Clinical Engineering Medical Device Security Engineer
The posted compensation range of $52.15 - $77.57/hr is a reasonable estimate that extends from the lowest to the highest pay CommonSpirit in good faith believes it might pay for this particular job, based on the circumstances at the time of posting. CommonSpirit may ultimately pay more or less than the posted range as permitted by law.
Job Summary and Responsibilities
This position will serve the state of California region (specifically Merced to North State) and would require travel up to 75% of the time with non-traveling work being from a home office. We are looking for a candidate with residence in this region.
As our Clinical Engineering Medical Device Security Engineer I, you will play a critical role in safeguarding CommonSpirit's extensive medical device environment, ensuring both device integrity and patient safety. You will be at the forefront of mitigating cybersecurity vulnerabilities and threats across our system, contributing to the development and testing of robust remediation strategies. This position is vital for maintaining the resilience of our medical technology infrastructure against evolving cyber risks and ensuring compliance with stringent cybersecurity regulations.
Every day you will collaborate dynamically with cross-functional teams to implement effective mitigation strategies, addressing identified medical device security vulnerabilities. A core responsibility will be to develop and meticulously test medical device security patching and remediation instructions, ensuring risks are mitigated without compromising device reliability or patient safety. In the event of a security incident, you will take the lead in system-wide remediation efforts, coordinating swift responses to return devices to service and implement preventative measures. Furthermore, you will conduct comprehensive assessments of system-wide medical devices, identifying potential risks through detailed reviews of MDS2 forms and information from OEMs, and resolve technical challenges while supporting field technicians.
To be successful in this role, you will possess a strong foundation in medical device cybersecurity, risk assessment, and technical remediation. Your expertise in vulnerability management, incident response, and regulatory compliance (e.g., relevant cybersecurity standards and guidelines) will be essential. We are seeking a proactive and detail-oriented engineer with a proven ability to collaborate effectively, troubleshoot complex technical issues, and develop robust solutions that protect critical healthcare infrastructure and ensure continuous patient care.
Essential Functions
- Collaborate with cross-functional teams to implement mitigation strategies that address medical device security vulnerabilities and threats.
- Develop and test medical device security patching and remediation instructions to mitigate risks while also maintaining the integrity of the devices to ensure device reliability and patient safety.
- In the event of a security incident, lead system wide remediation efforts by coordinating with cross-functional teams to return the devices to service and to implement measures that will prevent future attacks.
- Conduct comprehensive assessments of system wide medical devices to identify potential security risks and vulnerabilities by reviewing MDS2 forms, and obtaining information from medical device OEMs.
- Ensure that medical devices comply with relevant cybersecurity regulations, standards and guidelines.
- Resolve technical challenges and provide support to field technicians.
The job summary and responsibilities listed above are designed to indicate the general nature of the work performed within this job. They are not designed to contain or be interpreted as a comprehensive inventory of all job responsibilities required of employees assigned to this job. Employees may be required to perform other duties as assigned.
Job RequirementsRequired:
- Bachelors degree in HTM, Computer Science, Technology or Business or equivalent professional experience required upon hire
- Minimum of 2-4 years of experience working in healthcare/IT Security, System Administration, Software Development or related field.
- 1-2 years experience working in a healthcare/medical environment
- Experience working with specialized medical equipment in a healthcare setting.
- Experience with Cybersecurity and Infrastructure Security Agency (CISA) HIPAA/HITECH Compliance standards.
- Valid Driver's License Required
Preferred:
- Experience working with the software development life cycle or project management methodologies
- Certified Radiology Equipment Specialists (CRES)
- Certified Biomedical Equipment Technician (CBET)
- Certified Healthcare Tech Manager (CHTM)
- CompTIA A+ Certification (A-PLUS)
- CompTIA Network + (NTWK-PLUS)
This position requires participation in a rotational on-call schedule, including nights, weekends, and holidays. Candidates must be available to respond to urgent service needs outside of regular business hours and may be required to return to the facility on short notice.
Where You'll WorkInspired by faith. Driven by innovation. Powered by humankindness. CommonSpirit Health is building a healthier future for all through its integrated health services. As one of the nation’s largest nonprofit Catholic healthcare organizations, CommonSpirit Health delivers more than 20 million patient encounters annually through more than 2,300 clinics, care sites and 137 hospital-based locations, in addition to its home-based services and virtual care offerings. CommonSpirit has more than 157,000 employees, 45,000 nurses and 25,000 physicians and advanced practice providers across 24 states and contributes more than $4.2 billion annually in charity care, community benefits and unreimbursed government programs. Together with our patients, physicians, partners, and communities, we are creating a more just, equitable, and innovative healthcare delivery system.
Join our Talent Community so you can stay connected and be alerted to future opportunities.
Sign UpNo recently viewed jobs
You have no saved Jobs