OPT Principal Cybersecurity Engineer Jobs
Principal Cybersecurity Engineer roles require deep technical expertise and often involve leading security architecture, threat modeling, and incident response programs. Many employers in defense, finance, and tech actively sponsor OPT students in this field. Your 12-month OPT window, or 24-month STEM extension if your degree qualifies, is your sponsorship runway.
See All OPT Principal Cybersecurity Engineer JobsOverview
Showing 5 of 8+ Principal Cybersecurity Engineer jobs
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
See all Principal Cybersecurity Engineer Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Principal Cybersecurity Engineer roles.
Get Access To All JobsINTRODUCTION
Principal Cybersecurity Engineer for Whippany, NJ to define project-level cybersecurity requirements; design & develop security solutions to mitigate product cybersecurity risks; understand medical device products & clinical applications to identify potential cybersecurity threats and develop mitigations; perform threat modeling, vulnerability testing, security risk analysis & security assessments; review security architecture & designs; secure medical devices, medical device software & IT software against cyber threats; lead cybersecurity risk assessments & cyber signal incident responses and investigations; lead cross-functional teams; coordinate strategic supplier & partner relationships.
ROLE AND RESPONSIBILITIES
- Define project-level cybersecurity requirements
- Design & develop security solutions to mitigate product cybersecurity risks
- Understand medical device products & clinical applications to identify potential cybersecurity threats and develop mitigations
- Perform threat modeling, vulnerability testing, security risk analysis & security assessments
- Review security architecture & designs
- Secure medical devices, medical device software & IT software against cyber threats
- Lead cybersecurity risk assessments & cyber signal incident responses and investigations
- Lead cross-functional teams
- Coordinate strategic supplier & partner relationships
BASIC QUALIFICATIONS
- Master’s in Cybersecurity, Computer Science, Telecommunications or closely related field
- 4 years experience in cybersecurity-related position(s) in a medical device R&D environment:
- Performing threat modeling of regulated medical devices using STRIDE and assessing cybersecurity risk to patient safety & Protected Health Information (PHI)
- Creating security designs & requirements based on user needs
- Applying security technologies to medical device product designs within software & hardware, including network security, encryption, firewalls and TPM
- Leading cross-functional teams in reviewing security architecture and design
- Applying cybersecurity standards, including NIST CSF, NIST SP 800-30, AAMI TIR57 & AAMI TIR 97, and data privacy standards, including HIPAA
- Creating documentation for regulatory submissions, including cybersecurity management plans, threat model reports, security risk & cyber signal assessments, MDS2 and SBOM
- Applying cybersecurity & secure design principles to medical device products in compliance with FDA Cybersecurity Guidance for Medical Devices
- Conducting security testing & vulnerability scanning using Burp suite, Wireshark and Nessus and analyzing findings with qualitative risk prioritization, including CVSS and OWASP
- Planning & overseeing penetration testing with third party testers
- Developing cybersecurity policies & procedures
PREFERRED QUALIFICATIONS
- Position may telecommute on a full-time basis from anywhere in the U.S.
- Up to 10% travel to Pittsburgh, PA required.
COMPENSATION
- Salary Range: Employees can expect to be paid a salary between $190,000.00 to $220,000.00.
- Additional compensation may include a bonus or commission (if relevant).
- Additional benefits include health care, vision, dental, retirement, PTO, sick leave, etc.
- The offered salary may vary within this range based on an applicant’s location, market data/ranges, an applicant’s skills and prior relevant experience, certain degrees and certifications, and other relevant factors.
Mail resume to Cascinda Fischbeck, Bayer HealthCare LLC, 800 N. Lindbergh Blvd., E2NE, St. Louis, MO 63167 or email resume to BHC_careers@bayer.com. Include reference code below with resume.
LOCATION
Location: Whippany, NJ
EEO STATEMENT
Bayer Healthcare LLC is an Equal Opportunity Employer/Disabled/Veterans
Bayer Healthcare LLC is committed to providing access and reasonable accommodations in its application process for individuals with disabilities and encourages applicants with disabilities to request any needed accommodation(s) using the contact information below.
