Sr. Security Engineer (Remote)
Remote - United States
Full Time Senior-level / Expert USD 1K - 2K
Rula
Affordable online therapy where you are, on your schedule. Easily find a therapist covered by your insurance.We believe that mental health is just as important as physical health. We recognize that mental health issues can be complex and multifaceted, and we are dedicated to treating the whole person, not just the symptoms.
We aim to create a world where mental health is no longer stigmatized or marginalized, but rather is embraced as an integral part of one's overall well-being.
We believe that by providing quality care that is both evidence-based and compassionate, we can empower individuals to take charge of their mental health and achieve their full potential. We are passionate about making a positive impact on the lives of those struggling with mental health issues and we strive to be a force for positive change in the field of mental healthcare.
About the Engineering Team
Join our Engineering Team and shape the future of healthcare technology! Our dedicated team is revolutionizing mental healthcare with comprehensive Provider and Patient Portals, empowering providers and patients alike. As we transition to a Service-Oriented Architecture (SOA), you'll play a key role in reshaping our systems, ensuring agility and scalability. In our event-driven architecture, we're navigating challenges to protect sensitive data. With the introduction of GraphQL, a Centralized Component Library, and an Authorization Service, you'll be part of our innovative strides. Join us in shaping healthcare's future and making a difference!
About the Role
The Security Team at Rula is responsible for ensuring the protection of patient data and all of the technology behind our platform. We maintain close partnerships with Engineering and Product teams, but interface with everyone across the company to ensure that security is an organic and adopted element of our culture. In this role, you’ll have the opportunity to enhance the security of our code and development practices, and launch a vulnerability management program with Engineering and external partners. Overall, you’ll encounter endless learning opportunities and pursue projects that will leverage and refine your skills. More importantly, the work you do will help ensure the best outcomes for patients as we strive to make mental healthcare work for everyone.
Required Qualifications
4+ years of experience as a security engineer (any role)
Experience with JavaScript, TypeScript, Node.js, and/or Ruby
Experience with OWASP Top 10 and the application of those to modern systems
Experience with common SAST and DAST tooling and best practices
Preferred Qualifications
Experience launching and/or managing a bug bounty program
A functional understanding of HIPAA requirements and how they apply to application security practices
Experience with Web Application Firewall (WAF) tuning and alerting
Familiarity with JS front-end libraries, preferably React
Experience interfacing with 3rd party pentesters to validate findings and develop remediation plans
Technical Stack
Rula's systems are written in Typescript/Node.js or Ruby on Rails, with React frontends. We use Postgres for our databases and everything is hosted on AWS. We also make heavy use of existing tools like Salesforce, Airtable, Typeform, etc. This has enabled us to scale very quickly with a small team but we’re now ready to bring much of this work in-house. We’re standing up the technical foundation that will power the future of the company. It doesn’t matter if you don’t have experience with the specific technologies in our stack, we’d still love to connect with you!
We're serious about your well-being! As part of our team, full-time employees receive:
100% remote work environment: Working hours to support a healthy work-life balance, ensuring you can meet both professional and personal commitments
Attractive pay and benefits: Full transparency of pay ranges regardless of where you live in the United States
Comprehensive health benefits: Medical, dental, vision, life, disability, and FSA/HSA
401(k) plan access: Start saving for your future
Generous time-off policies: Including 2 company-wide shutdown weeks each year for self-care (for most employees)
Paid parental leave: Available for all parents, including birthing, non-birthing, adopting, and fostering
Employee Assistance Program (EAP): Support for your mental and physical health
New hire home office stipend: Set up your workspace for success
Quarterly department stipend: Fund team-building activities or in-person gatherings
Wellness events and lunch & learns: Explore a variety of engaging topics
Community and employee resource groups: Participate in groups that celebrate employee identity and lived experiences, fostering a sense of community and belonging for all
Discounted programs: Fetch, SmartSpend, Ladder, SoFi
Our team
We believe that diversity, equity, and inclusion are fundamental to our mission of making mental healthcare work for everyone. We are dedicated to having a culture of inclusion that will support our employees in feeling safe, seen, heard, and valued.
Tags: Airtable Application security AWS DAST Firewalls HIPAA JavaScript Node.js OWASP PostgreSQL Ruby SAST TypeScript Vulnerability management
Perks/benefits: Career development Health care Home office stipend Medical leave Parental leave Startup environment Team events Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.