Ph3Experteer Overview /h3pIn this Cybersecurity Engineer II role, you will strengthen the security posture of STERIS healthcare technology products. You’ll work within the RD controls team to design secure software and assess vulnerabilities across software and hardware. You will engage with product teams to embed secure-by-design practices and lead risk assessments and testing efforts. This position offers the opportunity to shape security standards and contribute to patient safety through robust cybersecurity practices. /ph3Retribuzione / Benefits /h3ulliAnalyze CVEs from open sources and assess applicability to STERIS products, guiding remediation with product teams /liliDevelop and track SBOMs, monitor vulnerabilities, and coordinate remediation with product teams /liliIdentify software security vulnerabilities and collaborate on remediation and planning /liliAssist and support product security risk assessments, requirements analysis, and test methods /liliEvaluate and execute product security testing, including test planning and procedures /liliPerform vulnerability assessment and network scanning activities /liliConduct internal fuzz testing to identify product vulnerabilities /liliReproduce penetration testing findings to enable effective remediation /liliImplement security controls for software embedded in STERIS products and other applications /liliResearch new security testing techniques and improve device security /liliParticipate in cybersecurity improvement projects, tools, and practices /liliProduce security assessments and documentation for FDA 510(k) submissions (risk management, threat modeling, security architecture, vulnerability management, compliance deliverables) /liliRespond to cybersecurity questionnaires from customers /liliCreate and update FAQs and knowledge articles for customer inquiries /liliPerform other related duties as assigned /li /ulh3Responsabilità /h3ulliBachelor's degree in Computer Science (or related field) required /liliAt least 3 years of direct cybersecurity experience including risk assessments and security testing /liliAt least 1 year of vulnerability assessment and software development lifecycle experience /liliKnowledge of programming languages such as Python, C/C++/C#, Java /liliExperience analyzing penetration test results and recommending corrective actions /liliEnglish language proficiency at level B2 minimum /li /ul /p #J-18808-Ljbffr