Jobs
>
Hyderabad

    Senior Product Security Engineer - hyderabad, India - Medtronic

    Medtronic
    Medtronic hyderabad, India

    1 week ago

    Default job background
    Description

    Career That Changes Lives

    The Principal Cyber Info Assurance Analyst will join the Business Information Security team within the Business Partner Services (BPS) group and partner closely with the Global Security Office (GSO). You will serve as a champion of the GSO, focusing on enhancing user experience with our business partners. You'll serve as a cybersecurity and compliance subject matter expert (SME) to the intelligent Data Solutions business. The cybersecurity SME will focus on identifying, prioritizing and driving remediation of all security risks owned by the business

    The primary focus of the role will be on supporting implementation of achieving and/or maintaining HIPAA, GDPR and other regulatory compliance, and achieving and maintaining the ISO27011 and HITRUST certifications. You will facilitate and assist the business by interpreting the requirements and driving technical remediations. Communicate, escalate, and track progress on assessment remediation activities. Understand information security risks that are inherent to a business and articulate those risks in business terms. Support Commercial activities including contracting and IT/security questionnaires. Maintain current knowledge on data privacy and information security topics and their applicable program requirements. Provide concierge service to our business stakeholders when interacting with the GSO.

    We believe that when people from different cultures, genders, and points of view come together, innovation is the result —and everyone wins. Medtronic walks the walk, creating an inclusive culture where you can thrive.

    Bring your talents to an industry leader in medical technology and healthcare solutions – we're a market leader and growing every day. You can be proud to be a part of technologies that are rooted in our long history of mission-driven innovation. You will be empowered to shape your own career. We support your growth with the training, mentorship, and guidance you need to own your future success. Together, we can transform healthcare.

    Join us for a career in IT that changes lives.

    Medtronic is committed to fostering a diverse and inclusive culture. Check out the accomplishments of our Women in IT group ;

    A Day in the Life

  • Maintain relationships within Operating Unit proactively share business' upcoming projects to the GSO
  • Engage with cross functional teams to drive complex data security issues to resolution
  • Contribute continuous improvement to the methodologies and practices of the Business Information Security to attain higher capability maturity levels
  • Track status of open requests/tasks and drive accountability of requestors to ensure timely submitting
  • Partner with the GSO and Privacy to perform deep dives over high risk processes and systems to identify and remediate gaps in data security
  • Support implementing monitoring Security compliance activities related to HITRUST, ISO27001, SOC2, etc.
  • Help facilitate and/or respond to Customer Inquiries
  • Streamline processes and use of tools across Global IT to ensure data flow and security is maintained in the most efficient way possible
  • Provide insight and business background to include data security, encryption, authorization, authentication, and access controls to the GSO process teams, when needed
  • Prepare status reports on data security and privacy matters to educate the Business Relationship Managers (BRM) and business leadership about business owned IT security risks
  • Compile and communicate security/privacy risk to Business IT Leadership, BRMs and business leadership as appropriate
  • Establish a forum for outreach to the broader organization you represent to educate business requestors, business leaders, and IT leadership on the GSO Engagement processes
  • Demonstrate strong knowledge of IT security controls, security risk and threats
  • Regularly meet with the GSO to discuss issues, concerns, complex or high visibility projects, process improvement areas, and review SLA goals and actual results – leverage these relationships and information to ensure business readiness, engagement, and alignment with security programs and initiatives.
  • Act as a resource for security compliance questions, risks, and concerns for the bisomess
  • Perform other security-related duties as and when directed by the Business Information Security management
  • Engage in stakeholder management in their respective business
  • Reach out and meet with stakeholders, educate them about the GSO and Global IT
  • Serve business stakeholders and requesters as "Customers" with a focus on service and support
  • Advise business / R&D teams on attaining security reviews earlier in their projects
  • Hold yourself and your business accountable for committed deliverables and deadlines
  • Ensure timely response to requests for security support from the business.

