Job Description

This is where you save and sustain lives At Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You\'ll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients. Baxter\'s products and therapies are found in almost every hospital worldwide, in clinics and in the home. For over 85 years, we have pioneered significant medical innovations that transform healthcare. Together, we create a place where we are happy, successful and inspire each other. This is where you can do your best work. Join us at the intersection of saving and sustaining lives-where your purpose accelerates our mission. About Baxter Baxter provides a broad portfolio of essential renal and hospital products, including home, acute and in-centre dialysis sterile IV solutions infusion systems and devices parenteral nutrition surgery products and anesthetics and pharmacy automation, software and services. The company\'s global footprint and the critical nature of its products and services play a key role in expanding access to healthcare in emerging and developed countries. Baxter\'s employees worldwide are building upon the company\'s rich heritage of medical breakthroughs to advance the next generation of healthcare innovations that enable patient care Job Summary Job Title - Product Security Architect Location - Whitefield, Bangalore Job Responsibilities In this role you will be responsible for designing, building, testing and implementing security systems to ensure security/ safety of Baxter medical devices and the ecosystem they operate in. Prevention of breach of IP Security and Cyber-attacks are the focal areas. This role requires a strategic understanding of the business, customer/ patient needs, product technology and the purpose & values of Baxter to successfully deliver on the group priorities. A deep understanding of the latest security standards, systems, protocols and security products is needed. Are you a security focused system software architect who loves helping developers create secure software Do you know what it takes to ensure that information security application development best practices are understood and implemented into an already established software development lifecycle Do you have the vision to see how systems of product interact in a secure manner If so, this unique opportunity is for you! As a key member of the Central Product Security Team, you will work closely with developers worldwide and scrum teams to ensure the system of product software we create is safe and secure. Essential Responsibilities Proactively drive the security requirements phase along with the product owner(s). Develop security requirements. Drive feature implementations in line with the architecture via designs, coding, reviews and tests. Perform Proof of concept activities as necessary. Drive application security program initiative Work collaboratively with our development and scrum teams to strengthen existing software development lifecycle and standardize secure development process across the company Perform security design reviews of Baxter\'s system of products and drive innovation and improvements Ensure all identified application security vulnerabilities are prioritized and remediated appropriately Define security requirements for system of products across Baxter. Knowledge on various security tools like Blackduck, Coverity, Metasploit etc. Develop and review threat models and security risk assessments Review current system security measures and implement enhancements Support with development and implementation of policies, standards, guidelines and procedures. Verify that security and privacy requirements defined in the security plans, risk assessments, policies, and procedures are followed, and protection measures are functioning as intended. Desired Technical skills / experience: Sound understanding of security technologies/techniques like Cryptography, Algorithms, Public key Infrastructure (PKI) Certificate Authority (CA), Hardware/embedded authentication, OAuth, 2-factor authentication 5+ years of secure software development lifecycle experience and security architecture Advanced knowledge of securing embedded products Advanced experience of architecture for enabling secure boot, cryptographic algorithms, PKI, secure communication protocols such as TLS and HTTPS Strong leadership skills and the ability to coach and mentor other members of the Product Security teams Knowledge of Security Integration into CI/CD and experience in driving CI/CD adaptation for Security controls Exposure to the Agile SDLC process. Understanding of security by design principles and architecture level security concepts Experience with penetration testing methodologies and tools including security analysis, audits and reviews Knowledge of information system architecture and security controls (e.g., firewall and border router configurations, wireless architectures, specialized appliances) Knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities. Exposure to international privacy requirements & cross industry trends. Desired: Exposure to Healthcare IT or medical device industry EEO (Equal Employment Opportunity) Baxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic. Reasonable Accommodations Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please send an e-mail to and let us know the nature of your request along with your contact information. Recruitment Fraud Notice Baxter has discovered incidents of employment scams, where fraudulent parties pose as Baxter employees, recruiters, or other agents, and engage with online job seekers in an attempt to steal personal and/or financial information. To learn how you can protect yourself, review our . 089497

Monster