Senior Security Engineer

Radformation
Summary
Join Radformation, a company dedicated to improving global cancer care through automated treatment planning, as a Cybersecurity Expert. This fully remote role involves leveraging your technical skills to enhance radiation oncology software. You will contribute to a team focused on bringing efficient and automated software to market, working within a regulated medical device software development process. The ideal candidate possesses extensive experience in cybersecurity regulations and agile software development, with a preference for experience in radiotherapy or similar regulated domains. Radformation offers a competitive salary and benefits package, including comprehensive health insurance, 401k with employer match, paid time off, generous parental leave, and a collaborative remote work environment.
Requirements
- Possess an MS in a related technical field and at least 15 years of experience or a BS in a related field and at least 20 years of experience
- Have experience implementing controls for cybersecurity regulations like ISO 81001 and the UK NHS CyberEssentials
- Have experience in agile software development
Responsibilities
- Take technical ownership of all things cybersecurity within the organization. This includes processes, procedures, internal IT controls, and routine cybersecurity processes
- Automate routine cybersecurity operations
- Work with CISO, Security Architect, Technical Leads, Product, Regulatory, Finance, and Internal IT to continually improve the companyβs cybersecurity posture, processes, and procedures
- Ensure Radformation cybersecurity policies and procedures are in line with existing and new cybersecurity standards
- Research, specify, and recommend new controls for the company as needed by new regulations
- Create and review documentation for regulatory filings
- Lead security related design reviews for product development teams
- Lead cybersecurity escalations. Interface with appropriate internal and external actors keeping all informed during and after escalations
- Lead other technical staff with creation of SOUP management, SBOMs, Threat Models, Security Architecture, and Security Risk Management Reports
- Project manage all external cybersecurity activities like penetration testing and compliance assessments
Preferred Qualifications
- Have experience coding in large complex systems, like Radiotherapy Treatment Planning Systems, or CAD systems
- Have medical device software development experience
- Have experience with medical technologies / interfacing like FHIR, HL7, DICOM
Benefits
- Competitive salary
- Paid time off
- Work remotely
- Collaborative team environment
- Top-tier medical, dental, vision care for employees and their families
- 401(k) & employer match that vests immediately
- Self-managed PTO
- Generous parental leave
- Options for part-time work to help transition back into the swing of things after parental leave
- Virtual events
- Yearly retreats