Senior Security Engineer (Application Security)

150 000 - 185 000$

Формат работы

hybrid

Тип работы

fulltime

Грейд

senior

Английский

Страна

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Senior Security Engineer (Application Security): Building and maintaining robust security protocols and cloud architecture for an AI-powered healthcare platform with an accent on AppSec, CloudSec, and regulatory compliance. Focus on integrating security into CI/CD pipelines, conducting vulnerability assessments, and ensuring HIPAA/GDPR adherence in a highly regulated environment.

Location: Hybrid in New York, NY

Compensation: $150,000 - $185,000 USD

Company

hirify.global is an AI-powered virtual care engine that partners with leading health systems to modernize primary virtual care clinics.

What you will do

Lead the development and implementation of application security protocols throughout the entire SDLC.
Design, deploy, and monitor cloud security architecture across various environments to ensure resilience.
Manage the security posture of core IT infrastructure, internal networks, and perimeter defenses.
Ensure strict adherence to healthcare regulatory requirements including HIPAA and GDPR.
Conduct proactive vulnerability assessments, penetration tests, and security reviews.
Collaborate with engineering teams to integrate security tools into CI/CD pipelines.

Requirements

5+ years of experience in Information Security, Cloud Security, IT Security, or Application Security.
Strong expertise in cloud technologies (AWS, GCP, or Azure) and modern programming languages.
Proven experience establishing enterprise-wide security policies and guidelines.
Experience building security postures specifically within the regulated healthcare technology field.
Expertise in compliance frameworks such as HIPAA, PHI, AKS, SOC 2, ISO, and GDPR.
Flexibility to cover a rotation for critical on-call support responsibilities.

Nice to have

Experience with Datadog, Sumologic, Torq, flare.io, GCP, Entitle, Okta, Orca, FlowSec, or Prisma.
Interest in implementing bleeding-edge technology.

Culture & Benefits

Hybrid work schedule with weekly company lunches.
Comprehensive benefits including 401k and competitive health, dental, and vision insurance.
Stock options for every full-time employee.
Paid parental leave and commuter benefits.
Generous time off: 18 vacation days, 9 company holidays, 5 sick days, and 2 personal days.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →