Job Description

Vantive: A New Company Built On Our Legacy Baxter is on a journey to separate our $5B Kidney Care segment into a standalone company. Vantive. will build on our nearly 70-year legacy in acute therapies and home and in-center dialysis to provide best-in-class care to the people we serve. We believe Vantive will not only build our leadership in the kidney care space, it will also offer meaningful work to those who join us. At Vantive, you will become part of a community of people who are focused, courageous and don\'t settle for the mediocre. Each of us are driven to help improve patients\' lives worldwide. Join us as we revolutionize kidney care and other vital organ support. .Completion of the proposed separation of Kidney Care from Baxter into a standalone company (to be named Vantive) remains subject to the satisfaction of customary conditions. Job Responsibilities In this role you will be responsible for designing, building, testing and implementing systems with the primary goal of security/patient safety across Baxter\'s medical device product portfolio in various operating environments. Some of the focus areas for this position include: Prevention of breach of Intellectual Property (IP), Attack surface minimization, preventive security and privacy controls, incident/vulnerability management. This role requires experience with security technologies and implementation experience for products with varying levels of capabilities and diverse user environments for both internal and external customers. A hands-on experience and interest in latest security standards, protocols, products and systems is mandatory for the success of this role. Essential Responsibilities Support software development teams in building a security by design mindset by supporting implementation and code inline with the Application Security Program mandates. Implement solutions that meet security and privacy requirements defined in the security plans, risk assessments, policies, and procedures. Implement designs in accordance with secure software design guidelines to achieve desired security requirements and controls with the support of development leads, security architects and product owner(s). Implement features in line with the architecture via designs, coding, reviews and tests. Perform Proof of Concept (POC) activities as necessary. Review, Analyze and mitigate SAST, DAST, SCA and penetration test findings in collaboration with the developers for various electromechanical medical devices product lifecycles Implement enhancements to software security controls across multiple medical devices Participate in post-market product analysis to support vulnerability investigations as required as well as be engaged in continuous security monitoring. Desired Technical skills / experience: Security developer able to support software development teams on secure coding practices and application security test report generation and interpretation for various coding languages and environments. Experience with secure software development lifecycle and practices including SAFe/Agile methodologies for software development Understanding of security by design principles and architecture level security concepts Experience in implementing security technologies/techniques like Cryptographic Algorithms/Cipher Suites, Public key Infrastructure (PKI), Hardware/embedded authentication protocols, Embedded security design including Secure Boot, secure communication channels and data-at-rest encryption methods Experience implementing OWASP Top10 application security guidelines in embedded systems Knowledge of embedded system architecture and security controls (e.g., firewall and border router configurations, wireless architectures, specialized appliances, messaging authentication protocols, Experience with penetration testing methodologies and tools including environmental configuration, security analysis, audits and reviews Knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities. Aware of international privacy requirements & cross industry trends. Desired: Exposure to Healthcare IT or medical device industry Qualifications and Skills Bachelor\'s degree in Computer Science, Computer Engineering, a related field or equivalent demonstrated experience and knowledge Minimum 4+ years of experience in software development or related fields. A minimum 2 years technical experience working with cyber security design/development for embedded systems. A minimum 2 years working with each of the following: Experience with embedded C/C++, Python, Linux and/or security design within real-time operating systems Experience analyzing, interpreting, and mitigating security findings from multiple sources including SAST, DAST, SCA and penetration tests. Embedded data at rest security implementations including Code Signing, Secure boot, and flash encryption implementations Embedded/IoT wired and wireless secure networking implementations within multiple layers of the OSI stack IoT/Embedded PKI solutions and implementation Reasonable Accommodations Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the here and let us know the nature of your request along with your contact information. Recruitment Fraud Notice Baxter has discovered incidents of employment scams, where fraudulent parties pose as Baxter employees, recruiters, or other agents, and engage with online job seekers in an attempt to steal personal and/or financial information. To learn how you can protect yourself, review our . 129913

foundit