Senior Product Security Penetration Testing Engineer

We anticipate the application window for this opening will close on - 30 Apr 2026 At Medtronic you can begin a life-long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world. A Day in the Life Act boldly. Compete to win. Move with speed and decisiveness. Foster belonging. Deliver results…the right way. That’s the Medtronic Mindset — our cultural norms. Our brand is rooted in action, not just words. The Medtronic Mindset defines the expectations of our culture. Every person here plays a role in bringing it to life. We recognize your extraordinary potential to ensure future generations live better, healthier lives. The Medtronic Product Security Office (PSO), within the Enterprise Quality organization, provides corporate-level oversight, services, strategy, and collaboration across the Medtronic Operating Units to safeguard medical devices. The Penetration Testing team within the Product Security Office is responsible for providing attacker-like testing, product assessments, and other feedback on the security of devices for Medtronic’s products to the distributed Operating Units across the organization. The Senior Product Security Penetration Testing Engineer will execute complex testing to identify vulnerabilities in Medtronic products and assist with the identification of mitigation strategies. This testing will occur throughout a product’s lifecycle for new product development and market-released products. This person will report to Enterprise Quality, members of this team will consult with product development and support organizations, scope assessments, conduct testing, summarize results, and report findings; all with a high degree of quality, autonomy, and speed. Responsibilities may include the following and other duties may be assigned: Scope, conduct, and report results of embedded product security penetration tests to key stakeholders Contribute ideas to the team to help design test scenarios and improve penetration testing processes related to embedded security Coach junior members on the team and review testing results to ensure accuracy and completeness Rate the severity of vulnerabilities that are identified through testing Stay up to date on current security knowledge Employ a variety of test methods to perform comprehensive vulnerability assessment and penetration testing of products Identify and leverage appropriate tools and techniques to accomplish testing Coordinate with product development engineers to ensure understanding of findings Document, communicate, and summarize the results of testing to relevant stakeholders, including formal test reports Maintain awareness of existing and emerging security research and leverage that knowledge during internal testing activities (an “attacker-like” approach to testing) Analyze, triage and recreate vulnerabilities submitted to Medtronic by 3rd party security researchers Understand current regulations and utilize that knowledge to inform internal testing activities Show creativity and innovation in all aspects of your responsibilities Operate with a high level of independence Contribute to Product Security Office Fiscal Year Initiatives and strategic plans Support ad hoc Product Security Office campaigns and initiatives Must Have: Minimum Requirements: To be considered for this role, please ensure the minimum requirements are evident on your resume. Requires a Bachelors degree and minimum of 4 years of relevant experience OR Master's degree with a minimum of 2 years relevant experience OR PhD with 0 years relevant experience. Nice to Have: Experience in product and embedded security, including assessment and penetration testing of regulated or safety‑critical devices, preferably in the medical device industry Relevant penetration testing and information security certifications (e.g., OSCP/CEH ... (truncated, view full listing at source)