Assess existing security architecture and practices for digital and cloud environments, identifying gaps and improvement areas.
Define and recommend integration strategies with IT systems and broader enterprise ecosystems.
Develop and drive regulatory compliance roadmaps, including standards such as ISO, SOC 2 Type II, and SOC 3.
Support onboarding of hospitals and clinics into the Medtronic portal and digital ecosystem by ensuring adherence to security requirements.
Identify common compliance-related queries from healthcare providers (HCPs) and design automated response mechanisms.
Perform threat modeling and risk assessments for digital and cloud platforms.
Conduct vulnerability assessments, including signal monitoring and risk identification.
Implement and align cybersecurity standards and frameworks such as NIST, SOC 2, GDPR, and ISO.
Design and maintain secure architecture for digital and cloud ecosystems.
Manage security risk assessment and vulnerability management processes.
Support customer security requirements, including responding to compliance questionnaires, providing demonstrations, and integrating security controls.

Application Security (SAST, DAST, Secure Coding) - Expert, hands-on experience required
OWASP Tools & Practices - Expert, strong knowledge of OWASP Top 10
NIST Security Framework - Expert, implementation & compliance experience

Experience with healthcare or medical device industry security requirements
Familiarity with cloud platforms (Azure, AWS, Google Cloud Platform) security architecture
Strong understanding of GDPR and data privacy regulations
Excellent communication and stakeholder management skills

Bachelor&s or Master&s degree in Computer Science, Information Security, or related field
Relevant certifications such as CISSP, CISM, CEH, or equivalent are preferred

For applications and inquiries, contact: [email protected]

Senior GCP Security Engineer

Similar Jobs