Product Security Engineer (Remote)

Remote

Grand Rounds logo
Grand Rounds
We’re here to find you a doctor, tackle a bill or explain your insurance benefits. And thanks to your employer, it won’t cost you a thing. It’s care shaped around you.
Apply now Apply later

About the role:Grand Rounds is looking to hire a Product Security Engineer! In this role, you will be helping Grand Rounds change the standard of security in healthcare, and help us build our Product Security team. You will be working with developers, engineers, data scientists, and other professionals to ensure our platform, application, and member experience are secure.

Responsibilities:

  • Security engineering and architecture background for both corporate and cloud infrastructure. You will have made design choices and implemented security capabilities for Network Design (IDS/IPS), Secure Access (Active Directory + AWS IAM), Threat Models, and Security Monitoring amongst others, for a variety of Operating Systems and different environments.  
  • Cloud security, and cloud native security capabilities. You will be working closely with the Data Engineering team and Member Experience (Application) team to incorporate security best practices, process, and capabilities into our cloud infrastructure and applications.
  • Experience and opinions with infrastructure as code. You will be working with our Platform Engineering team to harden and secure our infrastructure as code repositories and ensure security best practices are followed.
  • Experience working with developers throughout the software development lifecycle to ensure Security by Design.
  • Act as the Security Architect, working together with other Architects and Staff Software Engineers to plan, and execute joint initiatives to make our product and platform more secure, while maintaining velocity.
  • Mature the vulnerability management and bug bounty program for Grand Rounds. You will also help research the potential impact of recently disclosed vulnerabilities, and assess criticality of findings to drive remediation with our engineering business partners.
  • Team player, influencer, and growth mindset to help drive out of the box solutions.
  • Excellent communication skills to clearly communicate security recommendations, decisions, and to build and maintain security relationships across the enterprise.

Qualifications:

  • Bachelor’s Degree in Computer Science or a related field and 6 years experience in Information Security
  • CISSP, CCSK, CCSP certifications
  • Experience working with common security vendors for an AWS stack, and also with cloud native AWS security capabilities 
  • Code comprehension in at least two languages (Java, Python, Ruby, C++ etc.) 
  • Experienced with Container Security and expert in security best practices for K8, and Docker.
  • Self-starter, to help drive, define, and build the Product Security team, roadmap, and roles/responsibilities.
  • Discussion and collaboration mindset. Engaging in healthy, constructive debates is key to our teams to innovate and plan for the future, of which Information Security plays a key role.
  • Experience in implementing controls and supporting audit or evidence requests for information security compliance programs including PCI, ISO 27001, HITRUST, and SOC 2
  • Previous experience working in a startup environment
About Grand Rounds Health, Doctor On Demand and Included Health:Grand Rounds Health, Doctor On Demand and Included Health merged in 2021 to form the first of its kind integrated virtual care company to raise the standard of healthcare. Our personalized, longitudinal care services include primary care, specialty care, integrated behavioral health, everyday and urgent care, chronic condition management and prevention and 24/7 triage. We get members to the right care, at the right time through ongoing clinical navigation, expert medical opinions and care coordination.
Partnering with leading employers and health plans, we deliver unparalleled, end-to-end care. Our combined nationwide practice of dedicated clinicians and innovative data science and technology platforms provide better care experiences, better member satisfaction, and better outcomes and cost savings for our nearly 100 million covered lives across commercial, Medicare and Medicaid. 
Headquartered in San Francisco, the combined company has been recognized as a 2020 UCSF Digital Health Award winner for Employer Wellness and 2021 Best Workplaces in Healthcare and Biopharma™ by Great Place to Work and Fortune. Learn more at www.grandrounds.com and www.doctorondemand.com.
-----Grand Rounds Health is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics or any other basis forbidden under federal, state, or local law. Grand Rounds Health considers all qualified applicants in accordance with the San Francisco Fair Chance Ordinance.
Job region(s): Remote/Anywhere
Job stats:  14  3  0
  • Share this job via
  • or

Explore more Information Security career opportunities