Contributes to a cybersecurity vision that aligns with the organization's vision and strategic plan. Utilizes solid understanding of device and system connectivity concepts in a medical device domain. Provides direction to technical team members that are accountable for implementing cybersecurity, integration, and connectivity deliverables. Exhibits creativity and innovation in completing divisional and cross-functional/business unit goals and objectives.

What you'll be doing:

• Lead execution of cybersecurity projects across multiple products at all stages of product development, from concept through design, regulatory approval, launch, maintenance, and discontinuation.

• Own cybersecurity roadmaps, vendor engagement, and strategic efforts (including penetration testing, product certification, etc.)

• Collaborate with cybersecurity leaders across the organization to develop, improve, and implement product security processes, tool, governance, and best practices.

• Provide technical leadership and development of team members.

• Drive transparent communication about security risk of product portfolio, identify continuous improvement opportunities, and lead risk reduction efforts.

• Communicate and drive understanding of product security health, vulnerabilities, and escalations with business and regulatory leaders.

• Participate in industry activities, staying aligned with and strategically driving guidance and regulations.

What you'll bring:

• BS in computer science, engineering, mathematics, information management, or related field with 12+ years of industry experience.

• 5 + years of experience in industry (healthcare/medical devices preferred)

• Subject matter expert knowledge of best practices for cybersecurity across all stages of product development.

• Experience with threat modeling, penetration testing, fuzz testing, vulnerability scanning, secure code analysis.

• Experience with cybersecurity related software such as Blackduck, Coverity, etc.

• Experience dealing with threat intelligence, CWEs and CVEs.

• Familiarity with cybersecurity related organizations and certifications such as UL (UL-2900), ICS-CERT, FIPS 140, etc.

• Experience with cybersecurity functionality on embedded systems and hosted software applications.

• Experience with design control requirements (CFR 820.30, ISO 13485), risk management (ISO 14971), and regulatory guidance

• Requires strong organization and communication skills, with the ability to interface with both technical and non-technical personnel.

• Medical device experience a plus.

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time.

Baxter is committed to supporting the needs for flexibility in the workplace. We do so through our flexible workplace policy which includes a minimum of 3 days a week onsite. This policy provides the benefits of connecting and collaborating in-person in support of our Mission.

We understand compensation is an important factor as you consider the next step in your career. At Baxter, we are committed to equitable pay for all employees, and we strive to be more transparent with our pay practices. The estimated base salary for this position is $152,000 to $209,000 annually. The estimated range is meant to reflect an anticipated salary range for the position. We may pay more or less than of the anticipated range based upon market data and other factors, all of which are subject to change. Individual pay is based on upon location, skills and expertise, experience, and other relevant factors. This position may also be eligible for discretionary bonuses. For questions about this, our pay philosophy, and available benefits, please speak to the recruiter if you decide to apply and are selected for an interview.