Plus
Включить Plus
Назад
Company hidden
1 день назад

Senior Security Engineer - Application Security (Healthcare)

150 000 - 185 000$
Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Security Engineer - Application Security (Healthcare): Lead development and implementation of application security protocols throughout SDLC and design cloud security architecture with an accent on compliance, threat mitigation, and infrastructure protection. Focus on conducting vulnerability assessments, penetration tests, and integrating security into CI/CD pipelines.

Location: New York, NY (Hybrid schedule with weekly lunches)

Compensation: $150,000 - $185,000 USD

Company

AI-powered virtual care engine partnering with leading health systems like Mayo Clinic and Cedars-Sinai to modernize primary care.

What you will do

  • Lead development and implementation of application security protocols throughout the SDLC.
  • Design, deploy, and monitor cloud security architecture in AWS, GCP, or Azure environments.
  • Manage security posture of core IT infrastructure, networks, and perimeter defenses.
  • Ensure adherence to healthcare regulations like HIPAA and GDPR across all systems.
  • Conduct vulnerability assessments, penetration tests, and security reviews.
  • Collaborate with engineering to integrate security into CI/CD pipelines.

Requirements

  • 5+ years in Information Security, Cloud Security, IT Security, or Application Security
  • Strong expertise in cloud tech (AWS, GCP, Azure), modern programming, and AI code utilities security.
  • Experience researching and rolling out enterprise-wide security policies.
  • Proven security posture in regulated healthcare tech.
  • Expertise in HIPAA, PHI, SOC 2, ISO, GDPR.
  • Flexibility for on-call rotation
  • Excellent communication for technical and non-technical stakeholders.

Nice to have

  • Experience with Datadog, Sumologic, Torq, flare.io, GCP, Entitle, Okta, Orca, FlowSec, Prisma.
  • Exploring and implementing bleeding-edge tech.

Culture & Benefits

  • Hybrid schedule with weekly lunches and stocked fridges.
  • Monthly social committees for company events.
  • 18 vacation days, 9 holidays, 5 sick days, 2 personal days.
  • Stock options, paid parental leave, 401k, commuter benefits.
  • Competitive health, dental, vision insurance.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →