Now Hiring: Are you a driven and motivated Data Scientist or a Senior Software Engineer?

Remote Director of Information Security (Senior, Operations)

. . . create world-changing products using God-given talents . . .

PROJECT DESCRIPTION::

We are a recognized leader in patient and provider education attracting an engaged audience of over 60 million health consumers and over 800,000 U.S. practicing physicians and clinicians to its premier health and wellness websites. Healthcare professionals and consumers are empowered with trusted content and services.

You will be a key member of our Engineering team, responsible for security infrastructure. You will act as a lead to coordinate and participate in multipe security efforts. You will proactively identify and assess security risks and advise engineering teams on mitigation strategies. You will be a core player in coordinating compliance audits. In addition, you will define security guidelines, audit, and strengthen Snap! Mobile’s security posture and improve our defensive capabilities in response to identified threats.

PROJECT STACK and TEAM::
  • We manage a network of healthcare websites.
  • We love collaboration, always desire to understand the business problem we’re solving, and push decisions
    down as low as possible, and want to further our culture of innovation.
  • We have a multinational and multicultural team.
  • The team size is 75 engineers. There are up to 10 teams with 7-8 engineers.
  • Start Date: ASAP.
MAIN REQUIREMENTS::
  • Bachelor’s Degree in Computer Science, Cybersecurity, or equivalent experience
  • 5+ years of experience using cloud-based infrastructure and experience working specifically with AWS
  • 4+ years of experience building systems to secure and monitor infrastructure, deployment, and network communication
  • 4+ years of experience writing code in Python, Ruby, or Java
  • 2+ years of experience leading and collaborating with cross-functional teams of engineers organized around a particular goal
  • Participated in security assessments and advised on both internal and customer security and privacy needs (e.g. SOC2, ISO 27001, GDPR, penetration testing)
  • Familiarity with native mobile application security concerns
  • Experience with securing Kubernetes clusters (EKS, AKS, or GKE)
  • Experience with Terraform and IaC tooling a plus
  • Familiarity with native mobile application security concerns
  • Strong communication and writing skills.
GOOD TO HAVE::
JOB RESPONSIBILITIES::
  • Partner with the DevOps team to design a secure infrastructure
  • Develop and ensure security guidelines and best practices are being followed via technical controls, automation, and auditing
  • Create policies and automation to ensure all systems follow regulatory security standards and compliance.
  • Develop strategies to handle security incidents and trigger investigations
  • Regularly perform penetration testing and coordinate with engineering teams to address vulnerabilities
  • Participate in architecture and design reviews to mitigate security and privacy risks
  • Create hardening standards for our infrastructure to minimize attack vectors
  • Coordinate compliance audits and assist auditing teams in automation and collection of evidence
  • Participate in architecture reviews to represent security concerns.
  • Champion and educate the organization about the latest security strategies and technologies
  • Manage and drive work related to obtaining and maintaining various security related certifications (e.g: PCI, HIPAA).
  • Audit and deploy security tooling for code, network, and resource intrusion detection systems.
  • Triage security alerts and take appropriate action.
SUMMARY::

At Evolve Squads, we create world-changing products using God-given talents.

Benefits:   

  • Medical, Dental, Vision.
  • 401K with a 4% match from the company.    
  • Paid Vacation.
  • Flex Birthday day off.
  • Monthly Wellness Classes (virtually!).
  • No US Work Authorization or Visa Sponsorships are provided at this moment.
Job Category: Cloud Services
Job Location: Latin America - 100% remote
Skills: AWS Security