Principal SDET, Cybersecurity Test Engineer

The Principal SDET - Cybersecurity Test Engineer is a senior technical leader in our medical device organization committed to improving patient outcomes through innovative, life-saving technology. This role is responsible for developing and driving the cybersecurity testing strategy across the Software Quality Engineering organization while enabling the broader organization to consistently implement and execute a unified cybersecurity testing approach. By establishing scalable practices and strong technical leadership, the Principal SDET ensures long-term organizational capability and maturity in cybersecurity testing.

A core focus of this role is embedding cybersecurity as a continuous, front-loaded component of the software development lifecycle to enable early identification and prevention of vulnerabilities and potential security risks, while maintaining compliance with medical device regulatory requirements. The Principal SDET is responsible for evaluating, documenting, managing, and developing cybersecurity tests for TBCT software systems within the R&D organization.

Effective collaboration is essential to success in this role, requiring strong partnerships with Software Architects, Software Development, Software Test, Systems Engineering, DevOps, Product Security, business leadership, and external consultants. This individual ensures comprehensive coverage of cybersecurity requirements that are translated into actionable, testable, and verifiable outcomes across teams, enabling consistent execution of cybersecurity test strategies.

ESSENTIAL DUTIES

• Define a standardized cybersecurity testing strategy for the Software Quality Engineering organization that aligns with product architecture, regulatory requirements, and business goals.
• Train and mentor engineers on cybersecurity testing practices, build training materials, and run knowledge transfer sessions so teams can execute independently.
• Build cybersecurity test plans that meet medical device regulatory standards.
• Run risk and vulnerability assessments on new and existing products and put security testing protocols in place to protect sensitive data.
• Oversee the design and execution of automated test scripts and frameworks across all levels of the test pyramid and apply design patterns suited to security testing.
• Lead dynamic application security testing (DAST) and advise the group on the feasibility, implementation, and maintenance of cybersecurity test automation.
• Work with architecture teams to set cybersecurity testing standards and shape software architecture and development practices so vulnerabilities surface earlier.
• Partner with development, cybersecurity, quality assurance, peer engineers, and architects to find vulnerabilities and embed security testing into the product lifecycle.
• Coordinate with external partners and consultants on joint security testing.
• Contribute to multiple codebases within Scrum teams, resolve environment and test automation issues, and review and approve code and test changes.
• Lead discussions about which test level is right for a given piece of functionality, and engage at any test level when the work requires it.
• Keep up with new cybersecurity threats, tools, and practices, and revise testing methods when needed., * Provide strategic leadership for the functional group and keep its direction aligned with company policies and business goals.
• Work with regulatory and quality assurance peers to improve processes that meet industry standards and company-specific benchmarks. Support inspection readiness with clear processes, documentation, and traceability.
• Supervise Software Quality Engineering and testing activities across teams so best practices stay consistent organization wide. Keep tests maintainable, reusable, and scalable so they integrate cleanly across projects.

Bachelor's degree in Computer Science, Engineering or, equivalent of education and experience sufficient to successfully perform the essential functions of the job may be considered., Minimum 8 years experience in an SDET role; with at least 5 years experience in Cybersecurity Testing., * Strong foundation in computer science fundamentals, including design patterns, data structures, object-oriented programming (OOP), and software design principles.

• Proficient in object-oriented and embedded software development using C#, C++, and Python.
• Deep expertise in cybersecurity principles, frameworks, and secure software development practices, particularly for medical devices.
• Skilled in identifying, assessing, and mitigating security vulnerabilities, including performing structured risk assessments.
• Extensive experience designing and implementing automated test frameworks and scripting solutions.
• Proficient in applying cybersecurity testing across all levels, including unit, integration, and system testing.
• Experience in integrating automated testing and security practices into CI/CD pipelines (DevSecOps).
• Hands-on experience with DAST and other security testing tools, methodologies, and techniques.
• Holds relevant cybersecurity and product security certifications (e.g., CISSP, CSSLP, OSCP).
• Familiar with modern development technologies, including Docker, REST APIs, JSON, and cloud platforms (Azure).
• Skilled in source code management, version control, and collaborative development workflows (e.g., Git-based environments).
• Proven ability to drive organizational change, align stakeholders, and lead adoption of engineering and security best practices.
• Strong technical leadership and cross-functional communication skills, with the ability to influence architecture, development, and quality strategies.
• Self-driven, adaptable, and committed to continuous learning, innovation, and process improvement.

-Or-

An equivalent competency level acquired through a variation of these qualifications may be considered.

PHYSICAL REQUIREMENTS

Hybrid position reporting to the Lakewood, CO headquarters, a minimum of 3 days a week.

Typical Office Environment requirements include reading, speaking, hearing, close vision, walking, bending, sitting, and occasional lifting up to 20 pounds.

Target Pay Range:$144,000.00to$180,000.00 -Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant, internal equity, and alignment with market data Target Bonus on Base:15.0%

At Terumo Blood and Cell Technologies, our 8,000+ global associates proud to come to work each day, knowing that what we do impacts the lives of patients around the world. For Terumo, for Everyone, Everywhere. We make medical devices and related products that are used to collect, separate, manufacture and process various components of blood and cells. With our innovative technologies and service offerings, we touch a patient's life every second of every day and are committed to continuing to increase the number of patients we serve. Advancing healthcare with heart. With some of the best and brightest minds in the industry, an unmatched global footprint, comprehensive benefits and a distinct culture, Terumo Blood and Cell Technologies is a great place to work, grow and be part of a team that is focused on making a difference. Join us and help shape wherever we go next. You create your future and ours., At Terumo Blood and Cell Technologies, we provide competitive total reward offerings that consist of compensation, benefits, recognition, along with a wealth of other well-being, work-life and recognition programs which support in unlocking the potential for you and your family.Included in our expansive list of benefits offerings are multiple group medical, dental and vision plans, a robust wellness program, life insurance and disability coverages, also a variety of voluntary programs such as group accident, hospital indemnity, critical illness, pet insurance and much more.To help you save for retirement, we offer a 401(k) plan with a matching contribution and for work-life balance we have vacation and sick time programs for associates.For us, it's about protecting the personal welfare of our associates and their families, helping to achieve personal goals and offering those extra touches for convenience, security and overall peace of mind. * Terumo Blood and Cell Technologies is part of Terumo Group, founded in 1921 and headquartered in Tokyo, Japan. * In 2024, Terumo Blood and Cell Technologies reached $1.5 billion in revenue. * We employ nearly 8,000 associates globally, with global headquarters in Lakewood, CO, U.S., and regional headquarters in Brussels, Buenos Aires, Singapore and Tokyo. * We manufacture devices, disposable sets and solutions at our facilities in Belgium, India, Japan, Northern Ireland, the U.S. and Vietnam. Our global presence enables us to serve customers in more than 130 countries. * Our core values help set our direction, guide our actions and keep us true to our corporate mission of contributing to society through healthcare. + Respect - Appreciative of others + Integrity - Guided by our mission + Care - Empathetic to patients + Quality - Committed to excellence + Creativity - Striving for innovation * We contribute to the Leukemia and Lymphoma Society (LLS), raising $2.4 million USD since 2025.