FIND_THE_RIGHTJOB.
Clinical Engineering Security Engineer
Grimes, United States
Overview:
As the Clinical Engineering (CE) Security Engineer at UnityPoint Health (UPH), I advance the Information Security Program within the biomedical space. I evaluate and report on the effectiveness of information security controls related to connected medical devices and recommend security standards and controls as technology evolves. I ensure that Clinical Engineering processes comply with applicable privacy and security policies and standards. I’m also responsible for protecting connected medical devices and the sensitive data they contain by implementing, monitoring, and responding to security controls, threat intelligence, and security alerts.
The CE Security Engineer will provide centralized knowledge, expertise and support for the delivery of CE-IT security services to clients by UPH CE field operations through the provision of technical research, data management, auditing, reporting, and analysis, remote technical support, integrated knowledge creation and curation, and engaging in active vulnerability response activities as deemed necessary.
The CE Security Engineer serves as the security liaison between IT and CE. The position reports directly to the Manager, Clinical Engineering and reports indirectly through a dotted line reporting structure to the Manager, IT Security Operations Center.
Why UnityPoint Health?:
Full time - Remote/Hybrid Remote, Grimes, Iowa
M - F 8am to 4:30pm
As the Clinical Engineering (CE) Security Engineer at UnityPoint Health (UPH), I advance the Information Security Program within the biomedical space. I evaluate and report on the effectiveness of information security controls related to connected medical devices and recommend security standards and controls as technology evolves. I ensure that Clinical Engineering processes comply with applicable privacy and security policies and standards. I’m also responsible for protecting connected medical devices and the sensitive data they contain by implementing, monitoring, and responding to security controls, threat intelligence, and security alerts.
The CE Security Engineer will provide centralized knowledge, expertise and support for the delivery of CE-IT security services to clients by UPH CE field operations through the provision of technical research, data management, auditing, reporting, and analysis, remote technical support, integrated knowledge creation and curation, and engaging in active vulnerability response activities as deemed necessary.
The CE Security Engineer serves as the security liaison between IT and CE. The position reports directly to the Manager, Clinical Engineering and reports indirectly through a dotted line reporting structure to the Manager, IT Security Operations Center.
At UnityPoint Health, you matter. We’re proud to be recognized as a Top 150 Place to Work in Healthcare by Becker's Healthcare several years in a row for our commitment to our team members.
Our competitive Total Rewards program offers benefits options that align with your needs and priorities, no matter what life stage you’re in. Here are just a few:
- Expect paid time off, parental leave, 401K matching and an employee recognition program.
- Dental and health insurance, paid holidays, short and long-term disability and more. We even offer pet insurance for your four-legged family members.
- Early access to earned wages with Daily Pay, tuition reimbursement to help further your career and adoption assistance to help you grow your family.
With a collective goal to champion a culture of belonging where everyone feels valued and respected, we honor the ways people are unique and embrace what brings us together.
And, we believe equipping you with support and development opportunities is a vital part of delivering an exceptional employment experience.
Find a fulfilling career and make a difference with UnityPoint Health.
Responsibilities:- Protects UPH Clinical Engineering assets by the creation and enforcement of information security policies, procedures, standards, plans, and guidelines as they relate to connected medical devices.
- Identifies and documents information security risks and proposes mitigating controls for connected medical devices.
- The CE Security Engineer serves as the security liaison between IT and CE. The position reports directly to the Manager, Clinical Engineering and reports indirectly through a dotted line reporting structure to the Manager, IT Security Operations Center.
- Investigates and responds to security incidents involving medical devices.
- Reviews vendor solutions for security risks and works with UPH IT and vendor to remediate risks to acceptable levels.
- Researches, designs, and develops new information security controls to enhance protection of medical devices.
- Monitors intelligence sources for medical device security vulnerabilities.
- Assists with developing communication content and reports for UPH customers on medical device security issues.
- Creates and publishes instruction for field engineers on how to patch medical devices.
- Researches, creates, and issues work orders to field engineers for patching medical devices.
Education:
Bachelor’s degree in biomedical engineering, Computer Science, Information Security, or related degree.
Associate degree with at least 2 years’ experience in an equivalent technical program. Equivalent education and work experience will be accepted only if previous experience applies to specific systems. 5+ years of relevant biomed, IT, or security experience
License(s)/Certification(s): Valid driver’s license when driving any vehicle for work-related reasons.
License(s)/Certification(s): Valid driver’s license when driving any vehicle for work-related reasons.
Similar jobs
No similar jobs found
© 2025 Qureos. All rights reserved.