Offers “Roche”

Expires soon Roche

Software Engineer Senior, Cybersecurity

  • Tucson, USA
  • IT development

Job description

The Position

Join a dynamic team of Software Architecture and Development professionals who are developing the next generation of Roche Tissue Diagnostics products and continually improving on-market products. Become an instrument of change by influencing the direction and implementation of product security. As a Subject Matter Expert in your domain, you will provide guidance to development teams on applicable risk mitigation strategies and consult during design and implementation.


We are designing and developing high quality medical diagnostic devices. In addition to reliability, efficacy, and a wide range of diagnostic tests, the protection of our products against cyber threats is an important expectation from our customers. This role requires a strong background in software architecture, security concepts and secure by design / secure by default principals in order to support our Software Development organization and the Product Teams in assessing Cyber Security risks, defining, implementing and validating security measures, and analyzing threats and vulnerabilities for our medical device product portfolio.

Responsibilities 

  • Contribute as a Subject Matter Expert (SME) to the Cyber Security Risk Assessments for the Ventana product portfolio, including the creation of threat models, risk identification, risk rating, selection and verification of mitigations and assessment of residual risk.
  • Support the Cyber Security architecture by contributing technical knowledge about secure design patterns and the right use of security technologies to the development teams.
  • Ensure adherence to secure coding practices by using different methods like peer reviews, static code analysis and dynamic system scanning tools.
  • Interface with Divisional Vulnerability Monitoring Services and assess reported vulnerabilities in the Ventana product context.
  • Consult the development teams in analyzing potential impacts and exposure of vulnerabilities.
  • Consult the Product Teams to decide on appropriate vulnerability response strategies.
  • Collaborate with divisional Cyber Security Analysts and Product Cyber Emergency Response Teams to address divisional Cyber Security vulnerabilities affecting multiple business areas. 
  • Create and review documentation of security concepts, secure designs and plans to maintain the security state of the product portfolio throughout its lifecycle.
  • Collaborate with Software Development Process Engineers to define and propagate processes in the areas of Cyber Security to enable continuous compliance of product development and maintenance processes. 

Requirements

  • BS degree or equivalent and 8 years of experience in a directly related discipline or equivalent combination of education and experience. 
  • MS degree in directly related discipline + 4 years of related experience required; OR, PhD degree in a directly related discipline + 2 years of related experience required. 
  • Prior experience in secure software development.
  • Cyber security certification(s) desired, but not required (e.g. CISA, CSIM, CISSP)
  • Experience in Cloud security concepts desired. 
  • Experience with medical devices, especially IVD systems, desired. 

Relocation benefits are not available for this job posting.

Who we are

At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we’ve become one of the world’s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.

Ventana Medical Systems, Inc. (Ventana), a member of the Roche Group, innovates and manufactures instruments and reagents that automate tissue processing and slide staining for cancer diagnostics. Our integrated staining, workflow management and digital pathology solutions optimize laboratory efficiency to reduce errors and support diagnosis for pathology professionals. Together with Roche, Ventana is driving personalized healthcare through accelerated drug discovery and companion diagnostics.

Roche is an equal opportunity employer and strictly prohibits unlawful discrimination based upon an individual’s race, color, religion, gender, sexual orientation, gender identity/expression, national origin/ancestry, age, mental/physical disability, medical condition, marital status, veteran status, or any other characteristic protected by law.

If you have a disability and need an accommodation in relation to the online application process, please contact us by completing this form Accommodations for Applicants.

Make every future a success.
  • Job directory
  • Business directory