Security Engineer (Application)

Summary

Join Sword Health, a mission-driven company that uses technology to save millions for its enterprise clients across three continents. As a Security Engineer, you will be at the forefront of safeguarding our applications and cloud infrastructure.

Requirements

• Bachelor's degree in Computer Science, Information Security, or related field, or equivalent work experience
• 3+ years of hands-on experience in Application Security
• Strong understanding of Application Security concepts, including secure coding practices, authentication and authorization mechanisms, data validation and sanitization, and vulnerability management
• Hands-on experience with Application Security tools such as Snyk, Burp Suite, DefectDojo
• Proficiency in scripting languages (e.g., Python, Bash)
• Experience with Application Security testing and assessment tools, including static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and penetration testing
• Knowledge of common security frameworks and standards, such as NIST, CIS, and COBIT
• Strong communication and interpersonal skills
• Strong verbal and written communication skills in English

Responsibilities

• Design, implement, and maintain the security aspects of Sword’s applications to ensure Sword remains secure and HIPAA- and GDPR-Compliant
• Monitor applications for security threats and vulnerabilities, and respond promptly to security breaches, ensuring effective incident response protocols
• Perform root cause analyses (RCA) and incident reviews
• Prioritize applications risks and vulnerabilities remediations
• Delegate patches/remediations to the responsible teams
• Collaborate with the development team to ensure that security is integrated into the software development lifecycle
• Own and manage preventative security measures and services related to Sword’s SSDLC
• Monitor, analyze, and triage security logs to detect and respond to security incidents
• Stay up-to-date on the latest security threats and trends, and provide guidance on how to mitigate risks
• Integrate or build security tools that help to continuously monitor our ecosystem

Benefits

• A stimulating, fast-paced environment with lots of room for creativity
• A bright future at a promising high-tech startup company
• Career development and growth, with a competitive salary
• The opportunity to work with a talented team and to add real value to an innovative solution with the potential to change the future of healthcare
• A flexible environment where you can control your hours (remotely) with unlimited vacation
• Access to our health and well-being program (digital therapist sessions)
• Remote or Hybrid work policy