New The Skills of Tomorrow: how AI-exposed is every skill in 2026? See the data →
Bayer Healthcare LLC

Principal Cybersecurity Engineer

Bayer Healthcare LLC
Apply →
remote senior full-time $190,000.00 to $220,000.00 Whippany

First indexed 6 May 2026

Description

We are seeking a Principal Cybersecurity Engineer to join our team in Whippany, NJ. As a Principal Cybersecurity Engineer, you will define project-level cybersecurity requirements, design and develop security solutions to mitigate product cybersecurity risks, and understand medical device products and clinical applications to identify potential cybersecurity threats and develop mitigations. You will also perform threat modeling, vulnerability testing, security risk analysis, and security assessments, review security architecture and designs, secure medical devices, medical device software, and IT software against cyber threats, lead cybersecurity risk assessments and cyber signal incident responses and investigations, and lead cross-functional teams.

Requirements include a Master's degree in Cybersecurity, Computer Science, Telecommunications, or a closely related field, and 4 years of experience in a cybersecurity-related position in a medical device R&D environment. You should have experience performing threat modeling of regulated medical devices using STRIDE and assessing cybersecurity risk to patient safety and Protected Health Information (PHI), creating security designs and requirements based on user needs, applying security technologies to medical device product designs within software and hardware, including network security, encryption, firewalls, and TPM, leading cross-functional teams in reviewing security architecture and design, applying cybersecurity standards, including NIST CSF, NIST SP 800-30, AAMI TIR57, and AAMI TIR 97, and data privacy standards, including HIPAA, creating documentation for regulatory submissions, including cybersecurity management plans, threat model reports, security risk and cyber signal assessments, MDS2, and SBOM, applying cybersecurity and secure design principles to medical device products in compliance with FDA Cybersecurity Guidance for Medical Devices, conducting security testing and vulnerability scanning using Burp suite, Wireshark, and Nessus, and analyzing findings with qualitative risk prioritization, including CVSS and OWASP, planning and overseeing penetration testing with third-party testers, and developing cybersecurity policies and procedures.

This position may telecommute on a full-time basis from anywhere in the U.S. Up to 10% travel to Pittsburgh, PA is required.

This listing is enriched and indexed by YubHub. To apply, use the employer's original posting: https://talent.bayer.com/careers/job/562949976947899