If you meet the requirements of this unique opportunity, and want to impact our mission Science for a better life, we encourage you to apply now. Job postings will remain open for a minimum of ten business days and are subject to immediate closure thereafter without additional notice.
Equal Opportunity Employer Statement: Notice for U.S. Visitors: All information on this site is subject to compliance with local rule and regulations as they may vary from time to time and across different geographies, including, without limitation, U.S. Executive Orders.
Division: Consumer Health
Reference Code 867137
Functional Area: IT
Employment Type: Regular
Position Grade:
INTRODUCTION
Principal Cybersecurity Engineer for Whippany, NJ to define project-level cybersecurity requirements; design & develop security solutions to mitigate product cybersecurity risks; understand medical device products & clinical applications to identify potential cybersecurity threats and develop mitigations; perform threat modeling, vulnerability testing, security risk analysis & security assessments; review security architecture & designs; secure medical devices, medical device software & IT software against cyber threats; lead cybersecurity risk assessments & cyber signal incident responses and investigations; lead cross-functional teams; coordinate strategic supplier & partner relationships.
ROLE AND RESPONSIBILITIES
- Define project-level cybersecurity requirements
- Design & develop security solutions to mitigate product cybersecurity risks
- Understand medical device products & clinical applications to identify potential cybersecurity threats and develop mitigations
- Perform threat modeling, vulnerability testing, security risk analysis & security assessments
- Review security architecture & designs
- Secure medical devices, medical device software & IT software against cyber threats
- Lead cybersecurity risk assessments & cyber signal incident responses and investigations
- Lead cross-functional teams
- Coordinate strategic supplier & partner relationships
BASIC QUALIFICATIONS
- Master’s in Cybersecurity, Computer Science, Telecommunications or closely related field
- 4 years experience in cybersecurity-related position(s) in a medical device R&D environment:
- Performing threat modeling of regulated medical devices using STRIDE and assessing cybersecurity risk to patient safety & Protected Health Information (PHI)
- Creating security designs & requirements based on user needs
- Applying security technologies to medical device product designs within software & hardware, including network security, encryption, firewalls and TPM
- Leading cross-functional teams in reviewing security architecture and design
- Applying cybersecurity standards, including NIST CSF, NIST SP 800-30, AAMI TIR57 & AAMI TIR 97, and data privacy standards, including HIPAA
- Creating documentation for regulatory submissions, including cybersecurity management plans, threat model reports, security risk & cyber signal assessments, MDS2 and SBOM
- Applying cybersecurity & secure design principles to medical device products in compliance with FDA Cybersecurity Guidance for Medical Devices
- Conducting security testing & vulnerability scanning using Burp suite, Wireshark and Nessus and analyzing findings with qualitative risk prioritization, including CVSS and OWASP
- Planning & overseeing penetration testing with third party testers
- Developing cybersecurity policies & procedures
PREFERRED QUALIFICATIONS
- Position may telecommute on a full-time basis from anywhere in the U.S.
- Up to 10% travel to Pittsburgh, PA required.
COMPENSATION
- Salary Range: Employees can expect to be paid a salary between $190,000.00 to $220,000.00.
- Additional compensation may include a bonus or commission (if relevant).
- Additional benefits include health care, vision, dental, retirement, PTO, sick leave, etc.
- The offered salary may vary within this range based on an applicant’s location, market data/ranges, an applicant’s skills and prior relevant experience, certain degrees and certifications, and other relevant factors.
Mail resume to Cascinda Fischbeck, Bayer HealthCare LLC, 800 N. Lindbergh Blvd., E2NE, St. Louis, MO 63167 or email resume to BHC_careers@bayer.com. Include reference code below with resume.
LOCATION
Location: Whippany, NJ
EEO STATEMENT
Bayer Healthcare LLC is an Equal Opportunity Employer/Disabled/Veterans
Bayer Healthcare LLC is committed to providing access and reasonable accommodations in its application process for individuals with disabilities and encourages applicants with disabilities to request any needed accommodation(s) using the contact information below.
If you meet the requirements of this unique opportunity, and want to impact our mission Science for a better life, we encourage you to apply now. Job postings will remain open for a minimum of ten business days and are subject to immediate closure thereafter without additional notice.
