Application Security Engineer - Augmedix Dhaka, BD Bookmark Share Print 180 0 0

Listing Description

About Augmedix:

Augmedix, Inc. (Nasdaq: AUGX) provides automated medical documentation and data services to large healthcare systems and physician practices, supporting medical offices, clinics, hospitals, emergency departments, and telemedicine nationwide. The Company’s Ambient Automation Platform converts the natural conversation between physicians and patients into timely and comprehensive medical notes and performs a suite of related data services. These services relieve physicians of administrative burdens to enable more time for patient care. Augmedix’s proprietary platform uses automatic speech recognition, natural language processing, and clinical datasets to capture the ambient visit conversation and generate a structured medical note. The structured medical note data is then used to deliver additional data services. Quality is assured by trained medical documentation specialists.

As an Application Security Engineer at Augmedix, you will help to validate that our services, applications, and websites are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services (Web and Mobile Application, API, Micro-services, internal networks), source codes, vendor-provided solutions, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. You will collaborate with our engineering and product teams to drive the implementation and validation of security controls prior to the production launch. You will be expected to be strong in multiple domains and provide subject matter expertise when required.

Key Job Responsibilities
  • Perform design review, threat modeling, secure code review, and penetration testing for our products, infrastructures and services.
  • Provide technical security guidance to mitigate identified risks.
  • Create security guidance and documentation for internal and external audiences.
  • Review existing processes and suggest improvements for increased security and efficiency.
  • Strongly influence decision-makers and stakeholders to achieve a consistently high security bar for new services or features.
  • Build Security metrics to track the effectiveness of our security excellence program.
  • Keep up to date with trending known/unknown (0-day) security vulnerabilities and take appropriate action to make our services secured.

    • Job Requirement:
  • Bachelor's degree in Engineering or relevant field, or an equivalent combination of education, training, and experience.
  • Minimum of 2 years of professional experience with any combination of at least 2 technical disciplines, including the following: application security, mobile security, network security, penetration testing, secure coding and development methodologies.
  • Knowledge of core application security principles, secure code review, common security vulnerability classes, their root causes, and mitigations.

    • Preferred Requirements:
  • Professional experience conducting security assessments and reviews, including penetration testing or red teaming, and demonstrated the ability to clearly explain the remediation of findings to product owners.
  • Knowledge of threat modeling or other risk identification techniques.
  • Knowledge of web and mobile application vulnerabilities and remediation techniques.
  • An understanding of communication protocols and data formats (such as TLS, HTTP(S), JSON, XML, Web Sockets).
  • An understanding of cryptography, web service frameworks, mobile application architectures, and service architectures (such as event-driven, service-oriented, or serverless architectures).
  • An understanding of containerization technologies (Docker, Kubernetes) for the purpose of secure implementation review.
  • Experience with one or more scripting or programming languages (such as Java, C++, Python, Go) for the purpose of code review.
  • Familiarity with security best practices for Amazon Web Services (such as API Gateway, IAM, Cognito, EC2, S3, DynamoDB, Lambda, ECR, EKS) or similar enterprise cloud computing platforms
  • Ability to lead through influence within a secure software development life-cycle for multiple products and services, meeting customer and compliance expectations for security.
  • Strong written and verbal communication skills with the ability to engage directly with senior leadership.
  • Ability to discover and communicate deep technical issues in terms of business risk with non-experts and senior leaders.
  • Strong ownership, urgency, and drive.
    • Augmedix is an equal opportunity employer. We are committed to providing equal employment opportunities regardless of sex, gender identity, race, religious creed, color, ancestry, age, disability, marital status, sexual orientation including being transgender and/or any other protected bases.

    Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!