Listing Description

Sr. Security Engineer

Truveta is a new company led by our vision - Saving Lives with Data. Our mission is to drive innovation in patient care and development of new therapies. We are driven by staunchly held principles - we are in service to patients and their best possible outcomes, patient privacy is paramount, and scientific integrity is essential.  

Our team is a special combination of software, health, and big data experience. We are committed to progress and building a great team.  

Who We Need 

Truveta is rapidly building a talented and diverse team to tackle complex health and technical challenges. We are seeking candidates inspired by the opportunity to securely apply data in the development of real-world health solutions. Beyond core capabilities, we are seeking problem solvers, passionate and collaborative teammates, and those willing to roll up their sleeves while making a difference.  We do things the right way. Our commitment to security and compliance assurance cannot be stressed enough. This position is critical to ensuring we are successful.

If you are interested in the opportunity to pursue purposeful work, join a mission-driven team, and build a rewarding career while having fun, Truveta may be the perfect fit for you. 

This Opportunity 

Success in the healthcare industry is predicated on a foundation of trust. We demonstrate our trustworthiness as stewards of health data through three foundational pillars: security, privacy, and compliance.  

Responsibilities:

• As Sr. Security Engineering for the Security Infrastructure team, you will design, build and deliver the security foundation for our services in the cloud 


• You will interact with privacy and compliance teams to deliver the Fabric of Trust that will be infused into all services that we provide 


• Guide organization's security and privacy initiatives by participating in design reviews and threat modeling


• Educate our teams on secure application development and emerging threats


• Evaluate security tools for internal consumption


• Create new tools, conduct industry-leading research, and solve challenging technical problems on the forefront of application security


• Participate in our incident response and vulnerability remediation efforts


• Develop secure code practices and provide hands-on training to developers


• Identify threats


• Ongoing review of security and privacy practices


• Ensure that we can respond to security and privacy issues

You must model strict adherence to Truveta principles in support of ethical innovation and commit to ongoing training on key topics like privacy, ethics, and security. 

Key Qualifications 

• Bachelors or master’s in computer science, Electrical Engineering, Information Systems, or equivalent


• 6-8 years of experience in Information Security & development experience


• 5+ years of experience in delivering product security for commercially shipping systems in one or more of the following areas: Authentication/Authorization, Applied Cryptography, OS security, Intrusion detection & system monitoring 


• Experience with 1 or more security risk assessment or threat modeling processes (e.g.: STRIDE) 


• Experience in SaaS security models, cloud security architecture and cloud infrastructure


• Experience developing and maintaining HIPAA-compliant environments


• Willingness to actively drive compliance mindset


• Experience working with C#, Java or other modern programming languages 

Preferred Qualifications 

• Experience in delivering product security in health, finance or related industries


• Experience in delivering product security in one or more public clouds (Azure, AWS, GCP) 


• Experience in securely operating highly distributed systems with published SLAs.


• Experience with supporting engineering compliance, e.g., HIPAA, ISO, SOC1, SOC2, HITRUST CSF, COBIT, GDPR 


• Certifications in security with a focus on healthcare data, e.g., HITRUST CSF, CISSP, CISA, Privacy, HIPAA

Why Truveta?  

Be a part of building something special. Now is the perfect time to join Truveta. We have strong, established leadership with decades of success. We are well-funded. We are building a culture that prioritizes people and their passions across personal, professional and everything in between. Join us as we build an amazing company together.  

We offer:  

• Interesting and meaningful work for every career stage  


• Competitive compensation  


• Comprehensive benefits with strong medical, dental and vision insurance plans 


• 401K plan 


• Professional development for continuous learning  


• Work/life autonomy via flexible work hours and flexible paid time off 


• Generous parental leave 


• Regular team activities (virtual and in-person as soon as we are able) 


•  

Truveta is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.