Security Engineer - AppSec, Senior (Multiple Locations)
*Considering candidates in San Mateo, Santa Barbara, or US based remote*
The Security Team is responsible for all aspects of security at Evidation. This includes working with engineering teams to secure our development lifecycle, working with IT to maintain daily operational security, and working with DevOps to ensure the security of our cloud infrastructure.
RESPONSIBILITIES
In this role, you will primarily focus on the security of our systems and applications, including securing our architecture, implementing mitigations, threats detection and monitoring, and participate in defining the long-term strategy for our application security. You will work closely with our software engineering teams as they design and implement scalable, secure solutions that power large-scale, innovative research initiatives.
This role is ideal for someone with strong experience in application security who is looking to take their security career to the next level with the ownership of a complex set of applications and exposure to a broad range of security technologies and domains.
QUALIFICATIONS
Minimum Qualifications:
- Experience with Linux-based systems
- 3+ years of software design and development experience (mobile or backend)
- 5+ years of application security experience or equivalent mix of software engineering and security experience
- Fluency at a high-level in at least one programming languages (e.g., Python, Ruby) with Ruby preferred
- Fantastic communication skills, especially among audiences with differing technical backgrounds
- Strong security fundamentals, including threat modeling and secure design principles
- Familiarity with cryptographic primitives such as hashing, signing, and encryption
- Experience with security testing (penetration testing/red teaming)
- Familiarity with scalable systems and service-oriented architectures
- Experience with automating security workflows and operations
- Experience maintaining the security of applications throughout their lifecycle
Preferred Qualifications:
- Expert-level knowledge of Ruby
- Experience with Ruby on Rails, Python, iOS, and Android security
- Experience with AWS infrastructure
- Experience with Terraform
- Experience with at least one configuration management system (SaltStack/Puppet/Chef)
- Experience with Docker and containerization security
- Experience with CI/CD and secure SDLC
- Proven ability to implement security automation in a fast-moving environment
- Experience with software vulnerability blackbox testing including fuzzing
ABOUT EVIDATION
Evidation measures health in everyday life and enables anyone to participate in groundbreaking research and health programs. Built upon a foundation of user privacy and control over permissioned health data, Evidation's Achievement platform is trusted by millions of individuals—generating data with unprecedented speed, scale, and rigor. We partner with leading healthcare companies to understand health and disease outside the clinic walls. Guided by our mission to enable and empower everyone to participate in better health outcomes, Evidation is working to bring people individualized, proactive, and accessible healthcare—faster.
OUR VALUES
- Put individuals first
- Challenge each other and state your good intent
- Go fast while maintaining quality and integrity
- Work to win together
OUR BENEFITS & PERKS
- Competitive salary + performance bonus + equity
- Medical, dental, and vision benefits with generous company contribution
- Company-provided life and disability insurance
- 401(k) with company contribution
- Wellness and wearable device reimbursements, mental health benefits, wellness programs
- Employee advisory committee focused around diversity, equity, inclusion, and belongingness
- Distributed teams and flexible work hours
- Take time when you need it: 13 paid company holidays + flexible time off
- Paid parental leave
- Mobile phone, home internet, and home office furniture reimbursements
- Apple laptop and your choice of monitor + noise cancelling headphones
- LinkedIn Learning and other professional growth opportunities
EVIDATION HEALTH VALUES DIVERSITY AND IS COMMITTED TO EQUAL OPPORTUNITY FOR ALL PERSONS WITHOUT REGARD TO RACE, COLOR, CREED, RELIGION, MARITAL STATUS, AGE, NATIONAL ORIGIN OR ANCESTRY, POLITICAL ACTIVITY OR AFFILIATION, PHYSICAL OR MENTAL DISABILITY, MEDICAL CONDITION INCLUDING GENETIC CHARACTERISTICS, MARITAL STATUS, SEXUAL ORIENTATION, GENDER IDENTITY, SEX OR GENDER.