The Senior InfoSec Engineer is responsible for developing the tools, policies, and procedures for securing and monitoring a regulated SaaS platform.
Key Areas of Responsibility:
- Work with the Chief Software Architect on the strategy and design of the new Sun Nuclear Cloud platform
- Implement the security policies and procedures on AWS.
- Conduct regular penetration testing
- Implement and manage compliance reviews
Knowledge, Skills & Abilities:
- At least 5 years of related experience in internet InfoSec.
- Experience in at least 1 regulated industry is required.
- Familiarity with HIPAA preferred.
- Operated AWS, Azure, GCP or a combination
- Ability to write customer-convincing papers on security measures, the acumen to maintain HIPAA compliance, the ability to adapt international security requirements, and the discipline to regularly manage intrusion detection and penetration testing.
- Strong knowledge of enterprise software, design principles, CI/CD, and best practices
- Deep understanding and familiarity of the many aspects of cloud-based platforms (preferably AWS) from development to deployment to operations
- Self-driven, responsible, accountable, proactive, proud of your work, curious, respectful, inclusive
- Consuming large amounts of information and quickly distilling it into usable knowledge
- Strong sense of when to utilize available tools/frameworks/components/functions and when to build from scratch
- Designing and developing with the principles of reuse, componentization, and the proper level of abstraction
- Strong communication, technical design/documentation, and interpersonal skills
- High-quality execution and strategic thinking