Product Security Expert at Fresenius Medical Care | Hybrid Hired

About the role

Execution of the Product Security Program
Maintain and continuously update the Cybersecurity Risk Register for all products in the portfolio
Execute the Post-Market Surveillance process for cybersecurity, including analysis of security-related complaints, incidents, and vulnerabilities
Operate the Coordinated Vulnerability Disclosure and Incident Response process, including triage, coordination, tracking, and documentation.
Act as the primary coordinator for product-related cybersecurity activities, working closely with R&D and system engineering teams to ensure secure product development
Contribute to the development and rollout of cybersecurity-related policies, SOPs, and guidelines, ensuring alignment with the overall QMS and evolving regulatory requirements
Define and maintain Cybersecurity Management Plans and Security Verification Plans for CE products throughout the development lifecycle
Support Security Risk Management activities, including threat and risk analysis, countermeasure definition, and evaluation of residual cybersecurity risks
Support the preparation of risk/benefit assessments for cybersecurity risks to enable informed decision-making and documentation
Collaborate in product roadmap planning, contributing cybersecurity input and supporting alignment with the state of the art in security technologies and practices

Requirements

Successfully completed bachelor’s or master’s degree in computer science, information technology or similar field
At least 5 years of professional experience in IT Security, cybersecurity (e.g. embedded systems, risk management, regulatory requirements)
In-depth knowledge of enabling technologies and technical solutions in the field of cybersecurity
Experience in R&D in medical devices or other industries with international exposure
Solid knowledge of the whole development cycle for products from regulated industries
Knowledge of relevant cybersecurity regulations and guidelines such as (FDA pre-market and post-market guidance, Section 2.4b CFR, IEC 81001-5-1, IEC 62443-4-1, JSP 2.0)
Relevant cybersecurity certifications are an advantage
Knowledge of cybersecurity relevant tools (e.g. Microsoft Threat Modelling Tool, BlackDuck Binary Analysis Tool, Kali Linux)
Good and professional relationship to and communication with international colleagues and superiors
Fluent English, in written and spoken, German language is a plus.

Benefits

Health insurance
Retirement plans
Paid time off
Flexible work arrangements
Professional development

Similar roles

Browse all Security Engineer jobs

1 hour ago

EB

EQ Bank | Equitable BankLead, Cybersecurity Insider Risk Management

Lead Cybersecurity Insider Risk Management role protecting sensitive data at Equitable Bank. Joining a top FinTech in advancing insider risk strategy and cybersecurity capabilities.

Hybrid Role

Toronto Canada Security Engineer

1 hour ago

BN

Blackhawk NetworkSenior Offensive Security Engineer

Senior Penetration Tester defending fintech platform from payment fraud and cyber threats. Leading offensive security assessments to enhance fraud defenses and ensure customer trust.

Hybrid Role

Pleasanton United States Security Engineer

$157,030 - $212,000 per year

2 hours ago

AP

AprioManager, Security & Compliance Services

Manager leading project management for large engagements at a top - ranked CPA and advisory firm. Focused on compliance automation and fostering client relationships.

Hybrid Role

Denver United States Security Engineer

$120,000 - $160,000 per year

4 hours ago

PS

Precision SolutionsCyber Security SME

Cyber Security SME ensuring the security and compliance of enterprise cloud applications. Collaborating across teams to achieve and maintain security authorization requirements.

Hybrid Role

Sterling United States Security Engineer

20 hours ago

HB

Huntington National BankSenior Segment Risk Manager – Cybersecurity

Segment Risk Manager supporting the Cybersecurity segment with risk management and governance. Collaborating on risk assessments and providing advisory on standards and practices.

Hybrid Role

Dallas United States Security Engineer

$93,000 - $189,000 per year

20 hours ago

TR

TruistSenior Cybersecurity Compliance Consultant

Penetration Testing Coordination Leader managing pre - testing activities and pipelines. Mentoring teams and ensuring timely execution of penetration tests in financial services context.

Onsite Role

Raleigh United States Security Engineer

20 hours ago

SG

Schönbrunn TASC GmbHSales Representative – IT Security Consulting Services

Sales Representative responsible for B2B IT - Security Consulting services. Focused on active sales, relationship management, and new business opportunities in cybersecurity.

Onsite Role

Leonberg Germany Security Engineer

20 hours ago

SG

Schönbrunn TASC GmbHHead of Cybersecurity Consulting

Leading Cybersecurity Consulting initiatives and teams to drive client security strategies at Schönbrunn TASC GmbH. Ensuring the development of secure digital solutions and fostering client relationships.

Hybrid Role

Leonberg Germany Security Engineer

21 hours ago

SE

SemperisSecurity Engineer

Security Engineer focusing on detection and response and collaborating with teams to secure infrastructure at Semperis. Building security monitoring solutions and contributing to risk management.

Hybrid Role

Tel Aviv Israel Security Engineer

22 hours ago

GC

Garmin ClujTeam Leader – Cybersecurity Engineering

Team Leader for Cybersecurity Engineering at Garmin leading a multidisciplinary team focused on Endpoint, Perimeter, and Cloud Security.

Hybrid Role

Cluj-Napoca Romania Security Engineer