Software Engineer II

Software Engineer II (Cyber Security) Large, international medical device company is expanding their team and adding a Software Engineer II. Join or team of seasoned professionals to grow your skill set and contribute to our efforts to improve the lives of people with cancer and other diseases. This position will work remotely to start until all staff returns to our facility in Tucson. We need someone with Software Architecture and Development with a keen eye for Cyber Security. This position will be 100% remote and start as soon as a qualified candidate is identified!Position Summary We are designing and developing high quality medical diagnostic devices. In addition to reliability, efficacy, and a wide range of diagnostic tests, the protection of our products against cyber threats is an important expectation from our customers. This Software Engineer role requires a strong background in software architecture, security concepts and secure by design / secure by default principals in order to support our Software Development organization and the Product Teams in assessing Cyber Security risks, defining, implementing and validating security measures, and analyzing threats and vulnerabilities for our medical device product portfolio.Responsibilities -Contribute as a Subject Matter Expert (SME) to the Cyber Security Risk Assessments for the company product portfolio, including the creation of threat models, risk identification, risk rating, selection and verification of mitigations and assessment of residual risk. -Support the Cyber Security architecture by contributing technical knowledge about secure design patterns and the right use of security technologies to the development teams. -Ensure adherence to secure coding practices by using different methods like peer reviews, static code analysis and dynamic system scanning tools. -Interface with Divisional Vulnerability Monitoring Services and assess reported vulnerabilities in the company product context. -Consult the development teams in analyzing potential impacts and exposure of vulnerabilities. -Consult the Product Teams to decide on appropriate vulnerability response strategies. -Collaborate with divisional Cyber Security Analysts and Product Cyber Emergency Response Teams to address divisional Cyber Security vulnerabilities affecting multiple business areas. -Create and review documentation of security concepts, secure designs and plans to maintain the security state of the product portfolio throughout its lifecycle. -Collaborate with Software Development Process Engineers to define and propagate processes in the areas of Cyber Security to enable continuous compliance of product development and maintenance processes. -Manage penetration tests with internal Product Teams and external service providers, and assess the identified findings. -Consistently uses company concepts, policies and procedures, familiar with and follows standard practices. -Projects are assigned with defined scope and goals. -Direction is provided by more senior engineering staff, management or project leader. -Participates in efforts to define new components, products or processes and identify technical challenges. -Makes suggestions to improve work processes. -Plans and executes assigned projects; utilizes thorough technical and theoretical understanding of numerous techniques. -Analyzes data, evaluates results, forms conclusions and provides/implements process or document improvements. -Shares knowledge and expertise with others. -Participates in project planning and/or process updates. -Prepares and delivers presentations to own, or other groups. -Monitors work to ensure quality, and continuously promote Quality First Time.QUALIFICATIONS BS degree (Software Development, Computer Science) or equivalent in a directly related discipline and 5 years related experience in software product development and/or software architecture development. MS degree in a directly related discipline with 2 years of related experience required PhD degree in a directly related discipline without related industry experience needed. Knowledge, Skills and Abilities -Experience in secure software development. -Cyber security certification(s) desired, but not required (e.g. CISA, CSIM, CISSP) -Experience in Cloud security concepts desired. -Experience with medical devices, especially IVD systems, desired. -Ability to convince stakeholders and to adapt communication appropriately to different technical and non-technical audiences -Able to present and discuss data, present alternative action plans (and consequences), and clearly communicate recommendations. -Driven, self-starter with good planning and organizational skills and a strong attention to detail. -Able to pick up new challenges and quickly comprehend core issue(s). -Knowledge about Windows and .Net technology stack (Java and Linux are a plus). -Knowledge of cyber security regulations, laws and standards for the medical device industry. -Demonstrates potential for technical proficiency, engineering creativity, and collaboration with others and independent thought. -Strong understanding of engineering principles and concepts. -Understands and uses the foundational processes and practices for SW planning.Apply today for immediate consideration to EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or .