Company Profile:

Stryker is one of the world’s leading medical technology companies and together with our customers we are driven to make healthcare better We offer innovative products and services in Medical and Surgical Neurotechnology Orthopaedics and Spine that help improve patient and hospital outcomes

Job description:

Who we want:
This role is part of product security team under Digital Technologies for Trauma and Extremities that is responsible for overall security posture of a product line.

What you will do

• Responsible for understanding the overall technical capabilities of a product, typical deployment scenarios and drive platform security posture and its improvements.
• Help product teams and product security manager to prioritize roadmap items to balance platform security and business risks
• Own and drive the vulnerability management process including verifying identified platform/cloud related vulnerabilities (infrastructure and docker images) with product teams and tracking them through the vulnerability lifecycle.
• Leverage and implement DevSecOps to create efficiencies in managing security posture of the platform/cloud
• Supports RnD to implement security risk controls related to platform/cloud
• Own secure asset list to be used with a product deployment
• Work closely with product teams in assessing the risks, mitigations and preparing responses to external organizations, if related to platform/cloud security

What you need:

• Bachelors in computer science / electronics engineering or equivalent degree.
• Overall 7+ years of hands-on experience involving software and hardware platforms.
  •   7+ years of experience in the field of security involving Cloud infrastructure
  •    Knowledge of IaaC tools like Teraform
  •   Understanding of AWS cloud-based environments
  •   Experience on IOT security and MDM is a plus
  •    Knowledge in CWE, OWASP Top 10 and NIST 800-53
• Professional certificate, AWS certified security – specialty
• Professional certificates like CEH
• Working knowledge of ethical hacking tools (e.g., Kali Linux, Nessus, Nmap, Burp Suite, Metasploit, Nessus)
• Experience working with software development teams
• Excellent communication and interpersonal skills.
• Deep technical understanding of common security vulnerabilities and risks, as well as countermeasures and compensating controls