Why engineering at Stryker?

At Stryker we are dedicated to improving lives, with a passion for researching and developing new medical device products. As an engineer at Stryker, you will be proud of the work that you will be doing, using cutting-edge technologies to make healthcare better. Here, you will work in a supportive culture with other incredibly talented and intelligent people, creating industry-leading medical technology products. You will also have growth opportunities as we have a culture that supports your personal and professional development.

Need another reason to apply? Check out these 8 reasons to join Stryker's engineering team: https://www.strykercareersblog.com/post/8-reasons-to-join-strykers-engineering-team (https://www.strykercareersblog.com/post/8-reasons-to-join-strykers-engineering-team )

Who we want

• Analytica l - Synthesizes complex or diverse information; Collects and researches data; uses intuition and experience to complement data; designs workflows and procedures.

• Problem Solving - Identifies and resolves problems in a timely manner; Gathers and analyzes information skillfully; Develops alternative solutions; Works well in both group and as an individual

• Technical Skills - Assesses own strengths and weaknesses; Pursues training and development opportunities; Strives to continuously build knowledge and skills; Shares expertise with others.

• Communication - Develops a working relationship with the key stakeholders to ensure alignment must work well in a team environment

• Self-motivated - Effectively commits self to achieving and takes advantage of opportunities

What you will do

• Act as subject matter expert on secure lifecycle for a product eco system in terms of architecture and system security

• Responsible for understanding the overall technical capabilities of a product, typical deployment scenarios

• Partner with product teams to perform threat modeling like applying STRIDE and drive the associated security risk analysis and mitigating controls

• Help product teams to prioritize roadmap items to balance security and business risks.

• Work closely with product teams in assessing the risks, mitigations and preparing responses to external organizations.

• Perform manual and automated security code review for complex Desktop, Web and Mobile applications to identify security flaws.

• Leverage DevSecOps to embed security testing into all phases of SDLC to eliminate the repeated steps and drive efficiency (SAST, DAST and IAST)

• Formulates security testing needs

• Supports RnD to implement security risk controls and findings from internal/external audits

• Defines post market monitoring plan including pen tests

• Supports post market vulnerability assessments

What you need: Bachelor's degree (B.A. or B.S.) in Information Systems\Cyber Security, Engineering, Computer Science, or a related field from a four-year college or university; or equivalent

• Knowledge of security risk management related requirements; guidance's; and standards including CVSS scoring. Knowledge in other guidance's NIST, ISO/IEC 81001-5-1, AAMI, etc. is a plus

• Overall 7+ years of hands-on experience involving software and hardware platforms.

• 5+ years of experience in the field of security involving Thick Client and Web applications.

• Experience in testing interfaces like USB, WiFi, Ethernet, Bluetooth etc. is a plus

• Experience working with software development teams

• Experience in NIST framework like using NIST SP 800-53 controls

• Experience in web application security testing tools like Nessus, Metasploit, Burp Suite, SQL map, OWASP ZAP Proxy etc.

• Knowledge in CWE, OWASP Top 10 and WASC THREAT CLASSIFICATION 2.0 methodologies

• Integrating tools like Synopsys Blackduck, Sonatype Nexus-IQ, etc for Software Composition Analysis

• Professional certificate like CEH, having CompTIA CySA+/Security+ will be a plus

• Excellent communication and interpersonal skills.

• Deep technical understanding of common security vulnerabilities and risks, as well as countermeasures and compensating controls

About Stryker

Stryker is a global leader in medical technologies and, together with its customers, is driven to make healthcare better. The company offers innovative products and services in MedSurg, Neurotechnology, Orthopaedics and Spine that help improve patient and healthcare outcomes. Alongside its customers around the world, Stryker impacts more than 130 million patients annually. More information is available at stryker.com. (http:)

Stryker Corporation is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status. Stryker is an EO employer – M/F/Veteran/Disability.