×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Product Security Engineer

Job in Irvine, Orange County, California, 92713, USA
Listing for: BD
Full Time position
Listed on 2026-06-22
Job specializations:
  • IT/Tech
    Cybersecurity
  • Engineering
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Summary

The Product Security Engineer is responsible for supporting the security of a BD product or subset of features within the product across the development lifecycle. This individual contributes to the delivery of secure products consistent with global regulatory requirements by executing product security program activities under the guidance of senior team members. This role works in partnership with R&D and other stakeholders to support compliance with security technical requirements and reduce security risks within the product or feature set.

Hands‑on execution of product security activities such as threat modeling, vulnerability scanning and remediation, and security risk assessments is required. The successful candidate will apply technical expertise to evaluate security vulnerabilities and contribute to maintainable technical solutions, collaborating with software engineers and R&D team members in a dynamic and agile development environment. Strong written and verbal communication skills are essential.

Responsibilities
  • Security Requirements & Implementation:
    Support project teams in defining and implementing security requirements and technologies for a product or set of features in accordance with industry standards for medical devices, including encryption, authentication, audit logging, hardening measures, SBOM creation and composition, patch management, vulnerability monitoring, and antivirus/antimalware as applicable.
  • Cryptography & PKI:
    Support the selection and implementation of appropriate cryptographic algorithms, key management practices, and certificate lifecycle management (issuance, renewal, revocation) for devices and cloud‑connected components.
  • Secure Communications:
    Evaluate and support secure communication implementations across device interfaces and network protocols relevant to the product, including validation of TLS/mTLS configurations and medical or proprietary protocols as applicable.
  • Cloud & API Security:
    Assist in identifying and addressing security risks in cloud‑connected device backends and associated APIs, including authentication, authorization, and protection of data in transit and at rest.
  • Design Reviews:
    Participate in technical design reviews and code inspections, providing feedback to project team members and following proper coding practices.
  • Security Assessments:
    Support execution of product security risk assessments, hazard analysis, and vulnerability remediation activities in coordination with product development software engineers.
  • Process & Documentation:
    Assist product development teams in complying with product security framework activities and contributing to security documentation, including Incident and Vulnerability Management Plans and Product Security White Papers.
  • Incident Response:
    Participate in product security incident response activities as appropriate.
  • Training & Procedures:
    Where applicable, support the deployment of software engineering procedures and training related to vulnerability scanning and static code analysis tools.
  • Automated Testing:
    Where applicable, assist R&D teams in implementing systems for automated testing of software vulnerabilities and verification of OS security patches.
  • Quality Assurance:
    Where applicable, contribute to quality in R&D security test deliverables, including design, data summary, report preparation, and review for adherence to applicable regulations.
  • May perform other duties as required.
Minimum Required
  • Undergraduate degree in cybersecurity, computer science, computer engineering, software engineering, or related technical field.
  • Minimum of 3+ years in product security, product development, software development, or quality assurance.
  • Foundational knowledge of information security standards for product development.
  • Experience with configuration and use of static code analysis and vulnerability scanning tools.
  • Foundational understanding of applied cryptography and PKI concepts (cipher selection, key management, certificate lifecycle).
Preferred Knowledge, Skills
  • Master’s degree (cybersecurity, computer science, software engineering) with minimum of 2 years of industry experience.
  • Familiarity with product…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search