Product Cybersecurity Engineer Mako Robotics & Enabling Technologies

Work Flexibility:

Hybrid or Onsite It's Time to Join Stryker! Why Join Us At Stryker, you'll help shape the future of connected surgical technology. In this role, you will contribute to a unified ecosystem of tools and shared security services that proactively manage cybersecurity and data risks across the product lifecycle. You'll work across the full line of Mako robotic systems and connected platforms, helping ensure our products remain safe, secure, and compliant as they evolve. Who We Want We are looking for a collaborative and curious engineer who is passionate about building security into products—not just auditing it after the fact. This individual thrives working cross-functionally with engineering, quality, regulatory, and product teams, and is comfortable influencing without authority. You bring a strong foundation in software development within a regulated or quality-driven environment, paired with an interest in cybersecurity and a desire to deepen your expertise. You're someone who enjoys solving complex problems, communicating with both technical and non-technical partners, and pushing the organization forward as we continue integrating cybersecurity into our formal product development processes. What You Will Do You will contribute to product cybersecurity strategy across the full Mako robotics portfolio, supporting secure product design throughout the development lifecycle You will perform cybersecurity risk assessments, threat modeling, and define mitigation strategies You will partner with cross-functional teams (R D, Quality, Regulatory, Product Management) to integrate cybersecurity into design controls and SDLC processes You will support alignment with evolving FDA cybersecurity expectations and industry standards You will help define and implement secure architecture practices, including access control, authentication, data protection, and network security You will perform and support penetration testing, vulnerability scanning, and remediation activities across hardware and software systems You will conduct code reviews (manual and automated) to identify and address security vulnerabilities in embedded and application software You will integrate automated security testing into CI/CD and development workflows You will automate workflows and extract insights using scripting languages such as Python, PowerShell, or similar You will support HIPAA-related product features and data protection considerations You will provide input to project teams on timelines, risks, and cybersecurity-related milestones You will support cybersecurity documentation needs for internal and external stakeholders (e.g., regulatory, legal, commercial teams) What You Need Required Qualifications Bachelor's degree in Computer Science, Software Engineering, or related discipline is required 2+ years of experience in software development, systems engineering, or a related technical field is required Preferred Qualifications Experience working in a regulated industry (medical device, aerospace, automotive, etc.) Exposure to product or embedded cybersecurity concepts (does not require deep specialization) Familiarity with one or more security frameworks or standards (e.g., NIST, ISO, IEC) Experience with embedded systems, IoT, or connected devices Understanding of Windows and/or Linux operating systems Experience with cloud environments (AWS, Azure) Knowledge of networking fundamentals (TCP/IP, firewalls, authentication/authorization) Experience with scripting or programming languages (Python, PowerShell, etc.) Strong communication skills with the ability to partner across technical and non-technical teams This is a hybrid role working on site 2-3 days a week at our Weston facility

Travel Percentage:

10% Stryker Corporation is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status. Stryker is an EO employer - M/F/Veteran/Disability. Stryker Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. Stryker is one of the world's leading medical technology companies and, together with its customers, is driven to make healthcare better. We offer innovative products and services in Orthopaedics, Medical and Surgical, and Neurotechnology and Spine that help improve patient and hospital outcomes. We are proud to be named one of the World's Best Workplaces! For more information, visit: www.stryker.com Work Flexibility Remote - Role allows you to work the majority to 100% of time from an alternate workplace. These roles could have travel expectations, and you must work within the country of the job requisition location. Field-based - You can expect to regularly work a majority to 100% of time at customer facilities and has a set territory or expectation to travel within a set boundary. Almost all sales roles would likely be qualified as field-based. Onsite - Role is 100% located at a Stryker facility. Some ad hoc flexibility may be available depending on role, level, and job requirements. Manufacturing roles and any role that requires physical presence at the office would qualify under this category. Hybrid - You can expect to regularly work in both an alternate workplace and a Stryker facility. Roles that are partially remote or co-located would qualify as hybrid, and the expectation to be onsite would be defined and agreed upon by your manager/supervisor.