Principal Software Test Cybersecurity Engineer

In this key role, the Principal SDET is responsible for identifying vulnerabilities and potential security risks while also mentoring emerging Cybersecurity Test Engineers. The position's core responsibilities include evaluating, documenting, managing, and developing software cybersecurity tests specifically for TBCT software systems within our R&D department. Effective collaboration is essential, requiring interaction with internal teams as well as external partners such as business and DX management, consultants, and other stakeholders to ensure all cybersecurity requirements are met. The role requires independent judgment in creating effective methods and techniques to achieve objectives. Drawing on extensive experience in the field, the Principal SDET will be responsible for developing strategy and setting direction in a dynamic environment that prioritizes innovation and excellence.

Responsibilities

Design and lead the technical development, direction, and effectiveness of the functional group.

Oversee the design, development, and execution of automated test scripts to ensure strong cybersecurity protocols.

Collaborate with cross-functional teams, including development, cybersecurity, and quality assurance, to identify potential vulnerabilities and integrate security testing into the product lifecycle.

Develop comprehensive test plans and strategies that comply with regulatory standards specific to medical devices.

Conduct risk assessments and implement security testing protocols to protect sensitive data.

Stay informed about emerging cybersecurity threats and incorporate proactive measures into testing processes.

Maintain hands-on involvement by contributing to multiple codebases while providing technical leadership within Agile teams.

Drive cybersecurity testing standards in collaboration with architecture teams.

Conduct thorough vulnerability assessments on both existing and new products.

Implement and maintain software automation tools based on current software development technologies.

Advise on feasibility, implementation, process improvements, and maintenance plans for cybersecurity test automation within dynamic application security testing (DAST).

Stay updated on the latest trends in cybersecurity threats, technologies, best practices; adjusting testing methodologies accordingly.

Design frameworks and implement design patterns that support security testing activities across all levels of the test pyramid.

Essential Skills

Minimum 8 years experience in an SDET role, with at least 5 years experience in Cybersecurity.

Experience with APIs, microservices architecture, and cloud platforms like Azure, AWS, or GCP.

Solid understanding of HTTP protocols, Web technologies, and REST APIs.

Proficient in object-oriented programming and applications/embedded software development with languages like .NET C#, C++, and Python.

Proficient in performance testing using tools like JMeter.

Mastery in identifying and mitigating security vulnerabilities, with a strong understanding of cybersecurity frameworks and protocols relevant to medical devices.

Advanced skills in developing automated test scripts and frameworks.

Proficient in using Source Code Management tools effectively.

Additional Skills & Qualifications

Familiarity with performance monitoring and analysis tools.

Experience in conducting thorough risk assessments and implementing robust security measures to protect sensitive data within medical devices.

Experience with cloud platforms like Microsoft Azure and knowledge of cloud security best practices.

Skilled in dynamic application security testing (DAST) using various tools and techniques.

Experience implementing solutions that maximize test efficiency.

Ability to assimilate knowledge swiftly with a strong sense of urgency and enthusiasm.

Demonstrated team-oriented behavior with the ability to work collaboratively.

Encourages continuous learning and adoption of new technologies among peers.

Work Environment

This role operates within a dynamic and collaborative environment, working with both local and global teams in quality assurance and cybersecurity. The position is part of a significant transformational growth within the R&D organization, focusing on delivering innovative solutions in medical devices.

Pay and Benefits

The pay range for this position is $140000.00 - $175000.00/yr.

Target Bonus on Base: 15.0%

At Terumo Blood and Cell Technologies, we provide competitive total reward offerings that consist of compensation, benefits, recognition, along with a wealth of other well-being, work-life and recognition programs which support in unlocking the potential for you and your family. Included in our expansive list of benefits offerings are multiple group medical, dental and vision plans, a robust wellness program, life insurance and disability coverages, also a variety of voluntary programs such as group accident, hospital indemnity, critical illness, pet insurance and much more. To help you save for retirement, we offer a 401(k) plan with a matching contribution and for work-life balance we have vacation and sick time programs for associates. For us, it's about protecting the personal welfare of our associates and their families, helping to achieve personal goals and offering those extra touches for convenience, security and overall peace of mind.

Workplace Type

This is a hybrid position in Lakewood, CO.

Application Deadline

This position is anticipated to close on Aug 11, 2025.