Equal Opportunity Employer Statement: Notice for U.S. Visitors: All information on this site is subject to compliance with local rule and regulations as they may vary from time to time and across different geographies, including, without limitation, U.S. Executive Orders.
Division: Consumer Health
Reference Code 867137
Functional Area: IT
Employment Type: Regular
Position Grade:
See all OPT Principal Cybersecurity Engineer Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new OPT Principal Cybersecurity Engineer Jobs.
Get Access To All JobsTips for Finding OPT Sponsorship as a Principal Cybersecurity Engineer
Target employers with active security clearance pipelines
Defense contractors and federal IT firms regularly sponsor OPT students for Principal Cybersecurity Engineer roles. These employers understand visa timelines and often have dedicated immigration counsel. Look for companies with DoD or federal agency contracts as a proxy for sponsorship willingness.
Align your degree to the specialty occupation standard
USCIS requires a direct connection between your degree field and the role. A degree in computer science, information security, or electrical engineering maps cleanly. If your degree is in a related but adjacent field, document how your coursework directly supports cybersecurity engineering work.
Prioritize STEM OPT extension eligibility from day one
A 24-month STEM extension gives you far more time to secure H-1B visa sponsorship. Confirm your degree program is on the USCIS STEM designated degree program list before accepting a role. File your extension application at least 90 days before your initial OPT expires.
Lead with certifications that signal senior-level credibility
CISSP, CISM, and OSCP are credentials employers associate with principal-level engineers. Holding one or more demonstrates you can operate independently and lead security programs, which strengthens both your candidacy and the employer's case for sponsoring your visa.
Negotiate H-1B sponsorship terms before accepting an offer
Confirm the employer will sponsor H-1B before your OPT expires, not just in principle. Ask whether they cover filing fees, use premium processing, and have done this before. Vague commitments become problems at the worst possible time.
Frame your job search around employers with prior H-1B filings
Employers who have sponsored H-1B petitions before are far more likely to do it again. They have established relationships with immigration attorneys and internal processes. This significantly reduces the risk that a sponsorship commitment falls apart when it matters most.
Principal Cybersecurity Engineer OPT: Frequently Asked Questions
Do Principal Cybersecurity Engineer roles qualify for OPT work authorization?
Yes. Principal Cybersecurity Engineer is a specialty occupation under USCIS standards, requiring at least a bachelor's degree in computer science, information security, or a closely related field. Most employers treat it as a senior individual contributor or technical lead role, which strengthens the specialty occupation argument. Your OPT EAD card is all the work authorization you need during the authorized period.
Does a Principal Cybersecurity Engineer role qualify for the 24-month STEM OPT extension?
It depends on your degree, not the job title. If your bachelor's, master's, or doctoral degree is in a STEM-designated field such as computer science, cybersecurity, or electrical engineering, you likely qualify. The employer must also be enrolled in E-Verify. If both conditions are met, you can apply for the 24-month extension, giving you up to three years of total OPT.
How do I find Principal Cybersecurity Engineer employers that sponsor OPT students?
Migrate Mate is built specifically for this search. It filters for employers actively willing to sponsor F-1 OPT and H-1B candidates, so you can focus on companies that have already committed to sponsorship rather than spending time on applications that will never go anywhere. Principal Cybersecurity Engineer roles are listed across defense, finance, and enterprise tech sectors.
Can I work as a Principal Cybersecurity Engineer if my role requires a security clearance?
This is a real constraint. Most U.S. security clearances require U.S. citizenship or permanent resident status, which OPT students typically don't hold. However, not all principal-level cybersecurity roles require clearances. Many positions in commercial finance, healthcare, and private sector tech do not. Filter your search toward non-cleared roles, and confirm clearance requirements before applying.
What visa options should I plan for after my OPT expires?
H-1B is the most common next step for Principal Cybersecurity Engineer roles. The annual lottery runs in March for an October 1 start date, so timing matters. If your employer misses a lottery cycle, your STEM OPT extension buys additional time. O-1A is also worth exploring if you have publications, conference presentations, industry awards, or other evidence of distinction in the cybersecurity field.