Datavant · 1 day ago

Application Security Engineer

United States

Full-time

Remote

Entry, Mid Level

1+ years exp

Maximize your interview chances

BiopharmaClinical Trials

No H1B

Insider Connection @Datavant

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Assist in rolling out and maintaining common application security tools, such as SAST, DAST and SCA.

Collaborate closely with security and development teams, providing hands-on support to ensure security controls are well-integrated into the development lifecycle.

Document processes and controls in a way that supports and enables the development teams, creating clear, actionable documentation that helps streamline workflows.

Participate in the review of application projects built by our development teams, offering feedback on code and architecture to ensure security best practices are followed.

Support and conduct security and threat model reviews under the guidance of senior security architects, learning to provide expertise on application security and security architecture topics.

Collaborate with the compliance team to gather evidence for audits and respond to customer assurance requests. You will play a key role in ensuring that our security controls are well-documented, implemented effectively, and meet the necessary compliance standards.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security EngineeringSecurity Control ImplementationApplication SecuritySASTDASTSCAThreat ModelingCompliance StandardsSoftware DevelopmentHIPAAHITRUSTSOC 2PCIFedRAMPCollaborative Skills

Required

A collaborative and humble mindset with a passion for security.

A background in software development or a software engineering-adjacent field

1-3 years of experience in security engineering roles, with exposure to threat modeling and security control implementation.

An understanding of the roles within a security team and how they work together to support development teams.

Ability to articulate the importance of security throughout the software development lifecycle and to suggest improvements.

Strong collaborative skills; you thrive on working with others and are dedicated to team success. You will be expected to communicate on challenges and blockers early and often.

A focus on delivery and impact, with the ability to work effectively in a fast-paced environment. You see the security team as a partner to the engineering teams, providing guidance and support.

Preferred

You are recognized as a go-to resource for security control implementation, and development teams frequently seek your guidance.

You have experience working in regulated industries such as healthcare, finance, or government, with knowledge of standards such as HIPAA, HITRUST, SOC 2, PCI, or FedRAMP.