Senior Application Security Engineer

Remote, USA

Science 37 logo
Science 37
Apply now Apply later

Posted 2 weeks ago

Science 37 is accelerating the research and development of breakthrough biomedical treatments by bringing clinical trials to patients' homes. Backed by venture investors such as Glynn Capital, Google Ventures, Redmile Group, dRx Capital and Lux Capital, we are revolutionizing the clinical trial industry one patient at a time. To help us achieve our goal, we are seeking a razor-sharp Senior Application Security Engineer eager to make an impact within a mission-driven organization. 

The Senior Application Security Engineer is responsible for the application security of the entire software suite that the Technology department is creating, using, and managing including the Science 37’s platform. Our mission is to make the Science 37 platform the safest and most secure Clinical Trials Management System that everybody trusts with their most sensitive data.

At Science 37, we take security seriously. We are in a position to help protect not only our clients and sponsors but the patients and their health-related data. We strive to provide a well-balanced Clinical Trial Management System that patients are completely assured that their data is safe, and the sponsors get the reliable data and the result. The Senior Application Security Engineer works closely with cross functional departments to define and execute the security strategy and solutions.

Duties and Responsibilities 

Duties include but are not limited to:

  1. Drive the vision for security across Science 37 Technology department
  2. Improve current AWS infrastructure security and mobile application security
  3. Lead gap analysis and implement automations on AWS
  4. Responsible for vulnerability management and leading quick remediations
  5. Lead Engineering and Product for preventive solutions to solve application security issues at their roots
  6. Partner with Engineering, Product, IT, Legal and Compliance and Quality Assurance to build programs to raise the application security awareness in the company
  7. Build relationships with engineers, product managers, QA staff to collaborate and create synergy
  8. Facilitate security meetings
  9. Effectively communicate security risk to both technical and non-technical leaders across Science 37

Qualifications

  1. Bachelor’s Degree in Computer Science, Information Science or similar fields
  2. 7+ years of professional experience in application security
  3. Experience working with Amazon Web Services (AWS)
  4. Experience working with CloudFormation (YAML, JSON) and Python, Ruby, Java or Go
  5. Deep experience in detection, monitoring, alerting or threat intelligence
  6. Demonstrated track record of driving improvements to a company’s security profile
  7. Experience working in iterative software development environment
  8. ISO27001 experience is big plus or at least similar experience preferred
  9. PLUS: AWS Certifications
  10. PLUS: Knowledge of consumer privacy industry compliance requirements; GDPR, CCPA
  11. PLUS: Health care industry experience
  12. PLUS: Regulated environment experience; GxP, 21 CFR Part 11
  13. PLUS: Experience working with Mulesoft
  14. PLUS: AWS WAF, ECS, Inspector, Security Hub, Inspector, GuardDuty and CloudWatch

Skills and Competencies 

  1. Strong analytical skills to solve complex problems with multiple variables and optimize the solution
  2. Must be able to dive into problem solving, set directions, give detailed technical guidance to the team, document and assist with execution
  3. High level, written and verbal communication skills to both technical and non-technical leaders
  4. Outstanding organizational and leadership abilities
  5. Proven track record of delivering results and meeting targets
  6. Good blend of analytical skills, strategic thinking, planning and implementation
  7. Ability to articulate ideas to both technical and non-technical audiences
  8. Commitment to results; is focused and results driven
  9. Excellent time management skills
  10. Action oriented and innovative; able to translate broad goals into achievable steps
  11. Motivating; knows how to influence and enable others
  12. Strong problem solving and creative skills and the ability to exercise sound judgment and make decisions based on accurate and timely analyses
  13. High level of integrity and dependability with a strong sense of urgency and results-orientation
  14. Ability to foster and cultivate business opportunities and partnerships

Capabilities 

  1. Ability to communicate in English (both verbal and written)
Supervision  This position reports to the Director, Application Security.    Direct Reports  No direct reports

Science 37 values the well-being of its employees and aims to provide team members with everything they need to succeed. 

Submit your resume to apply!

Job tags: AWS GDPR Go Google ISO27001 Java Python Ruby Strategy Threat intelligence Vulnerability management
Share this job: