Senior Security Engineer, Threat and Vulnerability Management (Remote)

San Francisco Bay Area

Full Time Senior-level / Expert
Truepill logo

Truepill

Truepill's API-connected healthcare infrastructure empowers our partners to deliver world-class patient experiences. Click to find out how.
Apply now Apply later

At Truepill, we are building the future of healthcare. Through our digital health platform, we empower our partners to deliver world-class patient experiences. With nearly five million prescriptions shipped, we’ve been included on Forbes’ “Next Billion-Dollar Startup” list and are proud to work with many of the world’s largest healthcare organizations. We never settle for how it’s done today. We invent how it will be done tomorrow. 
None of this is possible without the right team driving us forward. We are committed to creating an environment focused on racial and gender equality, inclusion, empowerment and respect. We believe that when our teams feel supported and inspired, they turn that creativity into innovation. The type of innovation that benefits all of our people, our partners and our patients.
We encourage our team members to expand their horizons and bring their passion and curiosity to work, every day. Come join us. Let’s build something great together.
 #LI-Remote

What You'll Be Doing:

  • Provide recommendations on remediating host-based and web application vulnerabilities
  • Lead roadmap development for application threat and vulnerability management program
  • Serve as the subject matter expert for the threat and vulnerability processes and technology including reporting on program effectiveness
  • Monitor for critical vulnerabilities and exposures relevant to safeguarding our products and services
  • Provide analysis of vulnerabilities and consulting to stakeholders on remediation and mitigation strategies
  • Work directly with Program Managers, Developers, and SREs to prioritize and fix vulnerabilities in proper sprints
  • Work directly with external Penetration Testers to ensure applications are scanned and remediated before major releases and changes
  • Work with Security Officer to influence stakeholders to prioritize and execute risk management initiatives and drive remediation of process and technology gaps reporting on progress
  • Documentation skills to promote continuous improvement of policies, processes, and practices related to Vulnerability management
  • Support the design and planning of our risk management processes including component analysis, dynamic/static testing, and other assessment activities
  • Advise on security standards and processes
  • Work with some of the leading Cloud Service Providers (CSPs) to validate vulnerability management security posture of their products and services

What You'll Need:

  • Good understanding and experience of Linux and Windows operating systems
  • Good understanding and exposure to network and web application security
  • Able to communicate vulnerabilities, solutions, and enterprise trends to all levels of an enterprise – both technical and non-technical resources
  • Able to write and deliver reports to Security Officer
  • Able to work directly with departments on troublesome vulnerability issues
  • Want to provide support and answering queries
  • Ability to communicate with customers in a clear and concise manner
  • Critical Thinking: Thoughtful process of analyzing data and problem solving data to reach a well-reasoned solution
  • Team Mentality: Partnering effectively to drive our culture and execute on our common goals
  • Ability to influence with or without authority to achieve desired outcomes
Truepill is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
Job region(s): Remote/Anywhere North America
Job stats:  13  2  0
  • Share this job via
  • or

Explore more Information Security career opportunities