Senior Application Security Engineer

Westborough, MA

Applications have closed

eClinicalWorks

The largest cloud-based EHR software in the U.S. Our EHR, telehealth, and other practice management solutions help you grow and maintain your practice.

View company page

Senior Application Security Engineer

We are eClinicalWorks. We are a privately held leader in healthcare IT, providing comprehensive, cloud-based EHR/PRM solutions to medical professionals worldwide to improve workflows and reduce the risk of physician burnout.

We care. We are committed to positive change. And that’s where you come in. Do you value creativity and innovation? Great, so do we. At eClinicalWorks, we share a passion for improving healthcare through dedication, education, and teamwork. Everyone has that one thing they’re really good at. We value your talent and want you to join our fast-paced, fun, and culturally diverse environment. Ready to make a difference? Apply today.
 

Responsibilities:

  1. Vulnerability Assessment of Web Applications, APIs and Mobile Android, iOS applications using manual and automated methods.
  2. True Positive Analysis and demonstrate a POC of the vulnerability/exploit.
  3. Reporting of the identified vulnerability and follow thru the SDLC.
  4. Security configuration reviews for various products of eClinicalWorks.
  5. Integral part of the SDLC and Perform Source code reviews.
  6. Work closely with development, QA, Release management and infrastructure teams to analyze, diagnose, and rectify security flaws within the eCW applications.
  7. Research on identification of new vulnerabilities and threats
  8. Provide guidance and drive security for new development
  9. Conduct trainings on security standards and best practices 
     

Experience with: 
4+ years of experience performing Vulnerability assessments for web applications and

Secure SDLC

 

Educational Requirements:
Bachelors/master’s degree in computer science or related discipline. 

 

Certifications:
CEH (Certified Ethical Hacker) preferred

OSCP (Offensive Security Certified Professional) preferred

 

Preferred:

  1. 4+ years of experience performing Vulnerability assessments for mobile applications
  2. Secure SDLC
  3. Ability to work with a global team providing direction and guidance
  4. Expert level understanding of Security concepts
  5. Keep oneself updated on the latest IT Security news, exploits and hacks
  6. Effective documentation, communication and interpersonal skills
  7. Strong Team Player

 

eClinicalWorks is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills, and experiences that bring us together and help create a healthy world.
 

Tags: Android APIs Application security CEH Cloud Computer Science Exploit Exploits iOS Offensive security OSCP SDLC Vulnerabilities

Region: North America
Job stats:  87  5  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.