PatientNowRemote
Senior Security Engineer
United States of America
Full Time
3 weeks ago
$140,000 - $160,000 USD
H1B Sponsor
Key skills
AWSS3IAMSaaSSDLCLeadershipMentoringCloud SecurityWAF
About this role
PatientNow is a company focused on enhancing the healthcare experience through innovative software solutions. They are seeking a Senior Cybersecurity Engineer to lead the security efforts of their AWS-based healthcare SaaS platform, ensuring compliance with industry standards and managing vulnerabilities while mentoring junior engineers.
Responsibilities:
- Lead Cloud Security Posture Management CSPM across AWS
- Architect and harden AWS infrastructure including IAM, VPC, S3, WAF, encryption, and segmentation
- Monitor and respond to security events using AWS security services including GuardDuty, Security Hub, CloudTrail, AWS Config, IAM Access Analyzer, WAF, and Inspector
- Administer and optimize security tooling including CrowdStrike EDR, Tenable vulnerability management, and Aikido Security for code and application security posture management
- Develop and maintain incident response processes and lead forensic investigations
- Own the vulnerability management lifecycle including scanning, prioritization, remediation tracking, and reporting
- Drive PCI DSS implementation and support HIPAA and SOC 2 audit readiness
- Conduct risk assessments and implement mitigation controls
- Support Business Continuity and Disaster Recovery BC DR security initiatives
- Partner cross functionally to embed security into SDLC, DevOps, SRE, and CI CD workflows
- Provide oversight, mentorship, and task prioritization for two Junior Security Engineers
- Review security configurations, remediation efforts, and compliance deliverables including PCI DSS controls
- Lead team coordination for SOC2, HIPAA and PCI audits, evidence collection, and remediation tracking
- Support performance feedback and professional development
- Foster a culture of accountability, technical excellence, and regulatory compliance
Requirements:
- Bachelor's degree in a technical field or equivalent experience
- 6 to 10 years of cybersecurity experience including strong AWS cloud expertise
- Hands on experience with AWS security services including GuardDuty, Security Hub, CloudTrail, Config, IAM, WAF, and Inspector
- Experience with CrowdStrike, Tenable, and application security tooling such as Aikido Security
- Proven PCI DSS implementation experience required
- Strong knowledge of HIPAA and SOC 2 frameworks
- Experience in incident response, vulnerability management, and audit support
- Demonstrated leadership and mentorship experience
- Ability to operate independently in a fast paced growth stage healthcare SaaS environment
- Experience securing environments handling PHI
- AWS Certified Security Specialty, CISSP, CCSP, or similar certifications