Senior Security Engineer @ hims & hers | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
Senior Security Engineer jobs in Boston, MA
Be an early applicantLess than 25 applicants
job-post-linkOriginal Job Post
company-logo

hims & hers · 3 days ago

Senior Security Engineer

positionBoston, MA
timeFull-time
remoteRemote
senioritySenior Level
money$135K/yr - $165K/yr
date8+ years exp

Wonder how qualified you are to the job?

ftfMaximize your interview chances
Health CareLifestyle
check
Actively Hiring

Insider Connection @hims & hers

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Ownership of security scanning complex (SAST, SCA, DAST, etc.)
Develop and promote security architecture and design strategies, frameworks, and patterns while collaborating closely with engineering, and product organization
Actively partner with stakeholders to understand business requirements and develop supporting security and resiliency principles to ensure the adoption of industry best practices
Ensure information security and regulatory requirements are effectively integrated into new or improved systems
Demonstrates expert technology competence in security domains including but not limited to application, cloud, resiliency, identity, access management, and data security
Establish credibility among technology experts as the subject matter expert across security disciplines
Review and influence the security of vendor applications and systems to ensure they meet our security objectives and can be implemented securely
Analyze technical risks of existing systems and applications against correlating policies and risks, and provide appropriate remediation or risk reduction plans
Participate in the design and execution of vulnerability assessments, red team /penetration tests, security audits, and cybersecurity exercises
Define, publish, and implement Security Standards / Frameworks
Effectively communicates across departments and leadership groups and builds consensus in support of strategic objectives
Establish a security vision and roadmap while ensuring it aligns with the cybersecurity strategy, enterprise business and technology strategy, and industry trends.
Mentor and guide engineering teams on security best practices
Serve as a champion for secure SDLC and secure cloud adoption
Threat modeling, end-to-end security evaluation

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Java/KotlinJavaScriptWeb ServicesREST/SOAPModern DevelopmentAuthenticationAuthorizationSAMLOpenIDOAuth2Agile ApproachDevSecOps PracticesSecurity ExperienceMobile SecurityAPI SecurityTwelve-Factor App MethodologyCloud-Based PlatformsAWSAzureGCPSecurity Scanning ToolsSASTDASTSCAPEN TestingBug Bounty ProgramHealthcare Industry KnowledgeHIPAA Privacy RulesHIPAA Security RulesIAM Domain Experience

Required

Bachelor's degree in Computer Science, Engineering, Information Systems, or equivalent background or experience
8+ years of relevant technical experience
5+ years of security experience
Prior experience with Mobile and API security
Deep understanding of the Twelve-Factor App methodology
Prior experience working with cloud-based platforms (AWS, Azure, GCP) in an enterprise environment
Prior experience with security scanning tools (SAST, DAST, SCA, etc.), PEN Testing, and the Bug Bounty program
Significant experience with Java/Kotlin, JavaScript, web services (REST/SOAP), and modern development and delivery techniques
Strong knowledge of authentication and authorization industry standards such as SAML, OpenID, OAuth2
Experience developing solutions in an iterative (Agile) approach and hands-on knowledge of DevSecOps practices

Preferred

Prior experience in the healthcare industry including a strong understanding of HIPAA Privacy and Security Rules preferred
Experience in the IAM domain including tools (Okta, Centrify, CyberArk, Ping) preferred
CISSP, CCSP, and AWS Cloud certification desirable

Benefits

Competitive salary & equity compensation for full-time roles
Unlimited PTO, company holidays, and quarterly mental health days
Comprehensive health benefits including medical, dental & vision, and parental leave
Employee Stock Purchase Program (ESPP)
Employee discounts on hims & hers & Apostrophe online products
401k benefits with employer matching contribution
Offsite team retreats

Company

hims & hers

twittertwittertwitter
Glassdoor
3.4
company-logo
Hims is a wellness brand that helps men and women get access to products for skin care, hair loss, and sexual health.
dateFounded in 2017
location
San Francisco, California, USA
people-size501-1,000 employees
web-link
https://www.forhims.com

Funding

Current Stage
Public Company
Total Funding
$233.2M
Key Investors
Franklin TempletonIVPThrive Capital
2021-01-21Post Ipo Equity· $75M
2021-01-21IPO· nyse:HIMS
2020-03-01Private Equity· Undisclosed

Leadership Team

leader-logo
Yemi Okupe
CFO
linkedin
leader-logo
Melissa Baird
COO
linkedin

Recent News

thefly.com
Hims & Hers price target raised by $2 at Seaport Research, here's why
2024-05-29
thefly.com
Hims & Hers rises 12.5%
2024-05-28
MedCity News
Hims & Hers Offers Access to GLP-1s Starting At $199 A Month
2024-05-26
Company data provided by crunchbase
logo

Orion

Your AI Copilot