Principal Cybersecurity Engineer

At Medtronic you can begin a life-long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world.

A Day in the LifeThe Principal OT Risk & Governance Analyst is responsible for leading the development, implementation, and oversight of risk management, governance frameworks, and compliance initiatives for Operational Technology (OT) environments in manufacturing. This role ensures that OT security controls align with corporate policies, industry regulations, and cybersecurity best practices, while also supporting risk assessments and audit readiness.

Risk Management & Compliance

Lead OT risk assessments, identifying and rating risks based on the risk matrix.

Maintain risk register and track those related to manufacturing environments.

Ensure compliance with NIST CSF, NIS 2, and other relevant frameworks.

Collaborate with IT, OT, and compliance teams to align cybersecurity policies with operational requirements.

Governance & Policy Development

Establish and maintain OT security governance frameworks, policies, and procedures.

Define roles and responsibilities for OT security within manufacturing operations.

Develop security awareness programs tailored for OT personnel, engineers, and plant operators.

Provide guidance on secure architecture, network segmentation, and access controls for OT systems.

Incident Response & Disaster Recovery

Support the cybersecurity incident response process, including detection, response, and recovery planning.

Collaborate with IT security teams, SOC analysts, and plant personnel to investigate and mitigate security incidents.

Ensure disaster recovery incorporate IT and OT system resilience and recovery.

Assist manufacturing teams with the initial documentation of disaster recovery plans and assist with tabletop exercises, lessons learned and tracking updates required to current disaster recovery plans.

Stakeholder Collaboration & Training

Act as an advisor for manufacturing operations teams, and cybersecurity stakeholders.

Develop training on IT and OT security risks, governance frameworks, and compliance expectations.

Facilitate security awareness sessions for IT and OT engineering teams.

Qualifications & Experience

Required:

Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or a related field with 14+ years of overall experience.

5+ years of experience in OT security, risk management, or governance in manufacturing, energy, or critical infrastructure.

Strong knowledge of ICS/SCADA systems, industrial protocols (Modbus, OPC, DNP3, etc.), and IT and OT asset management.

Experience with risk assessment methodologies, audit frameworks, and regulatory compliance.

Familiarity with frameworks like NIST 800-82, IEC 62443, ISO 27001, and Purdue Model for ICS Security.

Strong communication and leadership skills for cross-functional collaboration.

Preferred:

Industry certifications: CISM, CISSP, CRISC, GICSP, ISA 62443, or equivalent.

Experience with vulnerability management, threat modeling, and incident response in manufacturing environments.

Knowledge of firewalls, network segmentation, and endpoint protection for ICS environments.

Physical Job Requirements
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position. 

Benefits & Compensation

Medtronic offers a competitive Salary and flexible Benefits Package
A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create.We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage.
 

This position is eligible for a short-term incentive called the Medtronic Incentive Plan (MIP).About Medtronic

We lead global healthcare technology and boldly attack the most challenging health problems facing humanity by searching out and finding solutions.
Our Mission — to alleviate pain, restore health, and extend life — unites a global team of 95,000+ passionate people. 
We are engineers at heart— putting ambitious ideas to work to generate real solutions for real people. From the R&D lab, to the factory floor, to the conference room, every one of us experiments, creates, builds, improves and solves. We have the talent, diverse perspectives, and guts to engineer the extraordinary.

Learn more about our business, mission, and our commitment to diversity here