Senior Product Security Engineer - Onsite

We anticipate the application window for this opening will close on 13 Jun 2026.

As a Senior Product Security Engineer at Medtronic, you will design advanced cybersecurity architectures and effective procedural frameworks to support cyber resilience throughout the product life cycle. You will work onsite 4 days a week at our Minnesota Rice Creek East facility.

• Implement security requirements across the medical device development lifecycle by collaborating with teams to uphold best practices from design to deployment.
• Conduct threat modeling and vulnerability assessments to identify and mitigate security risks throughout the product lifecycle.
• Support the design and deployment of secure medical devices by implementing features such as secure boot, communications, data protection, updates, integration, and access controls.
• Implement and mature the digital health platform architecture to meet customer expectations and enable development of digital solutions across Neuromodulation and Pain & Hypertension.
• Define and execute surveillance strategy across web applications and cloud native platforms.
• Implement and maintain security policies for medical devices following industry standards such as NIST, ISO
  27001, and IEC 81001-5-1.
• Assess compliance regularly and work with development teams to improve security practices.
• Stay updated on cybersecurity trends in medical devices and health software; apply best practices.

• Bachelor's degree in Computer Science or related field with 4+ years experience in cyber security, embedded systems security, IoT security, IT security, or related role.
• Advanced degree in Computer Science or related field with significant academic work in cyber security and 3+ years experience in a related role.

• Strong understanding of cybersecurity concepts and frameworks (e.g., NIST, OWASP).
• Familiarity with security standards such as ISO 27001, ISO 14971, or HITRUST.
• Knowledge of secure software development lifecycle (SDLC) principles and Dev Sec Ops .
• Understanding of advanced cryptography, Hardware Security Module concepts, and secure key generation and management.

• Proactive communication skills to identify, present, and persuade leadership on cybersecurity risks.
• Strong problem‑solving and analytical skills.
• Ability to collaborate effectively in cross‑functional teams.

CompTIA Security+, CISSP, CISM, or similar security certifications.

The above statements describe the general nature of the work. Reasonable accommodations may be made for individuals with disabilities. Specific physical demands include mobility and interaction with a computer.

U.S. work authorization sponsorship is offered exclusively for Principal-level roles and above. Roles below the Principal level require candidates to possess unrestricted U.S. work authorization at the time of hire.

Salary range: $132,000 - $198,000 USD (U.S. locations excluding Puerto Rico and specific CA locations). Additional compensation includes Medtronic Incentive Plan and various benefits such as health, dental, vision, HSA, 401(k), paid time off, and more.

It is the policy of Medtronic to provide equal employment opportunity to all persons regardless of protected characteristics. Medtronic will provide reasonable accommodations for qualified individuals with disabilities.