Senior Security Engineer

Work at Radformation

Cancer rates increase year after year, yet high-quality care is not universal. By automating and standardizing the treatment planning workflow, Radformation aims to create a system where any patient anywhere can receive the same high-quality care.

We strive daily to reduce cancer's global impact and help save more of the 10 million lives it claims each year. Our unwavering commitment is to deliver reliable, high-quality, automated solutions that allow clinics to standardized care for every single person in need.

Radformation is seeking a self starting Cybersecurity Expert to join our innovative and fast moving organization.  This role is ideal for someone who wishes to use their technical skills to improve cancer care throughout the world.   You will work within Radformation’s fully remote teams to help teams bring radiation oncology efficiency and automation software to market.  For this position we prefer candidates who have a background working in the radiotherapy or similarly regulated domain.  We are looking for a seasoned expert who understands how best to meet cybersecurity needs within the regulated medical device software development process.  The candidate will embrace creating Standard Operating Procedures, Work Instructions, and also product specific documents like Threat Models, Security Risk Management Reports, Vulnerability Assessments.  Along with this you will work with technical staff on product teams while managing penetration testing, vulnerability scanning, SAST and Software Composition Analysis, and automation of routine cybersecurity operations.  The ideal candidate can deftly meet the regulatory needs while helping keep Radformation and our customers secure.

Education and Experience

MS in a related technical field  and at least 15 years experience or

BS  in a related field and at least 20 years experience.

Required Experience

Experience implementing controls for cybersecurity regulations like ISO 81001 and the UK NHS CyberEssentials.

Agile software development 

Preferred Experience

Experience coding in large complex systems, like Radiotherapy Treatment Planning Systems, or CAD systems.

Medical device software development experience.

Experience with medical technologies / interfacing like FHIR, HL7, DICOM

Benefits

Competitive salary

Paid time off

Work remotely

Collaborative team environment

• Technical ownership of all things cybersecurity within the organization.  Processes, procedures, internal IT controls, routine cybersecurity processes.  
• Automate routine cybersecurity operations.
• Work with CISO, Security Architect, Technical Leads, Product, Regulatory, Finance, and Internal IT to continually improve the company’s cybersecurity posture, processes, and procedures.
• Ensure Radformation cybersecurity policies and procedures are in line with existing and new cybersecurity standards.
• Research, specify, recommend new controls for the company as needed by new regulations.
• Create and review documentation for regulatory filings.
• Lead security related design reviews for product development teams.
• Lead cybersecurity escalations.  Interface with appropriate internal and external actors keeping all informed during and after escalations.
• Lead  other technical staff with creation of SOUP management, SBOMs, Threat Models, Security Architecture, and Security Risk Management Reports.  
• Project manage all external cybersecurity activities like penetration testing and compliance assessments.

• Required experience implementing controls for cybersecurity regulations like ISO 81001 and the UK NHS CyberEssentials.
• Agile software development 
• Experience coding in large complex systems, like Radiotherapy Treatment Planning Systems, or CAD systems.
• Medical device software development experience.
• Experience with medical technologies / interfacing like FHIR, HL7, DICOM

What makes us so RAD?

We take care of our people!

Radformation offers top-tier medical, dental, vision care for employees and their families. Each role comes with our 401(k) & employer match vest immediately and you'll never have to stress about taking the time you need with self-managed PTO. We support our growing RAD families with generous parental leave, along with additional part-time work to help transition back into the swing of things. We are a fully remote team and while we may be apart, virtual events, yearly retreats and a collaborative work environment keep us close and connected.

Cancer transcends any individual differences we may have. That's why at Radformation we celebrate diversity and are committed to creating an inclusive environment for all employees. We are proud to be an equal opportunity workplace and an affirmative action employer.