- Lead the development and implementation of comprehensive security policies, procedures, and standards to ensure the integrity, confidentiality, and availability of health information.
- Perform risk assessments, security audits, and penetration testing to identify vulnerabilities and ensure compliance with health information privacy laws.
- Design and coordinate with the Cloud team to implement security measures for our cloud-based environments, including encryption, firewalls, detection and prevention systems, and access controls.
- Collaborate with and provide education to software development teams to integrate security practices into the development lifecycle, including secure coding standards, code reviews, and automated security testing.
- Respond to and investigate security incidents, breaches, and vulnerability issues, coordinating with internal teams and external partners as necessary.
- Provide expert guidance on security technologies and best practices to technical and non-technical teams.
- Stay abreast of the latest security threats, trends, and technologies, and assess their implications for our systems and processes.
- Develop and conduct security awareness training programs for employees and stakeholders.
- Interface with the growth team, external customers, and prospects on security reviews and assessments.
- Closely monitor, review and analyze our system(s) for threats, vulnerabilities, etc and proactively identify and mitigate risks
- Serve as a key point of contact for audit and certification programs, such as SOC 2, HIPAA, GDPR, CCPA, etc.
- Bachelor's or Master's degree in Computer Science, Information Security, or equivalent work experience.
- Minimum of 7+ years of experience in information security, ideally within the healthtech or related industry.
- Strong knowledge of health information privacy laws (e.g., HIPAA) and industry standards (e.g., SOC2, NIST, ISO 27001, HITRUST).
- Experience with security frameworks, risk management, and leading compliance audits.
- Proficiency in security technologies, including encryption, intrusion detection/prevention, network security, and endpoint protection.
- Experience with cloud security architectures and solutions, particularly in AWS, Azure, or Google Cloud, and experience coordinating with Engineering architect teams to implement best practices.
- Excellent problem-solving, analytical, and communication skills.
- Have programming experience in Javascript, Typescript, Python, or similar language, especially in writing secure code within that language in order to provide guidance to software development teams.
- Relevant security certifications (e.g., CISSP, CISM, CEH) are highly desirable.
- Experience undergoing SOC2 and/or HITRUST audits
- As a brain health company, an opportunity to have a lasting impact on the way people and communities engage with brain and mental health, and even to affect the prognoses of people's mental and brain health trajectory
- A mission driven environment where all 110+(and counting) employees strive to exemplify our core values every day
- Competitive compensation packages that include an annual discretionary target bonus incentive as well as valuable equity
- Unlimited PTO -- We know this can work both ways, however our leadership team does an excellent job at encouraging people to take PTO
- A sincere and deep appreciation for the importance of mental health: We have recently implemented a "monthly flex day" where employees are encouraged to take time away from work to rest, recharge & reset.
- A peer-to-peer recognition program: Celebrating our employees' hard work and success is in our DNA
- Employee Referral Incentive program
- A robust healthcare package that includes medical, dental & vision benefits as well as a 401(k) program where Linus will match up to 6% of employee contributions
-
IT Security Cloud Engineer
9 hours ago
MyEyeDr. Remote, United StatesDescription · About the role The Cloud Security Engineer helps architect and deploy a secure cloud application infrastructure that aligns with business needs. The position is responsible for supporting operational innovation and providing security direction to the business to el ...
-
Cyber Security Engineer 3
2 weeks ago
Hyland Remote, United StatesOverview · As a Level 3 Cyber Security Engineer, you will be responsible for designing, implementing, and maintaining advanced cyber security solutions to protect our organization's systems, networks, and data from cyber threats. You will play a critical role in the development, ...
-
Staff Security Operations Engineer
2 weeks ago
Workiva Inc. Remote, United States Full timeStaff Security Operations Engineer · As a Staff Security Operations Engineer at Workiva, you'll play a pivotal role in safeguarding our systems and data. Our Security Operations team is responsible for continuously monitoring, detecting, and responding to security incidents acro ...
-
Cyber Security Engineer 3
3 weeks ago
Hyland Remote, United StatesOverview · The Cyber Security Engineer 3 is responsible for creating and documenting a secure computing environment that protects against unauthorized access modification or destruction. · What you will be doing · Operate as a trusted advisor on issues and trends; provide gene ...
-
Senior Network Security Engineer
3 weeks ago
GTN Technical Staffing Remote, United StatesJob Description · Job DescriptionSenior Network Security Engineer · HIGHLIGHTS · Location: Phoenix / Remote · Position Type: Direct Hire · Hourly / Salary: Based on experience, waiting on the salary range but expect it to be in the ballpark of $90-125K · Residency Status: US Citi ...
-
Security Engineer
1 week ago
ActBlue Remote, United States Full timeWHO WE ARE: · ActBlue is a nonprofit that builds tech and infrastructure for Democratic campaigns, progressive-aligned causes, and people trying to make an impact in order to fuel long-term, people-powered change. If you've ever given online to a Democrat or progressive organizat ...
-
Security Engineer
3 weeks ago
Applied Systems Remote, United States Full timeJob Description · Applied Systems, Inc., a worldwide leader in insurance technology, is currently searching for a Security Engineer to join our Office of Information Security (OSI) team. As members of OIS, Security Engineer works closely with application and infrastructure engine ...
-
Security Engineer
1 week ago
Baylor Scott & White Health Remote, United States Full timeJOB SUMMARY · The Security Engineer will be accountable for developing information security policy, introducing security best practices, and auditing information security compliance. This also includes selecting and implementing appropriate security solutions and leading efforts ...
