We are looking for a Lead Security Engineer to help increase the security capabilities of our teams. Y ou will join the team which is working with scrum teams, product managers, and engineering leadership daily to improve the quality and adoption of athena s Security Development Lifecycle practices. But enough about us; let s talk about you!
You are a curious problem solver with a passion for security. You love improving the quality and adoption of S ecurity D evelopment Lifecycle practices and you thrive working in technical leadership roles with a high degree of independence. We are specifically looking for priori experience with threat modeling and security architecture review.
The Team: Join a collaborative group that solves new and interesting application security problems at scale. Use your security, engineering, and communication skills to make a difference with the company that allows medical professionals to focus on what they do best - treat patients.
Responsible for socializing and driving the execution of key security best practices across the R&D organization
Contribute to enterprise security catalog of best practices, techniques and patterns to enable secure implementation of features in products/product families
Work with multiple systems within the organization to ensure interoperability and efficient exchange of data
Understand resiliency and Service Level Agreement requirements and implement solutions inherent to both SLA and resiliency
Works with datasets and data warehouses to collect, report and present operational data
Ability to use and build APIs for consumption and distribution of data
Explain and ensure correct use of authentication and authorization concepts, including use of OAu th and Active Directory
Explain and ensure correct storage and use of secrets
Bachelor's degree in Computer Science, Computer Engineering, Cyber Security or similar or equivalent experience
At least 3 years experience as a software developer and 8 - 13 years in a security focused development role in an agile development environment
Experience in software and product design and architecture, product security, security issue prevention and mitigation strategies
Knowledge of key security technologies like OAuth, SAML, etc.
Solid understanding of the web services world including RESTful services, Service Bus architectures, JSON etc