Tasks and job

• Contact with Product security office, system architects, security engineers, and specific functional groups, stakeholders (eg. managers)
• Designing the security software architecture of the medical device
• Supporting the development of the embedded software of a medical device according to cybersecurity aspects, in compliance with the processes.
• Analysis, evaluation and solution of vulnerabilities and weaknesses
• Monitoring market security trends and innovations
• Contact and cooperation with corporate Product Security Office and security responsibles
• Making proposals for further developments and improvements
• Preparation of software documentation
• Improvement and support in introduction of cybersecurity processes.

Professional competencies

Expectations:

• Min. 5 years of experience in Software Engineering or Operations role
• Strong and hands-on experience with Linux (sysadmin, scripting, security hardening)
• Strong understanding of cybersecurity principles, frameworks, standards and applied cryptography
• Experience with various security tools.

Preferences:

• Proven Experience with product safety
• Experience in threat modeling, security assessments.
• Securing x86 based systems (UEFI, secure boot, TPM)
• Up-to-date knowledge of security trends and hacker tactics
• Experience with Penetration testing process
• Experience with Microsoft Azure solutions
• Experience with programming languages: python
• Experience with software development methods (e.g. SCRUM, TDD, CleanCode)
• Experience with the following tools: Git, Jira, Doors / Polarion, Enterprise Architect, Sonar Qube
• Experience in software design and development (medical device development is a plus)

Personal competencies

• Excellent analytical, problem-solving, and communication skills.
• Fluent English language skills
• Accurate, precise work
• Demand for continuous learning and self-development
• Result-oriented, open minded, able to change and adapt
• Team spirit