-
Security Engineer
1 hour ago
Network Coverage Remote, United States Full timeJob description · Who we are: · Network Coverage is a best-in-class technology solutions provider specializing in IT managed services, cybersecurity, compliance, cloud enablement, digital transformation, and software development for mid-market and enterprise organizations. Our co ...
-
Security Engineer
2 weeks ago
Kajabi Remote, United States Full timeAbout Us · Founded in 2010 in Irvine, California, Kajabi is the leading creator commerce platform, helping creators turn their knowledge, experience, and expertise into sustainable online businesses. With Kajabi's integrated platform, creators have a single ecosystem to build and ...
-
Security Engineer
2 weeks ago
Innovaccer Remote, United States Full timeYour Role · We are growing rapidly in the US with acquisitions and in the US Government space. We are looking to expand our US security team with talented people. We at Innovaccer are looking for a Security Engineer-III who will be responsible for performing real-time monitoring, ...
-
Security Engineer, Corporate Security
4 weeks ago
Grammarly Remote, United States Full time· Grammarly is excited to offer a remote-first hybrid working model. Team members work primarily remotely in the United States, Canada, Ukraine, Germany, or Poland. Certain roles have specific location requirements to facilitate collaboration at a particular Grammarly hub. · All ...
-
KeyBank Remote, United States Full timeLocation: · For Those Who Work At Home - Various, Ohio 44145 Job Responsibilities · Compliance Monitoring : Ensure adherence to policies and standards by tracking and enabling the execution of control procedures. Facilitate the creation, maintenance, and retirement of control ...
-
KeyBank Remote, United States Full timeLocation: · For Those Who Work At Home - Various, Ohio 44145 Job Responsibilities · Compliance Monitoring : Ensure adherence to policies and standards by tracking and enabling the execution of control procedures. Facilitate the creation, maintenance, and retirement of control ...
-
Security Engineer II, Engineering
2 days ago
Trail of Bits Remote, United States Full timeWho We Are · Founded in 2012 by 3 expert hackers with no investment capital, Trail of Bits is the premier place for security experts to boldly advance security and address technology's newest and most challenging risks. It has helped secure some of the world's most targeted organ ...
-
Cryptocurrency Security Engineer
1 week ago
Unit 410 Remote, United States Full timeUnit 410 is an experienced team of security, infrastructure, and cryptocurrency engineers. We empower the largest stakeholders to use their crypto in secure and novel ways. To do so, we build institutional-grade systems and solutions for secure network participation. We've long b ...
-
Senior Security Engineer
3 weeks ago
Curai Health Remote, United States Full timeCurai Health is an AI-powered virtual clinic on a mission to improve access to care at scale. As the pioneer in deploying machine learning into clinical workflows, Curai Health enables its dedicated, specially trained clinicians to deliver primary care to more people at a fractio ...
-
Security Engineer II
3 weeks ago
GoGuardian Remote, United States Full time· What We Do · At GoGuardian, we're helping build a future where all learners are ready and inspired to solve the world's greatest challenges. Our award-winning system of learning solutions is purpose-built for K-12 and trusted by school leaders to promote effective teaching and ...
-
Network Security Engineer
3 weeks ago
Applied Systems Remote, United States Full timeJob Overview · Applied Systems, Inc., a worldwide leader in insurance technology, is currently searching for a Network Security Engineer to join our growing team. You will be responsible for testing, planning, implementing, managing, and maintaining the LAN/WAN infrastructure wit ...
-
Staff Security Engineer
2 weeks ago
Evidation Remote, United States Full time**Work from where you are - considering candidates in San Mateo or US-based remote** · About Evidation · Evidation creates new ways to measure and improve health in everyday life—making proactive, personalized, and truly human-centered healthcare possible. By connecting directly ...
Staff Security Engineer - Remote, United States - Linus Health
3 weeks ago
Description
Linus Health is a Boston-based digital health company focused on transforming brain health for people across the world. By advancing how we detect and address cognitive and brain disorders – leveraging cutting-edge neuroscience, clinical expertise, and artificial intelligence – our goal is to enable a future where people can live longer, happier, and healthier lives with better brain health.
We are a team of 110+(and growing), embarking on an exciting period of accelerated growth. We invite collaborative, self-driven and impact-oriented professionals to join our dynamic and fast-growing team.
Does this sound like an innovative & disruptive start-up where you could see yourself? If so, please continue reading...
The Role:
As a Staff-level Security Engineer, you will spearhead our initiatives to fortify our software and data systems against security threats. A critical aspect of your role will involve collaborating with engineering architects to integrate robust security measures into the architectural designs and development processes of our applications. Your leadership will ensure that security practices are not only implemented but also optimized across all technological facets of our operations. You will be the driving force behind the education of our development teams on secure programming practices, ensuring that our applications are built with the highest security standards from the ground up. By conducting regular security assessments, working with external auditors, and engaging in proactive threat modeling, you will play a pivotal role in maintaining and enhancing our security posture. Your efforts will be instrumental in upholding and surpassing industry benchmarks for health data security, thereby safeguarding our patients' privacy and reinforcing their trust in our commitment to their safety.
What You'll Do:
About You:
Must Haves
Nice To Haves
What We Offer:
Linus Health is an equal opportunity employer. All qualified candidates will receive consideration for employment without regard to race, religion, color, national origin, sexual orientation, gender, gender identity or expression, age, genetic information, disability or any characteristic protected by law. We believe that diversity is critical to the growth of our company and understand the importance of fostering an environment where everyone has a voice. We are also committed to providing reasonable accommodations for candidates with disabilities during the recruiting process. If you are in need of assistance due to a disability, please contact us.
