Application Security Engineer
Offer summary
Qualifications:
Bachelor’s degree in computer science, Information Technology, or related field., 5+ years of experience in application security or related field., Strong knowledge of web application security principles and common vulnerabilities (OWASP Top 10)., Proficiency in AWS security configurations and best practices..Key responsibilities:
- Perform security code reviews and static code analysis on web applications to identify vulnerabilities.
- Design and implement secure coding standards and guidelines.
- Conduct security assessments of AWS cloud infrastructure and services.
- Collaborate with development and DevOps teams to implement security controls.
Job description
PaceMate™ Application Security Engineer (full-time, remote)
Primary Location: All U.S. Locations (remote)
JOB SUMMARY
We are currently seeking an experienced Application Security Engineer who will join our security team, focusing on protecting web applications and AWS infrastructure. The ideal candidate will have a strong background in application security, secure coding practices, and compliance frameworks including HIPAA, SOC2, and HITRUST.
PaceMateLIVE® is the only cardiac remote monitoring platform offering integration with all EHRs and all cardiac device types in one dashboard, providing all patient data live from day one, and enabling intelligent patient prioritization with its unique Auto-Triage™ feature that focuses on the actionable first.
Joining the PaceMate® team means becoming a vital part of a group that is dedicated to using technology to benefit patients, caregivers, and hospital administrators while driving healthy turnkey solutions that identify lost revenues and inefficiencies.
PaceMate® offers those employees working full-time a robust compensation and benefit package to include Health and Prescription coverage, Dental, Vision, Long-Term Disability, Short-Term Disability, AD&D, Flexible Spending Account, Healthcare Savings Account, 401k Retirement Savings, Discount Program, Employee Assistance Program, Financial Wellness Program, Paid Time Off, Legal Insurance, Hospital Indemnity, Critical Illness, and Accident Coverage.
ESSENTIAL FUNCTIONS & RESPONSIBILITIES
QUALIFICATIONS
An individual must be able to perform each Essential Function of the job satisfactorily. Reasonable accommodation may be made to enable individuals with disabilities, who are otherwise qualified, to perform the essential functions. Nothing within this job description restricts management’s right to assign or reassign duties and responsibilities to this job at any time.
EDUCATION, TRAINING, AND EXPERIENCE
PREFERRED QUALIFICATIONS
REQUIRED TECHNICAL SKILLS
REQUIRED EQUIPMENT
PHYSICAL REQUIREMENTS
While performing the duties of this job, the employee is consistently required to remain in a
stationary position, constantly operate a computer or other office equipment, and frequently.
communicate with customers and employees. Must be able to exchange accurate information,
with the ability to effectively utilize voice over internet protocol; and repetitive motions using.
fingers and forearms in data entry.
REPORTING RELATIONSHIPS
Supervised by: CTO
Supervises: None
Compensation: On top of a Robust Benefit Package, we are targeting a compensation range of $120,000 - $160,000 annually, depending on education and experience.
COMPANY DESCRIPTION
PaceMate® is a pioneering force in cardiac remote monitoring and data management. We’re driven by a mission to modernize digital healthcare and envision a future of connected, personalized cardiac care. Since 2015, PaceMate has been simplifying and streamlining device clinic operations with one easy-to-use platform PaceMateLIVE®. As the industry’s only comprehensive cardiac remote monitoring solution, PaceMateLIVE® uniquely pairs device and EHR data and prioritizes patient care intelligently. Visit PaceMate.com to see how together—We never miss a beat.®
Primary Location: All U.S. Locations (remote)
JOB SUMMARY
We are currently seeking an experienced Application Security Engineer who will join our security team, focusing on protecting web applications and AWS infrastructure. The ideal candidate will have a strong background in application security, secure coding practices, and compliance frameworks including HIPAA, SOC2, and HITRUST.
