Product SecOps Engineer II (Sean)

We anticipate the application window for this opening will close on - 9 May 2025

 

At Medtronic you can begin a life-long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.

A Day in the Life

The Product SecOps Engineer is a crucial role in developing, implementing, and operationalizing secure ecosystem for security asset management. This role spans multiple functions and stages of the product lifecycle, ensuring robust security for medical devices, mobile applications and cloud infrastructure. This role ensures that security assets (e.g., certificates, tokens, passwords, and keys) are managed securely, efficiently, and in compliance with regulatory requirements.  

Key to success in this role will require strong background in cyber security architecture, security infrastructure and asset management. This will be a very collaborative role that would need deliberations, process orientation and procedural documentation. 

 

Key Responsibilities: 

Security Asset Management Process Development and Maintenance:  

• Design, implement, and maintain operational processes for security asset management specific to medical devices and mobile applications.  
• Document procedures for creating, provisioning, rotating, and retiring certificates, tokens, passwords, and/or keys.  
• Ensure processes are aligned with industry standards, regulatory requirements, and internal compliance policies. 

Operational Support:  

• Collaborate with cross-functional teams, including product development, IT, security, and quality assurance, to ensure seamless security asset deployment and lifecycle management.  
• Provide hands-on support for security asset provisioning and troubleshooting for medical devices and mobile applications across the product lifecycle.  
• Monitor and respond to security asset-related incidents and ensure timely resolution. 

Process Improvement:  

• Continuously evaluate and improve security asset management processes to enhance efficiency, security, and scalability.  
• Implement automation tools and workflows to streamline security asset operations where possible. 

Compliance and Governance:  

• Ensure that security asset management procedures adhere to relevant regulatory frameworks such as NIST, ISO 27001, or HITRUST and other applicable standards.  
• Prepare and maintain audit-ready documentation and evidence related to security asset operations. 
• Performs operational Cybersecurity risk assessments.  

Training and Knowledge Sharing:  

• Develop materials and provide guidance to internal stakeholders on security asset management best practices.  
• Share insights and collaborate with teams on secure integration of security assets within the development lifecycle. 

 

Qualifications: 

Education and Experience: 

Bachelor’s degree in Information Security, Computer Science, or a related field (or equivalent work experience).  With 4 years of experience in security operations, security asset management, or a related role, or advanced degree with a minimum of 2 years relevant experience.  

Technical Skills: 

• Strong understanding of security asset management concepts, including public key infrastructure (PKI), certificate authorities, tokens, and password policies.  
• Experience with medical devices, mobile applications, or regulated industries is highly preferred. 
• Familiarity with security standards and frameworks such as NIST, ISO 27001, or HITRUST. 
• Experience with tools and technologies for security asset management (e.g., Hardware Security Modules, Key Management Systems, Vaults).  
• Working knowledge of secure software development lifecycle (SDLC) principles. 
• Scripting and automation skills for process optimization 

Soft Skills: 

• Excellent written and verbal communication skills, with the ability to document technical processes clearly and concisely.  
• Strong problem-solving and analytical skills.  
• Ability to collaborate effectively in cross-functional teams. 

Certifications (Preferred): 

• CompTIA Security+, CISSP, CISM, or similar security certifications.  
• ITIL Certification or other process-oriented qualifications. 

Physical Job Requirements

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position. 

The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.

Benefits & Compensation
 

Medtronic offers a competitive Salary and flexible Benefits Package
A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create.  We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.
 

Salary ranges for U.S (excl. PR) locations (USD):$96,800.00 - $145,200.00

This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).

The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).

The following benefits and additional compensation are available to those regular employees who work 20+ hours per week: Health, Dental and vision insurance, Health Savings Account, Healthcare Flexible Spending Account, Life insurance, Long-term disability leave, Dependent daycare spending account, Tuition assistance/reimbursement, and Simple Steps (global well-being program).

 

The following benefits and additional compensation are available to all regular employees: Incentive plans, 401(k) plan plus employer contribution and match, Short-term disability, Paid time off, Paid holidays, Employee Stock Purchase Plan, Employee Assistance Program, Non-qualified Retirement Plan Supplement (subject to IRS earning minimums), and Capital Accumulation Plan (available to Vice Presidents and above, or subject to IRS earning minimums).

 

Regular employees are those who are not temporary, such as interns.  Temporary employees are eligible for paid sick time, as required under applicable state law, and the Employee Stock Purchase Plan. Please note some of the above benefits may not apply to workers in Puerto Rico.

 

Further details are available at the link below:

Medtronic benefits and compensation plans

About Medtronic

We lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.
Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 95,000+ passionate people. 
We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab, to the factory floor, to the conference room, every one of us experiments, creates, builds, improves and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.

Learn more about our business, mission, and our commitment to diversity here.

It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.

If you are applying to perform work for Medtronic, Inc. (“Medtronic”) in any position which will involve performing at least two (2) hours of work on average each week within the unincorporated areas of Los Angeles County, you can find here a list of all material job duties of the specific job position which Medtronic reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of a conditional offer of employment. Medtronic will consider for employment qualified job applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.