Product Security Engineer — Interventional Vascular Medical Device (Bedford, MA)

Philips

Closes in 2 days

Quick summary

Work type: On-site
Location: Bedford, MA
Salary: $157,000–$157,000 / yr
Posted: 6 days ago
Closes: Jun 17, 2026 (soon)
Nearby: 99+ roles within 25 mi

Market check

Salary context

Below market

How this pay compares to similar roles

Similar $176k

This role $157k

$127k most similar roles pay here $216k

This role pays less than 67% of similar roles. Most pay $148,500–$204,500 — the shaded band above. At the midpoint, this role pays about $157k versus about $176k for comparable roles.

Based on 240 similar postings.

Employer

About Philips

Royal Philips (founded 1891) is a leading Dutch health technology company focused on improving well-being through innovation, transitioning from a diversified electronics giant to a specialist in healthcare, imaging, patient monitoring, and personal health.

Philips currently has 12 open roles on FindRole.

Listed pay typically runs $115,000–$182,000 across 12 roles with salary data.

Most-posted roles

View all roles at Philips

At a glance

TL;DR · Product Security Engineer — Interventional Vascular Medical Device (Bedford, MA)

Apply Now Log in to save

As a Product Security Engineer at Philips in Bedford, MA, you will lead the Secure Product Development Lifecycle (SPDLC) for interventional vascular medical devices, defining and maintaining standards that ensure regulatory compliance and patient safety. Your daily responsibilities include driving secure design practices, threat modeling, and vulnerability management across engineering teams, while continuously integrating new tools and industry standards to enhance security. You will collaborate with R&D, quality, and regulatory teams to produce cybersecurity documentation and manage vulnerabilities, ensuring a balance between security, usability, and time-to-market. Ideal candidates have 5+ years of experience in product/application security or embedded systems security, expertise in medical device cybersecurity standards (IEC 81001-5-1, AAMI TIR57), and strong technical writing skills for regulatory documentation.

Skills

IEC_81001-5-1 AAMI_TIR57 FDA_guidance IEC_62304 SBOM_management ISO_14971 ISO_13485 21_CFR_820 CISSP CSSLP GIAC OSCP Secure_Product_Development_Lifecycle Threat_Modeling Secure_Coding Vulnerability_Assessment Penetration_Testing Technical_Writing Regulatory_Documentation

What you'll do

Define and maintain Secure Product Development Lifecycle (SPDLC) standards for medical devices.
Implement SPDLC practices across engineering teams, including secure design and threat modeling.
Continuously update security practices with new tools and industry standards.
Lead threat modeling and security risk assessments throughout the product lifecycle.
Ensure regulatory compliance by producing cybersecurity documentation and managing vulnerabilities.

What we're looking for

5+ years of experience in product/application security or embedded systems security.
Expertise in secure development lifecycle (SDL) processes and threat modeling.
Knowledge of medical device cybersecurity standards and regulatory compliance.
Experience with SBOM management, ISO 14971/13485, and 21 CFR 820.
Bachelor’s degree in Computer Science, Engineering, Cybersecurity or related field.
Strong technical writing skills for regulatory documentation.

Similar roles

Principal Med Device Security Engineer

Johnson & Johnson

Remote (Danvers, MA) +4 14 days ago $102,000–$177,100

Python Cryptography NIST 800-175 FIPS 140-3 IEC 62443 Zero Trust TLS mTLS PKI HSMs TPMs Secure Enclave Integration RTOS Bare-Metal Firmware Cloud Security CVSS 3.1 STRIDE SBOM SCA QNX QOS Yocto Linux Ubuntu Alpine FDA Cybersecurity Guidance NIST 800-53 IMDRF AAMI TIR57 HITRUST ISO 27001 CISSP CISM

Remote

Save

Sr. Product Security Engineer

Medtronic

Remote (Mounds View South, MN) 13 days ago $132,000–$198,000

NIST OWASP IEC 81001-5-1 ISO 14971 FDA CI/CD Secure Software Development Lifecycle Security-by-design Embedded Device Security Medical Device Cybersecurity Standards CompTIA Security+ CISSP

Remote

Save

Cybersecurity Product Lead – Medical Devices

Analog Devices

Wilmington, MA 47 days ago $159,200–$218,900

AWS QMS FDA Design Controls Risk Management NIST FedRAMP ISO/IEC 27001 OWASP Top 10 SAST DAST Threat Modeling CI/CD Security Monitoring Access Control Vendor Risk Management Incident Response

Save

Lead Product Security Engineer

Johnson & Johnson

Remote (Us345 Ma Danvers - 22 Cherry Hill Dr, US) 11 days ago $94,000–$151,800

ISO27001 SOC2 NIST Cybersecurity Framework HIPAA GDPR PKI HSMs TPMs Secure Enclave Integration SBOM Threat Modeling CI/CD PostgreSQL Python AWS Kubernetes

Remote

Save

Product Security Engineer, Staff

Qualcomm

San Diego, CA 6 days ago $149,600–$224,400

Ghidra IDA Binary_Ninja Linux Android Fuzzing Pen-testing LLVM Hypervisors Containers Secure_code_review Threat_modeling Exploit_mitigation_techniques CDMA GSM UMTS LTE WLAN Bluetooth NFC Zephyr QNX

Save

Software Test Engineer - Medical Device Integration (Bedford, MA)

Philips

Bedford, MA 2 days ago $115,000–$182,000

Jama Jira TestComplete Quality Center Qt Squish PyTest WinAppDriver CI/CD FMEA Scrum PostgreSQL Python Java JavaScript React Angular Node.js Docker Kubernetes AWS Azure Git GitHub Bitbucket

Save