Staff Product Security Engineer

Endoluminal business unit. The successful candidate in this role will serve as the primary security interface between the Endoluminal business unit and our centralized product security teams. This role spans embedded security for network-connected medical devices as well as cloud security for web applications and services. The ideal candidate is a strong individual contributor today with the potential to help shape our long-term security operating model, including mentoring engineers and contributing to future team-building efforts. Essential Job Duties (Specific responsibilities and tasks an individual would be expected to perform in the role. Additional job duties may be determined by functional people manager)

• Act as the product security point of contact for the business unit, collaborating with centralized security, IT, compliance, and engineering teams.

• Drive secure-by-design practices across embedded medical devices and cloud-based applications.

• Provide hands-on technical leadership for security architecture, threat modeling, and risk assessments

• Partner with software teams to manage embedded product security, including interfaces to external imaging systems, devices, removable media, networks, and service tooling.

• Partner with software teams to manage cloud product security, including web apps, services, data platforms, and pipelines.

• Translate corporate security standards into practical product implementations.

• Maintain a hands-on role in design reviews, code reviews, vulnerability management, pen testing, and incident response.

• Support regulatory and industry security requirements relevant to medical devices.

• Set best practices for tools and technologies that make our security posture more effective

Required Skills and Experience (Specific skills, knowledge, and experience that an individual must possess in order to successfully perform in job)

• Hands-on experience in cybersecurity engineering, with working knowledge of both embedded and cloud platforms.

• Experience with embedded system or device security, including secure boot, firmware, interfaces, and attack surface reduction.

• Experience securing cloud-native applications and services, including identity, networking, APIs, data protection.

• Experience in one or more cyber security frameworks and compliance standards, including NIST and ISO.

• Practical experience with threat modeling, vulnerability assessment, and security architecture design.

• Ability to work effectively across organizational boundaries and communicate with engineering, product, and security stakeholders.

• Excellent problem-solving skills and a collaborative mindset.

Required Education and Training (As applicable - Specific education and training that an individual must possess in order to successfully perform in job)

• Bachelor's or Master's degree in computer science or related field.

• Minimum of 8 years relevant experience in software product security., Experience working with medical devices and FDA pre- and post-market cybersecurity guidance.

• Experience with defining and implementing data privacy requirements.

For any Intuitive role subject to export controls, final offers are contingent upon obtaining an approved export license and/or an executed TCP prior to the prospective employee's start date, which may or may not be flexible, and within a timeframe that does not unreasonably impede the hiring need. If applicable, candidates will be notified and instructed on any requirements for these purposes.

We will consider for employment qualified applicants with arrest and conviction records in accordance with fair chance laws.

Preference will be given to qualified candidates who do not reside, or plan to reside, in Alabama, Arkansas, Delaware, Florida, Indiana, Iowa, Louisiana, Maryland, Mississippi, Missouri, Oklahoma, Pennsylvania, South Carolina, or Tennessee.

This position may be filled at a different job level than listed here depending on business need and/or on the selected candidate's experience, knowledge and skills. Compensation will be based primarily on the job level at which the role is filled and the candidate's qualifications, consistent with applicable law.

We provide market-competitive compensation packages, inclusive of base pay, incentives, benefits, and equity. It would not be typical for someone to be hired at the top end of range for the role, as actual pay will be determined based on several factors, including experience, skills, and qualifications. The target compensation ranges are listed. I'm interested I'm interested Privacy Notice

It started with a simple idea: what if surgery could be less invasive and recovery less painful? Nearly 30 years later, that question still fuels everything we do at Intuitive. As a global leader in robotic-assisted surgery and minimally invasive care, our technologies-like the da Vinci surgical system and Ion-have transformed how care is delivered for millions of patients worldwide. We're a team of engineers, clinicians, and innovators united by one purpose: to make surgery smarter, safer, and more human. Every day, our work helps care teams perform with greater precision and patients recover faster, improving outcomes around the world. The problems we solve demand creativity, rigor, and collaboration. The work is challenging, but deeply meaningful-because every improvement we make has the potential to change a life. If you're ready to contribute to something bigger than yourself and help transform the future of healthcare, you'll find your purpose here.