    • Basic Qualifications

    Must Have (Minimum Qualifications)


    • High school diploma (or equivalent) and 12+ years of experience
    OR

    • Bachelor's degree and 7+ years of experience or advanced degree and 5+ years of experience

    Desired / Preferred Qualifications

    Nice To Have (Preferred Qualifications)

  • Previous Medtronic experience
  • Preference given to current Medtronic employees
  • Strongly preferred:
  • Experience in audit, risk management, vulnerability management, governance, IT security and/or compliance functions
  • Experience with cloud storage systems/PaaS/SaaS
  • Experience with AWS highly regarded
  • Clear understanding of product architecture, data, data flows, and usage
  • Experience working across business units and geographical boundaries to engage IT, business counterparts, and team members
  • Ability to understand, question, and interpret internal and external security environments
  • 3+ years working in IT GRC or controls function
  • Proven experience dealing with ambiguous situations, and producing a consistent result with varied input
  • Working knowledge of IT and security control frameworks (NIST, CobiT, ITIL, CyberEssentials, HDH), as well as regulatory requirements (PCI, HIPAA, GDPR, CCPA)
  • Knowledge of information risk concepts and practices required
  • Knowledge of controls manifestation in large global corporations with regional and local presence is required
  • Experience communicating conceptual and technical information
  • Experience translating technical data into business impact information
  • Experience working with ServiceNow GRC (Governance, Risk, and Compliance)
  • Knowledge of Frameworks, including PCI, SOX and ISO 27001 is a plus
  • Detailed knowledge of ITGRC, Auditing principles / practices is desired
  • Good understanding of Vendor management desired
  • Good understanding of security frameworks desired, included but not limited to NIST, HISTRUST, OWASP, etc.
  • Good project management skills desired
  • Experience in examining reports on security controls (SSAE-16, PCI-ROC, Application Security Assessments)
  • Saransh Inc

    Security Engineer

    5 days ago

    Saransh Inc hyderabad, India

    Hello, · Trust you are doing well. · We're excited to announce that we're looking for a talented and passionate candidates to join our team for Multiple roles. · Locations: Pune / Bangalore / Hyderabad (Hybrid) · Full-Time · Position #1 · CyberArk- L3 Consultant · Desi ...

  • Softility

    Security Engineer

    5 days ago

    Softility Hyderabad, India

    JOB DESCRIPTION : · ROLE AND RESPONSIBILITIES : · Softility Inc. seeks a skilled Security Engineer or equivalent with minimum 5-6 years of experience on Security Engineering and risk mitigation strategies with primary focus on creation of threat detection use cases and deploy ...

  • Apple

    Security Engineer

    5 days ago

    Apple Hyderabad, India

    Summary: · Do you love working on highly scalable and secure distributed applications? Do you want your technical abilities to be challenged every day and for your work to make a difference in the lives of millions of people?If so, the Product Engineering Systems team is looking ...

  • NTT

    Security Engineer

    1 week ago

    NTT Hyderabad, India

    JOB DESCRIPTION · NTT is a leading global IT solutions and services organisation that brings together people, data and things to create a better and more sustainable future.In today's 'iNTTerconnected' world, connections matter more now than ever. By bringing together talented pe ...

  • Microsoft

    Security Engineer

    1 day ago

    Microsoft Hyderabad, India Full time

    Overview · Microsoft's Edge and Platform Security Fundamentals (EPSF) team is responsible for securing some of Microsoft's largest and most critical online services in Azure and Windows + Devices. We are a part of Azure Edge + Platform (E+P), a globally distributed team responsi ...

  • randstad offshore services

    Security Engineer

    5 days ago

    randstad offshore services hyderabad, India permanent

    Knowledge : · - Strong understanding of security concepts (eg. CIA triad, access control, cryptography) and security threats (eg. malware, phishing, social engineering). · - Working knowledge of network security (eg. firewalls, TCP/IP, VPNs) and system security (eg. OS hardening, ...

  • NTT

    Security Engineer

    5 days ago

    NTT Hyderabad, India

    JOB DESCRIPTION · NTT is a leading global IT solutions and services organisation that brings together people, data and things to create a better and more sustainable future.In today's 'iNTTerconnected' world, connections matter more now than ever. By bringing together talented pe ...

  • NTT

    Security Engineer

    3 weeks ago

    NTT Hyderabad, India Full time

    NTT is a leading global IT solutions and services organisation that brings together people, data and things to create a better and more sustainable future. · In today's 'iNTTerconnected' world, connections matter more now than ever. By bringing together talented people, world-cla ...

  • Saransh Inc

    Security Engineer

    1 week ago

    Saransh Inc Hyderabad, India

    Hello,Trust you are doing well.We're excited to announce that we're looking for a talented and passionate candidates to join our team for Multiple roles. · Locations: Pune / Bangalore / Hyderabad (Hybrid)Full-Time · Position #1 · CyberArk- L3 ConsultantDesign, architect, migrate ...

