AppSec Jobs
← Back to all jobs

Resmed

Senior Product Security Engineer

IN BangaloreWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Resmed

ResMed is a global leader in digital health technology, focusing on cloud-connectable medical devices and software for treating sleep apnea, COPD, and other chronic respiratory diseases. Founded in Australia in 1989 by Dr. Peter Farrell, the company has its headquarters in San Diego, California, and operates in over 140 countries. ResMed employs more than 8,000 people and reported revenues of US$4.7 billion for fiscal year 2024. The company develops a range of products, including CPAP machines, bilevel devices, and masks designed for comfort and effectiveness. ResMed also offers in-home life-support ventilators and digital health solutions for remote monitoring and chronic disease management. Their innovations, such as the AirView monitoring system and the SleepScore app, enhance patient care and adherence tracking, ultimately improving the quality of life for millions of patients worldwide.

Industry

medical devices

Employees

10,000

1327 engineers

Revenue

$5.1B

Website

Visit →

Security at Resmed

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

ResMed job posting explicitly states the role is "enabling developers to build secure applications." This indicates developer enablement is a stated objective in job text.

Security Team

  • ResMed's Chief Information Security Officer (CISO), Todd Friedman, is responsible for enterprise security, application security, and global risk and compliance, overseeing the team that sets information security strategy.
  • Several security practitioners, including Hemant Gupta, Stephen Smith, and Dhruv Upadhyay, hold security titles at ResMed.

Key Initiatives

Information regarding an explicit Security Champions program structure and charter, detailed vulnerability management SLAs (e.g., MTTR, remediation SLA days), and formalized 'shift-left' artifacts beyond CI/CD integration wording is not publicly available.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.