Truveta is the world’s first health provider led data platform with a vision of Saving Lives with Data. Our mission is to enable researchers to find cures faster, empower every clinician to be an expert, and help families make the most informed decisions about their care. Achieving Truveta’ s ambitious vision requires an incredible team of talented and inspired people with a special combination of health, software and big data experience who share our company values.
This position is based out of our headquarters in the Greater Seattle Area. #LI-onsite
This Opportunity
Patients, Doctors, and medical researchers deserve to benefit from large scale technological innovations and digital intelligence that have driven progress in office productivity, entertainment and social networking. We are looking for software engineers excited by the opportunity to improve health care in far-reaching ways. To realize this goal, we are looking for creative and capable senior cloud software engineer to lead and build modern automation tools to streamline our engineering processes.
In this position, you will have an opportunity to collaborate with internal users, analyze their use cases, requirements, and expectations, lead and develop scalable, secure, and cost-effective cloud-based software solutions to remove inefficiencies, pain points, and enable the users to deliver faster and more frequently.
This opportunity allows you to interact with other Senior software engineers across the company to define the direction of Truveta and develop long-term strategy, select technology, and greatly impact the success of our business.
Responsibilities
- Perform security design as well as secure code reviews, ensuring compliance with Company and industry standards
- Develop cloud native secure Security Engineering reference documents to ensure internal and third-party services are deployed in adherence with cyber security controls and industry best practices
- Advocate for the implementation of security solutions throughout Truveta, ensuring emerging technology and open-source products can be easily integrated into current security tools
- Advance Company security posture, leading the effort to ensure a modern cloud native approach to enable the achievement of organizational goals and objectives
- Thorough comprehension of Truveta’s cloud native infrastructure and capable of recommending enhancements to ensure current technology enables adherence to the security controls defined in policies and SOPs
- Knowledgeable of public key infrastructure best practices to ensure digital certificates are effectively and securely managed throughout their lifecycle
- Establish disaster recovery procedures and, in collaboration with security operations, conduct incident and disaster recovery tabletop exercises
- Remain current with the latest cyber security trends, standards, authentication protocols, and products
- Understand current data security risks as well as how to maintain proper security of sensitive information
- Strong working knowledge of current IT risks related to data security, including endpoint DLP, network DLP, cloud based DLP, etc.
Key Qualifications
- 1+ years of coding experience building production quality software in a team setting is a must.
- Strong experience with serverless RESTful APIs to support API-driven services for system-to-system usage
- The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent degree in a field of study related to Computer Science, Information Security, and Information Systems
- 1+ years of experience across multiple cyber security disciplines and technical expertise in secure SDLC
- Deep understanding of current application security technologies (e.g., OWASP, container security tools, DAST, SAST, SCA, web application pen tests, WAF security, API security)
- Strong working knowledge of current IT risks and security implementations, including infrastructure and application security solutions
- Able to interact with all levels of the Company, including a wide range of people from different backgrounds and with differing technical acumen
Preferred Qualifications
- Experience in performing detailed technical Security Engineering assessments to identify gaps or potential threat-vectors
- Experience with.NET, Python, Java, and JavaScript development are a plus
- Certifications in Information Security, e.g., GSEC, GISP, CISSP, CISM, CRISC, CISA, or other security relevant accreditations
- Experience in delivering product security in one or more public clouds (Azure, AWS, GCP)
- Experience in securely operating highly distributed systems with published SLAs
- Experience with supporting engineering compliance, e.g., HIPAA, ISO, SOC2
Why Truveta?
Be a part of building something special. Now is the perfect time to join Truveta. We have strong, established leadership with decades of success. We are well-funded. We are building a culture that prioritizes people and their passions across personal, professional and everything in between. Join us as we build an amazing company together.
We Offer:
- Interesting and meaningful work for every career stage
- Great benefits package
- Comprehensive benefits with strong medical, dental and vision insurance plans
- 401K plan
- Professional development & training opportunities for continuous learning
- Work/life autonomy via flexible work hours and flexible paid time off
- Generous parental leave
- Regular team activities (virtual and in-person as soon as we are able)
- The base pay for this position is $94,000 to $153,000. The pay range reflects the minimum and maximum target. Pay is based on several factors including location and may vary depending on job-related knowledge, skills, and experience. Certain roles are eligible for additional compensation such as incentive pay and stock options.
If you are based in California, we encourage you to read this important information for California residents linked here.
Truveta is committed to creating a diverse, inclusive, and empowering workplace. We believe that having employees, interns, and contractors with diverse backgrounds enables Truveta to better meet our mission and serve patients and health communities around the world. We recognize that opportunities in technology historically excluded and continue to disproportionately exclude Black and Indigenous people, people of color, people from working class backgrounds, people with disabilities, and LGBTQIA+ people. We strongly encourage individuals with these identities to apply even if you don’t meet all of the requirements.