1

Product Security Code Review Engineer Jobs in Minnesota

Sr. Product Security Engineer

Moundsview, MN · On-site

$121K - $166K/yr

Medtronic Cardiac Ablation Solutions (CAS) is seeking a Senior Product Security Engineer to join our R&D organization and help secure cardiac ablation medical device solutions. This role focuses on ...

Sr. Product Security Engineer

Moundsview, MN

$121K - $166K/yr

Medtronic Cardiac Ablation Solutions (CAS) is seeking a Senior Product Security Engineer to join our R&D organization and help secure cardiac ablation medical device solutions. This role focuses on ...

Sr. Product Security Engineer

Moundsview, MN · On-site

$121K - $166K/yr

Medtronic Cardiac Ablation Solutions (CAS) is seeking a Senior Product Security Engineer to join our R&D organization and help secure cardiac ablation medical device solutions. This role focuses on ...

... in code reviews, threat modeling, and vulnerability assessments. • Document system configurations, software designs, and security architecture. • Work with Systems Engineering, Product Security ...

Director - Product Security

Minneapolis, MN · On-site +1

$243K - $254K/yr

Partner with R&D, Engineering, Quality, Regulatory Affairs, and Legal teams to embed security practices and ensure a comprehensive approach to product safety. * Serve as the primary security ...

Participate in code reviews, threat modeling, and vulnerability assessments. Document system configurations, software designs, and security architecture. Work with Systems Engineering, Product ...

next page

Showing results 1-20

Product Security Code Review Engineer information

What are the key skills and qualifications needed to thrive as a Product Security Code Review Engineer, and why are they important?

To thrive as a Product Security Code Review Engineer, you need a deep understanding of secure coding practices, software development lifecycles, and vulnerability assessment, typically backed by a degree in computer science or a related field. Familiarity with static and dynamic analysis tools, code review platforms, and certifications like CISSP or OSCP is highly valuable. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for explaining security findings and collaborating with development teams. These skills and qualities are vital to identify, communicate, and mitigate security risks in code, ensuring the overall resilience of software products.

What are some typical challenges faced by Product Security Code Review Engineers when coordinating with development teams?

Product Security Code Review Engineers often encounter challenges in balancing security priorities with project timelines and developer workflows. Effective communication is essential, as engineers must clearly explain vulnerabilities and remediation steps to developers who may have varying levels of security expertise. Additionally, they need to ensure that security recommendations are practical and align with the product's architecture, all while fostering a collaborative environment rather than creating bottlenecks. Building strong relationships with development teams and understanding their processes helps streamline secure code adoption and continuous improvement.

What is the difference between Product Security Code Review Engineer vs Software Security Engineer?

AspectProduct Security Code Review EngineerSoftware Security Engineer
Primary FocusReviewing and analyzing source code for security vulnerabilities in productsDesigning and implementing security measures across software systems
Skills & CertificationsSecure coding, code review, security standards (e.g., OWASP), certifications like CSSLPSecurity architecture, threat modeling, secure coding, certifications like CISSP
Work EnvironmentCollaborates with development teams during product developmentWorks on system-wide security strategies and architecture
Industry UsageCommon in product-based companies, especially in tech and cybersecurityFound in organizations focusing on overall security infrastructure

While both roles focus on security, the Product Security Code Review Engineer primarily reviews source code for vulnerabilities in specific products, whereas the Software Security Engineer develops and implements security strategies across software systems. The roles often overlap but differ in scope and focus.

What is a Product Security Code Review Engineer?

