Cybersecurity Specialist - Cyber Resilience

At Medtronic you can begin a life-long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.

A Day in the LifeThe person in this role may work remotely within the US or onsite at a US-based Medtronic facility.

We are seeking a highly skilled Cyber Security Threat Intelligence Specialist to join our dynamic cyber security team. In this role, you will be responsible for identifying, analyzing, and mitigating cyber threats to protect our organization’s assets and data. You will leverage your expertise in threat intelligence to enhance our security posture and ensure the organization is well-prepared to respond to evolving threats. Key activities include:

• Threat Analysis: Monitor and analyze cyber threats and vulnerabilities from various sources, including open-source intelligence, industry reports, and dark web forums.
• Intelligence Gathering: Collect and synthesize threat intelligence data to produce actionable insights and reports that inform security strategies.
• Incident Response Support: Collaborate with incident response teams to provide intelligence on threat actors, tactics, techniques, and procedures (TTPs) relevant to ongoing incidents.
• Reporting: Create and present threat intelligence reports, dashboards, and briefings to stakeholders at various levels within the organization.

We believe that when people from different cultures, genders, and points of view come together, innovation is the result —and everyone wins. Medtronic walks the walk, creating an inclusive culture where you can thrive. Our unwavering commitment to inclusion, diversity, and equity (ID&E) means zero barriers to opportunity within Medtronic and a culture where all employees belong, are respected, and feel valued for who they are and the life experiences they contribute. We know equity starts beyond our workplace, and we must play a role in addressing systemic inequities in our communications if we hope to have long-term sustainable impact.

Anchored in our Mission, we continue to drive ID&E forward both to enhance the well-being of Medtronic employees and to accelerate innovation that brings our lifesaving technologies to more people in more places around the world.

Bring your talents to an industry leader in medical technology and healthcare solutions – we’re a market leader and growing every day. You can be proud to be a part of technologies that are rooted in our long history of mission-driven innovation. You will be empowered to shape your own career. We encourage and support your growth with the training, mentorship, and guidance you need to own your future success. Together, we can transform healthcare. Join us for a career in IT that changes lives. Medtronic is committed to fostering a diverse and inclusive culture. Check out the accomplishments of our Women in IT group! http://bit.ly/MedtronicWomeninIT

CAREERS THAT CHANGE LIVES

• Participate in daily briefing with the cyber security team to discuss recent incidents, emerging threats, and relevant news from the cyber landscape. This may involve reviewing reports from various threat intelligence feeds and sharing insights with colleagues.
• Spend time gathering intelligence from a variety of sources, including open-source intelligence (OSINT), industry reports, and threat intelligence platforms. Review recent vulnerabilities, malware developments, and tactics used by threat actors.
• Analyze the collected data to identify trends, patterns, and potential threats specific to the organization. Create a summary report outlining actionable insights and recommended mitigation strategies for the security team and key stakeholders.
• Meet with the incident response team to provide intelligence support for ongoing investigations. Share insights about threat actors, their methodologies, and potential indicators of compromise (IOCs) relevant to the current incidents
• Collaborate with the vulnerability management team to review the latest vulnerability assessments. Discuss findings and recommend prioritization based on threat intelligence and potential impact on the organization.
• Work on developing or refining threat models for the organization. This involves mapping out potential attack vectors, assessing the organization’s defenses, and recommending improvements based on intelligence findings.
• Contribute to creating training materials for employees on current cyber threats and best practices for maintaining security hygiene. Plan upcoming awareness sessions to educate staff about recognizing phishing attempts and other social engineering tactics.
• Deliver virtual and live cyber threat briefs to the organization on a weekly cadence
• Write and deliver situational threat briefings to all levels of the organization and have a heightened awareness of events that are in mainstream media that could impact MDT.
• Formulate specific hypotheses about potential threats based on previous incidents, emerging trends, or known vulnerabilities.
• Determine which systems, applications, or data sets will be the focus of the hunt, often based on risk assessments or threat intelligence.
• Collect logs from various sources, such as SIEM (Security Information and Event Management) systems, firewalls, and endpoint detection and response (EDR) tools.
• Use threat intelligence feeds to identify indicators of compromise (IOCs), tactics, techniques, and procedures (TTPs) associated with known threat actors.
• Employ specialized threat hunting tools (e.g., EDR solutions, network traffic analyzers) to facilitate in-depth analysis.
• Write scripts or use automation tools to streamline data collection, analysis, and reporting processes.
• Stay abreast of emerging trends and technologies in cloud security, incorporating innovative solutions to keep our services at the cutting edge.
• Record all findings, methodologies, and any identified threats in a structured format for future reference.
• Evaluate the effectiveness of the threat hunting process, discussing what worked well and what could be improved in future hunts.
• Contribute to and cultivate a culture which promotes the development of business capabilities, process excellence, and shared best practice execution.
• Gather, review, assess and partner to drive new ideas, initiatives and projects through innovation, demand and global portfolio processes.
• Foster a positive, engaging and challenging team-focused ‘global’ work environment to ensure high productivity, employee engagement, and optimal performance.
• Proactively engage with Medtronic business and Global IT partners to identify and define opportunities where the application of information technology can advance the strategic goals and objectives of Medtronic.
• Act as role model by “living” and demonstrating the Medtronic

MUST HAVE (Minimum Qualifications)

• High school diploma (or equivalent) and 2+ years of experience     

NICE TO HAVE (Preferred Qualifications)

• Strongly Preferred:
  • Previous Medtronic experience
  • 2+ years of Information Security experience
  • Experience in a global enterprise on a defined cyber security team
  • Experience participating in incident response events and response
  • Experience briefing leadership and speaking to the organization broadly
  • Experience identifying key threats and vulnerabilities and reporting them out to the organization
• Familiarity with frameworks like MITRE ATT&CK, Diamond Model, or Cyber Kill Chain, which help in understanding and categorizing threats
• Basic understanding of reverse engineering and static/dynamic analysis of malware to identify behaviors and capabilities.
• Skills in evaluating risks and vulnerabilities to help prioritize threats based on potential impact and likelihood.
• Familiarity with cloud environments (e.g., AWS, Azure, GCP) and the specific threats associated with cloud security.
• Understanding of social engineering tactics to help recognize and counteract human-targeted threats.

Physical Job Requirements

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position. 

The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.

Benefits & Compensation
 

Medtronic offers a competitive Salary and flexible Benefits Package
A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create.  We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.
 

Salary ranges for U.S (excl. PR) locations (USD):$89,600.00 - $134,400.00

This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).

The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).

Medtronic benefits and compensation plans

About Medtronic

We lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.
Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 90,000+ passionate people. 
We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab, to the factory floor, to the conference room, every one of us experiments, creates, builds, improves and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.

Learn more about our business, mission, and our commitment to diversity here.

It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.

At Medtronic, most positions are posted on our career site for 3-7 days.