Senior Application Security Engineer 🔥
Science 37 is accelerating the research and development of breakthrough biomedical treatments by bringing clinical trials to patients' homes. Backed by venture investors such as Glynn Capital, Google Ventures, Redmile Group, dRx Capital and Lux Capital, we are revolutionizing the clinical trial industry one patient at a time. To help us achieve our goal, we are seeking a razor-sharp Senior Application Security Engineer eager to make an impact within a mission-driven organization.Â
The Senior Application Security Engineer is responsible for the application security of the entire software suite that the Technology department is creating, using, and managing including the Science 37’s platform. Our mission is to make the Science 37 platform the safest and most secure Clinical Trials Management System that everybody trusts with their most sensitive data.
At Science 37, we take security seriously. We are in a position to help protect not only our clients and sponsors but the patients and their health-related data. We strive to provide a well-balanced Clinical Trial Management System that patients are completely assured that their data is safe, and the sponsors get the reliable data and the result. The Senior Application Security Engineer works closely with cross functional departments to define and execute the security strategy and solutions.
Duties include but are not limited to:
- Drive the vision for security across Science 37 Technology department
- Improve current AWS infrastructure security and mobile application security
- Lead gap analysis and implement automations on AWS
- Responsible for vulnerability management and leading quick remediations
- Lead Engineering and Product for preventive solutions to solve application security issues at their roots
- Partner with Engineering, Product, IT, Legal and Compliance and Quality Assurance to build programs to raise the application security awareness in the company
- Build relationships with engineers, product managers, QA staff to collaborate and create synergy
- Facilitate security meetings
- Effectively communicate security risk to both technical and non-technical leaders across Science 37
Qualifications
- Bachelor’s Degree in Computer Science, Information Science or similar fields
- 7+ years of professional experience in application security
- Experience working with Amazon Web Services (AWS)
- Experience working with CloudFormation (YAML, JSON) and Python, Ruby, Java or Go
- Deep experience in detection, monitoring, alerting or threat intelligence
- Demonstrated track record of driving improvements to a company’s security profile
- Experience working in iterative software development environment
- ISO27001 experience is big plus or at least similar experience preferred
- PLUS: AWS Certifications
- PLUS: Knowledge of consumer privacy industry compliance requirements; GDPR, CCPA
- PLUS: Health care industry experience
- PLUS: Regulated environment experience; GxP, 21 CFR Part 11
- PLUS: Experience working with Mulesoft
- PLUS: AWS WAF, ECS, Inspector, Security Hub, Inspector, GuardDuty and CloudWatch
Skills and CompetenciesÂ
- Strong analytical skills to solve complex problems with multiple variables and optimize the solution
- Must be able to dive into problem solving, set directions, give detailed technical guidance to the team, document and assist with execution
- High level, written and verbal communication skills to both technical and non-technical leaders
- Outstanding organizational and leadership abilities
- Proven track record of delivering results and meeting targets
- Good blend of analytical skills, strategic thinking, planning and implementation
- Ability to articulate ideas to both technical and non-technical audiences
- Commitment to results; is focused and results driven
- Excellent time management skills
- Action oriented and innovative; able to translate broad goals into achievable steps
- Motivating; knows how to influence and enable others
- Strong problem solving and creative skills and the ability to exercise sound judgment and make decisions based on accurate and timely analyses
- High level of integrity and dependability with a strong sense of urgency and results-orientation
- Ability to foster and cultivate business opportunities and partnerships
CapabilitiesÂ
- Ability to communicate in English (both verbal and written)
Science 37 values the well-being of its employees and aims to provide team members with everything they need to succeed.Â
Submit your resume to apply!