Cyber Security Engineer - Application Security

October 29

Apply Now

Receive Emails with Similar Jobs

TherapyNotes, LLC

WebsiteLinkedInAll Job Openings

practice management software • EMR • mental health • behavioral health • medical billing software

51 - 200

Description

• About TherapyNotes • TherapyNotes is the go-to superhero for behavioral health Practice Management and EHR software! Our top-notch SaaS solution handles scheduling, billing, documenting, telehealth, and more so clinicians can focus on awesome patient care. • We're a dynamic team of pros who love to innovate and push the envelope, keeping our software cutting-edge. Join us, and let's revolutionize behavioral health software together while making a real difference! • TherapyNotes is seeking an experienced and passionate Application-security focused Cyber Security Engineer to join our team of technology enthusiasts. The right candidate possesses both deep and wide expertise in the security space will focus on threat intelligence development, risk/vulnerability management, and incident response. • Monitor security alerts, respond to incidents, and manage escalations. • Participate in Incident Response on-call rotation. • Conduct threat analysis, vulnerability assessments, and risk evaluations. • Manage and secure identities in Microsoft Entra ID through Conditional Access and Entitlement Management. • Stay informed about the latest cyber threats, attack methodologies, and vulnerabilities.

Requirements

• Bachelor's degree in information security, information technology, computer science, or related field preferred. • 5+ years of experience in application security or related role. • Strong understanding of healthcare regulations (HIPAA, HITECH, HITRUST) and their impact on application security. • Experience working in healthcare or other highly regulated industries is preferred. • Experience with API security, especially for integrations with other healthcare systems. • Familiarity with HL7, or other healthcare data standards is preferred. • Familiarity with the unique threat landscape of the healthcare industry, including ransomware and PHI-targeted attacks. • Demonstrated experience integrating security in CI/CD pipelines in a SaaS environment. • Understanding of secure coding practices for applications that process sensitive data. • Industry certifications such as CISSP, SSCP or Healthcare-specific security certifications (e.g., HCISPP) are ideal. • Prior experience securing cloud environments (Azure, AWS). • Proven ability to conduct security assessments, vulnerability management, and incident response. • Strong understanding of OS platforms (Windows, Linux) and endpoint security. • Deep understanding and experience in managing and securing cloud infrastructure and cloud-based applications. • Expert in the latest security principles, techniques, and standards. • Proficiency in various security systems: intrusion detection systems, anti-virus software, identity management systems, log management, content filtering, etc.

Benefits

• Competitive salary - $90,000-$130,000 • Employer sponsored health, dental, vision, life, and disability insurance • Retirement plan with company contribution • Annual company profit sharing • Personal development/training budget • Open, collaborative work environment • Extensive 2-week onboarding plan • Comprehensive mentorship program