Posted Jul 10, 2026

Clinical Engineering Medical Device Security Engineer

Apply for this Position →
About the position This position will serve the state of California region (specifically Merced to North State) and would require travel up to 75% of the time with non-traveling work being from a home office. We are looking for a candidate with residence in this region. As our Clinical Engineering Medical Device Security Engineer I, you will play a critical role in safeguarding CommonSpirit's extensive medical device environment, ensuring both device integrity and patient safety. You will be at the forefront of mitigating cybersecurity vulnerabilities and threats across our system, contributing to the development and testing of robust remediation strategies. This position is vital for maintaining the resilience of our medical technology infrastructure against evolving cyber risks and ensuring compliance with stringent cybersecurity regulations. Every day you will collaborate dynamically with cross-functional teams to implement effective mitigation strategies, addressing identified medical device security vulnerabilities. A core responsibility will be to develop and meticulously test medical device security patching and remediation instructions, ensuring risks are mitigated without compromising device reliability or patient safety. In the event of a security incident, you will take the lead in system-wide remediation efforts, coordinating swift responses to return devices to service and implement preventative measures. Furthermore, you will conduct comprehensive assessments of system-wide medical devices, identifying potential risks through detailed reviews of MDS2 forms and information from OEMs, and resolve technical challenges while supporting field technicians. To be successful in this role, you will possess a strong foundation in medical device cybersecurity, risk assessment, and technical remediation. Your expertise in vulnerability management, incident response, and regulatory compliance (e.g., relevant cybersecurity standards and guidelines) will be essential. We are seeking a proactive and detail-oriented engineer with a proven ability to collaborate effectively, troubleshoot complex technical issues, and develop robust solutions that protect critical healthcare infrastructure and ensure continuous patient care. Responsibilities • Collaborate with cross-functional teams to implement mitigation strategies that address medical device security vulnerabilities and threats. • Develop and test medical device security patching and remediation instructions to mitigate risks while also maintaining the integrity of the devices to ensure device reliability and patient safety. • In the event of a security incident, lead system wide remediation efforts by coordinating with cross-functional teams to return the devices to service and to implement measures that will prevent future attacks. • Conduct comprehensive assessments of system wide medical devices to identify potential security risks and vulnerabilities by reviewing MDS2 forms, and obtaining information from medical device OEMs. • Ensure that medical devices comply with relevant cybersecurity regulations, standards and guidelines. • Resolve technical challenges and provide support to field technicians. Requirements • Bachelors degree in HTM, Computer Science, Technology or Business or equivalent professional experience required upon hire • Minimum of 2-4 years of experience working in healthcare/IT Security, System Administration, Software Development or related field. • 1-2 years experience working in a healthcare/medical environment • Experience working with specialized medical equipment in a healthcare setting. • Experience with Cybersecurity and Infrastructure Security Agency (CISA) HIPAA/HITECH Compliance standards. • Valid Driver's License Required Nice-to-haves • Experience working with the software development life cycle or project management methodologies • Certified Radiology Equipment Specialists (CRES) • Certified Biomedical Equipment Technician (CBET) • Certified Healthcare Tech Manager (CHTM) • CompTIA A+ Certification (A-PLUS) • CompTIA Network + (NTWK-PLUS)