DevSecOps Manager

Give hope. Give health. Make your mark in the fight against cancer.

At Accuray, we make a direct and powerful impact on the lives of cancer patients every day — helping them live longer, better lives. But our commitment to innovation offers a truly unique opportunity: the chance to change the fight against cancer — helping to develop, introduce and support new treatment delivery systems and software that will give new hope and new health to cancer patients and cancer survivors around the world.

Accuray develops, manufactures and sells radiotherapy systems for alternative cancer treatments. Our radiation therapy for cancer makes treatment shorter, safer, personalized and more effective, ultimately enabling patients to live longer, better lives.

Job Description

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Lead the DevSecOps strategy, aligning with business objectives and regulatory requirements
• Manage a team of engineers, fostering a culture of collaboration, innovation and continuous improvement
• Act as the primary liaison between development and cybersecurity teams to ensure seamless integration of security into the DevOps pipeline
• Design, implement, and maintain automated CI/CD pipelines with integrated security and quality gates
• Embed security practices into all phases of the SDLC, from design to deployment and monitoring
• Collaborate with development teams to integrate secure coding practices and vulnerability assessments
• Automate infrastructure provisioning and management using Infrastructure as Code (IaC) tools (e.g., Terraform, Ansible)
• Ensure software and infrastructure meet regulatory and compliance requirements, including HIPAA, GDPR, and FDA cybersecurity guidance
• Conduct security risk assessments and implement controls to mitigate vulnerabilities in medical device software
• Monitor and respond to security incidents, ensuring timely remediation and root cause analysis.
• Establish robust monitoring and logging solutions to detect and respond to performance, reliability, and security issues
• Optimize application performance, scalability, and availability using cloud and container orchestration tools
• Continuously evaluate new tools, technologies, and methodologies to improve the DevSecOps process
• Infrequent travel (<10%) may be required

CORE COMPETENCIES:

• Personal Excellence
  • Effective in communication, demonstrates professionalism at all times, and has an accurate picture of self
• Strengthening the Team
  • Demonstrates high performance standards and effectively collaborates with the team, demonstrates a sense of ownership over assigned deliverables, and shows a high degree of motivation toward achieving individual and team goals
• Drive for Results
  • Applies financial discipline and a good business sense, supports change, and makes high quality and timely decisions

REQUIRED QUALIFICATIONS:

• Required:
  • Bachelor of science degree (or equivalent) in computer science, engineering, or relevant field
  • Seven + years of DevOps or software engineering experience, with at least three years in a leadership or managerial role
  • Experience with technical project management or leadership
  • Direct experience with DevOps tools
  • Familiarity with secure software development frameworks and standards
  • Excellent written, verbal, and technical communication skills
  • Must be able to work in a multi-functional team environment

• Preferred or Desired:
• Familiarity with Agile and other methodologies
• Experience with product development in a Medical Device or Regulated Product environment.
• Excellent computer skills, including the use of automation tools, scripting languages (ie: PowerShell, Python), networking systems and utilities, etc.
• Knowledge of Windows and Linux operating systems
• Strong knowledge of security tools
• Familiarity with package management solutions
• Proficiency in cloud platforms
• Ability to mentor Junior Software Developers, as well as to collaborate with all stakeholders

WORKING CONDITIONS

• Indoor Environment: The position takes place indoors, providing a comfortable and climate-controlled workspace
• Sedentary Work: This role involves extended periods of sitting and working at a desk, requiring good ergonomic practices
• Computer Usage: Proficiency with computers, including software applications and communication tools, is essential for tasks and collaboration
• Minimal Physical Strain: While physical demands are generally low, occasional light lifting and moving of objects might be required
• Structured Schedule: This position usually follows regular business hours, promoting a consistent and predictable work routine

To qualify for this position, candidates must be able to furnish proof that they are authorized to work in the country they are applying on a permanent basis without sponsorship.

EEO Statement

At Accuray, our commitment to patient-first outcomes drives an inclusive and collaborative work environment where the best ideas rise to the top — and everyone works to push them further. We value diversity in both the professional and personal backgrounds of our employees, as this variety adds rich energy to every team, every project and every work day. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or national origin – including individuals with disabilities and veterans.