  • Head Digital Works

    Security Engineering Lead

    5 days ago

    Head Digital Works Hyderabad, India

    We are looking for an experienced and highly skilled Security Engineering Lead. The ideal candidate · will play a critical role in overseeing Network and Product Security, Vulnerability Management, Secure · SDLC, Application and offensive security, Mobile and API Security. · R ...

  • Bristol Myers Squibb

    Senior Security Engineer, SAP Security

    5 days ago

    Bristol Myers Squibb hyderabad, India Full time

    Working with Us · Challenging. Meaningful. Life-changing. Those aren't words that are usually associated with a job. But working at Bristol Myers Squibb is anything but usual. Here, uniquely interesting work happens every day, in every department. From optimizing a production li ...

  • Live Connections

    Cloud Security Engineer

    3 weeks ago

    Live Connections Hyderabad, India

    Company Description · Live Connections is a search and recruitment organization that specializes in finding and placing professionals across all sectors. With over 25 years of cumulative recruitment experience, Live Connections has placed over 20,000 professionals across 350+ cli ...

  • Castellum Labs

    Network Security Engineer

    3 weeks ago

    Castellum Labs Hyderabad, India

    NOTE -- This role is for you, · IF YOU ARE A NETWORK ENGINEER AND WANT TO SHIFT INTO SECURITY. · IF YOU ARE A NETWORK SECURITY ADMIN AND WANT TO SHIFT TO NETWORK PEN/AUDIT/CONTROLS. · Company Description · Castellum Labs is a next-generation cybersecurity technology venture base ...

  • BreachLock Inc

    Security Automation Engineer

    5 days ago

    BreachLock Inc hyderabad, India

    About Breachlock · BreachLock is an Innovative Cybersecurity Company deploying new-age technology to make Cyberspace a safe place for everyone. · Recognized by Gartner as a key Cybersecurity Innovator 3 years in a row, BreachLock is a growth Scaleup with Offices in the US, Europe ...

  • Tech Mahindra

    Cyber Security Engineer

    5 days ago

    Tech Mahindra Hyderabad, India

    Job Title: Cyber Security Operational Lead · Experience: 10+ years · Must Skills: SIEM, Cyber SOC, Vulnerability Management, EDR tools · Location: Hyderabad · Timings: General shift · Notice period: Immediate to 60days. · • 10+ years of experience in delivering Cybersecurity Oper ...

  • Live Connections

    Cloud Security Engineer

    3 weeks ago

    Live Connections Hyderabad, India

    Hi All, · Hiring on Cloud Security Engineer - Full Time/Permanent – Hyderabad Location. · Interested Applicants please share resumes to · Client: Confidential · Mandatory Skills: Lambda, SQS, SNS, AWS (4+ Years), API, Microservices, network and security architectures,Python, Bas ...

  • Inovalon

    Staff Security Engineer

    5 days ago

    Inovalon hyderabad, India

    Inovalon was founded in 1998 on the belief that technology, and data specifically, would empower the transformation of the entire healthcare ecosystem for the better, improving both outcomes and economics. At Inovalon, we believe that when our customers are successful in their mi ...

  • Live Connections

    Cloud Security Engineer

    2 weeks ago

    Live Connections Hyderabad, India

    Role - Cloud Security Engineer · Experience - 5+ years · Location - Hyderabad · Work Mode - Hybrid · Notice Period - Immediate to 30 days · Must Have · 4 years experience in AWS (Lambda, SQS, SNS etc) · AWS Cloud Security Design & Patterns · Responsibilities · Implement and autom ...

  • Micron

    Security Test Engineer

    5 days ago

    Micron hyderabad, India

    Our vision is to transform how the world uses information to enrich life for all. · Micron Technology is a world leader in innovating memory and storage solutions that accelerate the transformation of information into intelligence, inspiring the world to learn, communicate and ...

  • DAZN

    Cloud Security Engineer

    1 week ago

    DAZN Hyderabad, India

    WHAT'S YOUR NEW ROLE ABOUT? · What's better than engineering the streaming platform reaching millions of concurrent users globally? Doing it with millions more in mind DAZN are a leading worldwide sports broadcaster, changing the game.To enable us manage the risk of such a fast-g ...