A Product Security Code Review Engineer is a cybersecurity professional responsible for analyzing and reviewing application source code to identify and mitigate security vulnerabilities. They work closely with development teams to ensure secure coding practices, review code for compliance with security standards, and recommend fixes for potential security issues. Their goal is to prevent security breaches by catching vulnerabilities early in the software development lifecycle.
What are popular job titles related to Product Security Code Review Engineer jobs in Minnesota? For Product Security Code Review Engineer jobs in Minnesota, the most frequently searched job titles are:
What job categories do people searching Product Security Code Review Engineer jobs in Minnesota look for? The top searched job categories for Product Security Code Review Engineer jobs in Minnesota are:
What cities in Minnesota are hiring for Product Security Code Review Engineer jobs? Cities in Minnesota with the most Product Security Code Review Engineer job openings:
Sr. Product Security Engineer - (Embedded/IoT) - Onsite

Sr. Product Security Engineer - (Embedded/IoT) - Onsite

Medtronic

Minneapolis, MN

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 15 days ago


Medtronic rating

7.9

Company rating: 7.9 out of 10

Based on 172 frontline employees who took The Breakroom Quiz

156th of 528 rated manufacturers


Job description

We anticipate the application window for this opening will close on - 25 Jul 2026


Careers that change lives start here. Medtronic is a global leader in healthcare technology with a Mission to alleviate pain, restore health, and extend life. Our 95,000 employees work across more than 150 countries to put patients first - developing innovative medical technologies that improve the lives of 72+ million patients each year. Your unique talents will help shape the future of healthcare while building a career grounded in purpose, growth, and impact.

A Day in the Life

Across our global Neuroscience organization, we advance care for some of medicine's most complex neurological and spinal conditions. By combining innovative technology, data-driven insights, and deep clinical expertise, we partner with physicians and health systems to improve how patients are treated and supported throughout their care journey.

Our Neuromodulation operating unit delivers advanced therapies for chronic pain, movement disorders, and nervous system conditions, offering SCS, DBS, and targeted drug delivery. Through proven technology, clinical evidence, and innovation, we provide personalized solutions that restore function and enhance quality of life.

Check us out on LinkedIn: Medtronic Brain Modulation and Pain Interventions

Pelvic Health

Our Pelvic Health Operating Unit advances care for patients living with bladder and bowel control conditions through targeted, minimally invasive neuromodulation therapies, including sacral and tibial solutions. Designed to modulate nerve pathways and restore communication between the brain and pelvic floor, these programmable therapies deliver personalized treatment supported by strong clinical evidence and long-term outcomes-helping improve confidence, independence, and quality of life.

Check us out on LinkedIn: Medtronic Pelvic Health

Onsite

We'reworking onsite 4 days a week at our Minnesota Rice Creek East facility, to driveperformance, foster an environment of belonging, and collaborate to inspire as we engineer the extraordinary.

At Medtronic,we'redriven by our Mission to alleviate pain, restore health, and extend life for millions of people around the world through innovative biomedical devices and connected health solutions. As our products become increasingly connected, securing themedical device ecosystem at the product and system levelis critical to ensuring patient safety and product integrity.TheSenior Product Security Engineerwill play a key role in securing connected and embedded medical devices across the full product lifecycle. This role is focused ondevice/product security engineering(not enterprise IT security) and partners closely with R&D, software, systems, and quality teams to design and implement robust, scalable security controls.

The ideal candidate bringshands-on experience securing embedded or IoT products in regulated environments, with strong depth in threat modeling, secure architecture, cryptography, and device-level risk management.

Key Responsibilities:

Product Security Engineering- Embed security requirements into the medical device development lifecycle, partnering with R&D and systems teams from architecture through release.

Threat Modeling & Risk Assessment- Perform system-level threat modeling (e.g., STRIDE or similar), attack surface analysis, and vulnerability assessments for connected and embedded medical devices.

Secure Architecture- Support and review implementation of device security capabilities, such as:

  • Securebootandrootof trust
  • Secure firmware/software update mechanisms
  • Device identity and authentication
  • Secure communications and protocol hardening
  • Data protection at rest and in transit
  • Key management and Hardware Security Module (HSM) concepts

Cryptography & Post-Quantum Readiness- Apply modern cryptographic principles and support forward-looking strategies, including quantum-resistant approaches where applicable.

