporting overall business objectives and corporate goals.
• Regulatory and Quality Collaboration: Engage proactively with regulatory and quality assurance peers to enhance processes that uphold industry standards as well as company-specific regulatory and software quality benchmarks.
• Oversight of SQA/Testing Activities: Take responsibility for supervising Software Quality Assurance (SQA) and testing activities across all teams, ensuring consistency in best practices organization-wide. Emphasize maintainability, reusability, and scalability of tests to facilitate seamless integration across various projects.

MINIMUM QUALIFICATION REQUIREMENTS

Education

Bachelor’s degree in Computer Science, Engineering or, equivalent of education and experience sufficient to successfully perform the essential functions of the job may be considered.

Experience

Minimum 8 years experience in an SDET role; with at least 5 years experience in Cybersecurity Testing.

Skills

• Demonstrate expert-level understanding of computer science fundamentals, including design patterns, data structures, Object-Oriented Programming (OOP), and software design principles.
• Mastery in identifying and mitigating security vulnerabilities, with a strong understanding of cybersecurity frameworks and protocols relevant to medical devices.
• Exhibit advanced proficiency in cybersecurity test techniques, contributing significantly to our security infrastructure.
• Advanced skills in developing automated test scripts and frameworks.
• Demonstrate expertise in using Source Code Management tools effectively.
• Proficient in object-oriented programming and applications/embedded software development with languages like .NET C#, C++, and Python.
• Familiarity with technologies such as Docker, Terraform, JSON, REST, etc.
• Experience in conducting thorough risk assessments and implementing robust security measures to protect sensitive data within medical devices.
• Experience with cloud platforms like Microsoft Azure and knowledge of cloud security best practices.
• Skilled in dynamic application security testing (DAST) using various tools and techniques.
• Experience implementing solutions that maximize test efficiency.
• Proficient in prescribing and implementing automated cybersecurity testing principles and best practices for unit, component, interface, and system-level tests.
• Ability to assimilate knowledge swiftly with a strong sense of urgency and enthusiasm.
• Demonstrated team-oriented behavior with the ability to work collaboratively.
• Encourages continuous learning and adoption of new technologies among peers.
• Motivates both self and others to achieve desired results effectively.
• Takes constructive action when facing challenges or obstacles while managing associated risks prudently.
• Makes high-quality decisions decisively even when faced with incomplete information or uncertainty.
• Balances the interests of multiple stakeholders effectively while resolving differences productively with minimal disruption.

-Or-

An equivalent competency level acquired through a variation of these qualifications may be considered.

PHYSICAL REQUIREMENTS

Hybrid position reporting to the Lakewood, CO headquarters a minimum of 3 days a week.

Typical Office Environment requirements include reading, speaking, hearing, close vision, walking, bending, sitting, and occasional lifting up to 20 pounds.

The physical demands described here are representative of those that must be met by an associate to successfully perform the essential duties of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential duties.

Target Pay Range:  $140,400.00 to $175,500.00  -  Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant, internal equity, and alignment with market data
Target Bonus on Base:  15.0%

At Terumo Blood and Cell Technologies, we provide competitive total reward offerings that consist of compensation, benefits, recognition, along with a wealth of other well-being, work-life and recognition programs which support in unlocking the potential for you and your family. Included in our expansive list of benefits offerings are multiple group medical, dental and vision plans, a robust wellness program, life insurance and disability coverages, also a variety of voluntary programs such as group accident, hospital indemnity, critical illness, pet insurance and much more. To help you save for retirement, we offer a 401(k) plan with a matching contribution and for work-life balance we have vacation and sick time programs for associates. For us, it’s about protecting the personal welfare of our associates and their families, helping to achieve personal goals and offering those extra touches for convenience, security and overall peace of mind.

• Terumo Blood and Cell Technologies is part of Terumo Group, founded in 1921 and headquartered in Tokyo, Japan.
• In 2019, Terumo Blood and Cell Technologies reached $1 billion in revenue.
• We employ nearly 7,000 associates globally, with global headquarters in Lakewood, CO, U.S., and regional headquarters in Brussels, Buenos Aires, Singapore and Tokyo.
• We manufacture devices, disposable sets and solutions at our facilities in Belgium, India, Japan, Northern Ireland, the U.S. and Vietnam. Our global presence enables us to serve customers in more than 130 countries.
• Our core values help set our direction, guide our actions and keep us true to our corporate mission of contributing to society through healthcare.
  • Respect – Appreciative of others
  • Integrity – Guided by our mission
  • Care – Empathetic to patients
  • Quality – Committed to excellence
  • Creativity – Striving for innovation
• We contribute to the Leukemia and Lymphoma Society (LLS), raising $1.3 million USD since 2007.

We are proud to be an Equal Opportunity Affirmative Action Employer.  All applicants will be afforded equal opportunity without discrimination because of race, color, religion, sex, gender identity or expression, sexual orientation, marital status, order of protection status, national origin or ancestry, citizenship status, age, physical or mental disability unrelated to ability, military status or an unfavorable discharge from military service.

Terumo Blood and Cell Technologies is committed to providing a safe, healthy and secure working environment. Our Colorado campus locations are tobacco-free workplaces, and we maintain a drug-free workplace and perform pre-employment substance abuse testing and detailed background verification.