Staff Product Security Engineer

This role provides the scope to lead and enhance security for our next generation of products, while ensuring the current products are kept secure in the constant threat landscape. Day-to-day primary responsibilities include leadership in enhancing security tools and processes, relationship management, and providing guidance to the team to deliver quality and secure applications for our clients. Relationship building, influencing change, and creating synergies are key.

BD is one of the largest global medical technology companies. Advancing the world of health™ is our Purpose. We create transformative solutions that turn dreams into possibilities.

A career at BD means learning and working alongside inspirational leaders. You will shape the trajectory of BD and leave a legacy.

The Medication Management Solutions (MMS) team manage multiple systems and operational capabilities to ensure medication availability, reducing inefficiency and waste.

You will be a Staff Product Security Engineer, vital in defining and guiding the security strategy for our product lineup. You will instill a culture that prioritises security, oversee a team, promote collaboration across departments, and integrate secure‑by‑design principles from product conception to post‑market phases.

• Lead and cultivate a top‑performing Product Security team that backs various products within the business unit.
• Boost team efficiency to minimise security risk and strengthen product resilience within the portfolio, aligning with BD’s cybersecurity strategy and regulatory standards.
• Nurture a culture of answerability, ingenuity, and continual advancement to drive tangible outcomes.
• Foster risk reduction and elevate security measures within the product portfolio by incorporating secure‑by‑design principles, threat modelling, and proactive vulnerability management.
• Collaborate with R&D, Quality, Regulatory, and IT teams across functions to embed security throughout the product lifecycle—from inception to post‑market.
• Translate cybersecurity strategy into practical plans, aligning team efforts with BD’s enterprise security objectives.
• Track and report security status, using measurements and benchmarks to showcase progress, identify weaknesses, and inform decision‑making.
• Instruct engineering teams on comprehending security requirements and identifying practical solutions for incorporating them into new and existing products.
• Deploy software security solutions and plan/develop products following recognised industry norms for medical device security, encompassing encryption, disaster recovery, authentication, audit logging, hardening measures, patch management, and vulnerability monitoring.
• Conduct product security risk evaluations, hazard assessments, and offer guidance on vulnerability remediation to software engineers in product development, both on‑site and off‑site.
• Assist in the Product Security Documentation process, including standardised Product Security documentation, document management systems, and review/approval processes.
• Facilitate technical design appraisals and code examinations, supplying clear, actionable recommendations.
• Support product development teams in creating Incident and Vulnerability Management Plans and Product Security White Papers.
• Contribute to teams handling product security incidents.
• Collaborate with other technical departments such as Penetration Testing, Systems, Hardware Engineering, Quality, and technical services.
• Ensure compliance with BD development policies and software quality procedures.

• BS degree in Computer Science, Computer Engineering, Electrical Engineering, or related fields (or equivalent experience).
• Minimum of 5 years of experience in IT‑Security architecture, secure software development, systems & architecture concepts, and designs.

• Experience leading and managing a team.
• Experience with encryption algorithms, PKI solutions.
• Understanding of security issues for embedded devices.
• Experience with dynamic and static code analysis tools.
• Proficient knowledge of networking and associated security elements.
• Understanding of working in a regulated environment and quality management systems.
• Excellent written and verbal communication and interpersonal skills.
• Strong commitment to achieving project goals.
• Proficient in Microsoft Office applications and tools.

Becton, Dickinson and Company is an Equal Opportunity Employer. We evaluate applicants without regard to race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic status, disability, veteran status, and other legally protected characteristics.

€73,500.00 - €112,125.00 EUR Annual