Senior Security Engineer
Aya Healthcare
AzureCloudDNSDockerSMTPSQLTCP/IPTerraform
Senior Security and Compliance Analyst
Imply
full-time
Posted on:
Location Type: Remote
Location: Remote • California • 🇺🇸 United States
Visit company websiteSalary
💰 $133,000 - $170,000 per year
Job Level
Senior
Tech Stack
AWSAzureCloudGoogle Cloud Platform
About the role
- Work across Engineering, IT, HR, Legal, and People Operations to implement and monitor enterprise and product security controls for SOC2, HIPAA/HITRUST, ISO 27001, PCI, GDPR, etc.
- Review and determine applicability of requirements of regulatory compliance frameworks
- Engage directly with regulators and auditors to manage compliance audits, conference calls, and/or in-person meetings
- Own compliance programs and other compliance offerings in collaboration with global team members
- Coordinate with global and cross-functional teams to provide assessors and customers with meaningful updates
- Validate ongoing compliance of policies and procedures and improve policy and procedure documentation
- Follow up with internal stakeholders to ensure completion of compliance-related tasks and controls
- Define specifications, write high-level documents, and interpret regulatory and compliance requirements into concrete product requirements
- Evaluate security requirements for third-parties within the context of implementation within the enterprise/product
Requirements
- Led compliance and / security audits in the past and understands how to support an audit end to end
- Technical competence and cloud computing experience to sufficiently understand and explain complicated security concepts
- Technical understanding of AWS, Azure, and GCP cloud platforms, including how components and services are used and secured
- Familiarity and experience with the following standards: ISO 27001, SOC2, HIPAA/HITRUST, PCI, GDPR
- Project or program management experience and exceptional organizational skills and is extremely detailed oriented
- Extremely high ethical standards as proven by successful background checks and references
- Achievements that demonstrate exceptional written and verbal communication skills and experience working with executive level contacts
- Previous experience working with a variety of personalities from a variety of cultures and backgrounds
- CISA, CISSP or similar certification
- (Bonus) CISSP, CISM, CISA, CEH, OSCP, or similar certifications
- (Bonus) Strong understanding of the legal world, contracts, and how it all works
- (Bonus) Strong understanding of the current Privacy landscape and regulations in-place
- (Bonus) Experience and knowledge in developing systems and configuring security postures
- (Bonus) Experience in two or more of: Virtualization, Cloud Computing, Database Management, Software Development, Integration, Static and Dynamic Code Analysis, DevOps/DevSecOps with emphasis on security testing in CI
- (Bonus) Familiarity with leading cloud-based tools
Benefits
- 100% Paid Medical, Dental and Vision Benefits
- 401(k) Program
- Fertility Coverage
- Pet Insurance
- Dependent Care FSA
- Mental Health Support
- Life and AD&D Insurance
- Unlimited Paid Time Off
- Wellness Stipend
- Home Office Equipment Reimbursement
- Pre-Tax Commuter Benefits
- Eligible to participate in Imply’s equity plan subject to plan terms
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cloud computingAWSAzureGCPISO 27001SOC2HIPAAHITRUSTPCIGDPR
Soft skills
organizational skillscommunication skillsdetail-orientedethical standardscollaborationproject managementinterpersonal skillscultural awarenesswritten communicationverbal communication
Certifications
CISACISSPCISMCEHOSCP
