Sr. Security Engineer, Product & Apps
Remote
Hims & Hers Health, Inc. (better known as Hims & Hers) is the leading health and wellness platform, on a mission to help the world feel great through the power of better health. We are revolutionizing telehealth for providers and their patients alike. Making personalized solutions accessible is of paramount importance to Hims & Hers and we are focused on continued innovation in this space. Hims & Hers offers nonprescription products and access to highly personalized prescription solutions for a variety of conditions related to mental health, sexual health, hair care, skincare, heart health, and more.
Hims & Hers is a public company, traded on the NYSE under the ticker symbol “HIMS”. To learn more about the brand and offerings, you can visit hims.com and forhers.com, or visit our investor site. For information on the company’s outstanding benefits, culture, and its talent-first flexible/remote work approach, see below and visit www.hims.com/careers-professionals.
About the Role:
As a Senior Security Engineer, you will be a thought leader in the Security Team focused on helping design, implement, and mature innovative and cutting-edge security capabilities. Senior Security Engineer ensures defense-in-depth, provides hands-on technical leadership for security domains, assists with defining vision and execution of strategy aligning to business needs, and is also expected to help solve a wide range of security challenges. The Senior Security Engineer is part of a highly collaborative security program and an engineering culture-driven technology organization.
You Will:
- Ownership of security scanning complex (SAST, SCA, DAST, etc.)
- Develop and promote security architecture and design strategies, frameworks, and patterns while collaborating closely with engineering, and product organization
- Actively partner with stakeholders to understand business requirements and develop supporting security and resiliency principles to ensure the adoption of industry best practices
- Ensure information security and regulatory requirements are effectively integrated into new or improved systems
- Demonstrates expert technology competence in security domains including but not limited to application, cloud, resiliency, identity, access management, and data security
- Establish credibility among technology experts as the subject matter expert across security disciplines
- Review and influence the security of vendor applications and systems to ensure they meet our security objectives and can be implemented securely
- Analyze technical risks of existing systems and applications against correlating policies and risks, and provide appropriate remediation or risk reduction plans
- Participate in the design and …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
RestrictionsRemote
Benefits/Perks401k benefits Company holidays Competitive salary Competitive Salary & Equity Competitive salary & equity compensation Comprehensive health benefits Employee Discounts Employee discounts on hims Employee Stock Purchase Employee Stock Purchase Program Equity Equity Compensation ESPP Flexible/remote work approach Offsite team retreats Outstanding benefits Parental leave Quarterly mental health days Remote work Talent-first flexible/remote work approach Unlimited PTO Unlimited PTO, company holidays, and quarterly mental health days
Tasks- Conduct vulnerability assessments
- Mentor engineering teams
Access Management Agile API API security AWS Azure Cloud Security Cybersecurity DAST Data Security Design DevSecOps Engineering GCP Healthcare HIPAA Identity Management Java Javascript Kotlin Leadership Medical Okta Penetration Testing REST SAST SCA Security Security Architecture Security Engineering Threat modeling Vulnerability assessment
Experience8 years
EducationBachelor's Bachelor's degree Bachelor's degree in Computer Science Business Computer Science Engineering Equivalent Information Systems Regulatory