Secure SDLC Integration- Partner with agile development teams to embed security into design reviews, code reviews, CI/CD pipelines, and verification activities.

Verification & Validation- Define and support security V&V activities, including penetration testing, static/dynamic analysis, fuzz testing, and vulnerability management.

Standards & Compliance- Ensure alignment with medical device cybersecurity expectations, including:

  • FDA premarket cybersecurity guidance
  • IEC 81001-5-1
  • ISO 14971
  • NIST frameworks
  • Relevant Medtronic quality processes

MinimumRequirements

  • Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering, or related technical field

  • 4+ years of experienceOR advanced degree with 2+ years of relevant experience

Preferred:

  • Medical device cybersecurity experience
  • Experience with IEC 81001-5-1
  • Experience with FDA cybersecurity submissions
  • Background in connected healthcare products
  • Security certifications (Security+, CISSP, etc.)
  • Embedded/device security
  • IoT security
  • Product security engineering

For Baccalaureate degrees earned outside of the United States, a degree that satisfies the requirements of 8 C.F.R. 214.2(h)(4)(iii)(A) is required.

Physical Job Requirements

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.

The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.

U.S. Work Authorization & Sponsorship

At Medtronic, we are committed to fostering an environment where employees can thrive and make a meaningful impact. In alignment with our enterprise-wide workforce planning approach, U.S. work authorization sponsorship (H-1B, TN, J, etc.) is offered exclusively for Principal-level roles and above, where specialized expertise aligns with long-term business needs. Roles below the Principal level require candidates to possess unrestricted U.S. work authorization at the time of hire and for the duration of employment.

Recruitment Fraud Alert

We are aware of phishing scams targeting job seekers. Please keep the following in mind:


Apply only through official Medtronic channels. All legitimate Medtronic recruiting communications come from approved Medtronic platforms and official @medtronic.com email addresses.


Medtronic will never ask for payment or sensitive personal information (such as bank account or Social Security details) during early stages of the hiring process. Any such requests are not legitimate.


If you receive a suspicious message claiming to be from Medtronic, do not respond, click links, or open attachments.


If you have any questions, concerns regarding the authenticity of a communication alleged to have been made by or on behalf of Medtronic, please contact us immediately at AskHR@medtronic.com.

Benefits & Compensation

Medtronic offers a competitive Salary and flexible Benefits Package
A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.

Salary ranges for U.S (excl. PR) locations (USD):$132,000.00 - $198,000.00This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information applies solely to candidates hired within the United States (local-market compensation and benefits will apply to others).

The following benefits and additional compensation are available to those regular employees who work 20+ hours per week: Health, Dental and vision insurance,Health Savings Account,Healthcare Flexible Spending Account,Life insurance, Long-term disability leave,Dependent daycare spending account,Tuition assistance/reimbursement, andSimple Steps (global well-being program).

The following benefits and additional compensation are available to all regular employees:Incentive plans, 401(k) plan plus employer contribution and match,Short-term disability,Paid time off,Paid holidays,Employee Stock Purchase Plan,Employee Assistance Program,Non-qualified Retirement Plan Supplement (subject to IRS earning minimums), andCapital Accumulation Plan (available to Vice Presidents and above, or subject to IRS earning minimums).

Regular employees are those who are not temporary, such as interns. Temporary employees are eligible for paid sick time, as required under applicable state law, and the Employee Stock Purchase Plan. Please note some of the above benefits may not apply to workers in Puerto Rico.

Further details are available at the link below:

Medtronic benefits and compensation plans

It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.


If you are applying to perform work for Medtronic, Inc. ("Medtronic") in any position which will involve performing at least two (2) hours of work on average each week within the unincorporated areas of Los Angeles County, you can findhere a list of all material job duties of the specific job position which Medtronic reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of a conditional offer of employment. Medtronic will consider for employment qualified job applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.


What Medtronic employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom