This is where you save and sustain lives

At Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You'll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients.

Baxter's products and therapies are found in almost every hospital worldwide, in clinics and in the home. For over 85 years, we have pioneered significant medical innovations that transform healthcare.

Together, we create a place where we are happy, successful and inspire each other. This is where you can do your best work.

Join us at the intersection of saving and sustaining lives—where your purpose accelerates our mission.

Your Role at Baxter

This is where your work saves lives.

As a Sr Engineer, you will participate in cybersecurity design and analysis of digital platforms. Develop and demonstrate subject matter expert knowledge in state-of-the-art security principles.  Contribute to resolving difficult problems, from conception to final design with team input. Support planning, leading, and delivering project assignments in the evaluation, selection and adaptation of various cybersecurity engineering techniques, procedures, and criteria with minimal guidance and mentoring.

Contributes to a cybersecurity vision that aligns with the organization's vision and strategic plan. Utilizes solid understanding of device and system connectivity concepts in a medical device domain. Provides direction to technical team members that are accountable for implementing cybersecurity, integration, and connectivity deliverables. Exhibits creativity and innovation in completing divisional and cross-functional/business unit goals and objectives.

What you'll be doing

Create/support technical documentation around the security of a product including:

Threat modeling and interface architectureData Protection Impact AssessmentProduct Security whitepapersManufacturer Disclosure Statement for Medical DevicesSoftware Bill of MaterialsStatic code analysis reportsWork collaboratively with the product development teams to establish information security requirements, plans, and policies.Ensure compliance to the product development process and Quality System and Design Control requirements.Establish governance around vulnerability management in productsAssist in responses to and recovery from a security breach in conjunction with other team members and business unitsUse tools (Tenable Nessus, Fortify, Coverity, etc.)  to scan for and test possible product vulnerabilitiesStay ahead of and advise about industry zero day discoveries and react to assess productsWork collaboratively with product teams on annual SOC2 and HiTrust audits for productsInvestigate security breachesParticipate in project planning and scoping of security related deliverables and activities.

What you'll bring

BS in computer science, engineering, mathematics, information management, or related field with 3+ years of industry experience or Masters with 1+ years.1 to 3+ years of secure software development life-cycle experience.Understanding of application security throughout the software life-cycle.Familiarity in addressing OWASP Top 10 vulnerabilities.Experience with threat modeling, penetration testing, fuzz testing, vulnerability scanning, secure code analysis.Experience with Threat modeling methodologies like STRIDE, DREAD, LINDDUN, or PASTA.Experience with cybersecurity related software such as Blackduck, Coverity, etc.Experience dealing with threat intelligence, CWEs and CVEs.Experience performing security risk assessments and the ability to communicate impact of risk.Familiarity with cybersecurity related organizations and certifications such as UL (UL-2900), ICS-CERT, FIPS 140, etc.Experience with cybersecurity functionality on cloud platforms and hosted software applications.Requires strong organization and communication skills, with the ability to interface with both technical and non-technical personnel.Must be able to provide solutions that reflect understanding business objectives.

Equal Employment Opportunity

Baxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic.

Reasonable Accommodations

Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the link here and let us know the nature of your request along with your contact information.

Recruitment Fraud Notice

Baxter has discovered incidents of employment scams, where fraudulent parties pose as Baxter employees, recruiters, or other agents, and engage with online job seekers in an attempt to steal personal and/or financial information. To learn how you can protect yourself, review our Recruitment Fraud Notice.