PaceMateLIVE® is the only cardiac remote monitoring platform offering integration with all EHRs and all cardiac device types in one dashboard, providing all patient data live from day one, and enabling intelligent patient prioritization with its unique Auto-Triage™ feature that focuses on the actionable first.
Joining the PaceMate® team means becoming a vital part of a group that is dedicated to using technology to benefit patients, caregivers, and hospital administrators while driving healthy turnkey solutions that identify lost revenues and inefficiencies.
PaceMate® offers those employees working full-time a robust compensation and benefit package to include Health and Prescription coverage, Dental, Vision, Long-Term Disability, Short-Term Disability, AD&D, Flexible Spending Account, Healthcare Savings Account, 401k Retirement Savings, Discount Program, Employee Assistance Program, Financial Wellness Program, Paid Time Off, Legal Insurance, Hospital Indemnity, Critical Illness, and Accident Coverage.
ESSENTIAL FUNCTIONS & RESPONSIBILITIES
- Perform security code reviews and static code analysis on web applications to identify
- vulnerabilities
- Design and implement secure coding standards and guidelines
- Conduct security assessments of AWS cloud infrastructure and services
- Lead security testing throughout the software development lifecycle
- Assist development teams in remediating security vulnerabilities
- Ensure compliance with regulatory requirements including HIPAA, SOC2, HITRUST, ISO 27001
- Develop and maintain security documentation for compliance audits
- Collaborate with development and DevOps teams to implement security controls
- Stay current with emerging security threats and mitigation techniques
QUALIFICATIONS
An individual must be able to perform each Essential Function of the job satisfactorily. Reasonable accommodation may be made to enable individuals with disabilities, who are otherwise qualified, to perform the essential functions. Nothing within this job description restricts management’s right to assign or reassign duties and responsibilities to this job at any time.
EDUCATION, TRAINING, AND EXPERIENCE
- Bachelor’s degree in computer science, Information Technology, or related field5+ years of experience in application security or related field
- Strong knowledge of web application security principles and common vulnerabilities (OWASP
- Top 10)
- Experience with static application security testing (SAST) tools
- Proficiency in AWS security configurations and best practices
- In-depth understanding of compliance frameworks including HIPAA, SOC2, and HITRUST
- Experience implementing security controls in healthcare or financial environments
- Knowledge of secure software development lifecycle (SSDLC) methodologies
- Strong communication skills to effectively convey security concerns to technical and non
PREFERRED QUALIFICATIONS
- Security certifications (CISSP, CSSLP, CEH, AWS Security Specialty)
- Experience with dynamic application security testing (DAST) and penetration testing
- Knowledge of CI/CD security integration
- Experience with API security testing and OAuth/OIDC implementation
- Background in risk assessment methodologies
- Experience with security incident response
REQUIRED TECHNICAL SKILLS
- Security Tools: Fortify, Checkmarx, SonarQube, OWASP ZAP, Burp Suite
- Cloud Security: AWS Security Hub, GuardDuty, CloudTrail, IAM, KMS
- Authentication: SAML, OAuth, JWT, SSO implementations
- Encryption: TLS, data encryption at rest and in transit
- Compliance Tools: GRC platforms, compliance automation tools
- Programming Knowledge: JavaScript, Java, understanding of web frameworks (VueJS, Spring)
REQUIRED EQUIPMENT
- Must have access to stable, reliable high-speed internet access.
- During your employment, you will be expected to maintain a separate office/room within your home to create suitable working conditions and a sense of privacy.
PHYSICAL REQUIREMENTS
While performing the duties of this job, the employee is consistently required to remain in a
stationary position, constantly operate a computer or other office equipment, and frequently.
communicate with customers and employees. Must be able to exchange accurate information,
with the ability to effectively utilize voice over internet protocol; and repetitive motions using.
fingers and forearms in data entry.
REPORTING RELATIONSHIPS
Supervised by: CTO
Supervises: None
Compensation: On top of a Robust Benefit Package, we are targeting a compensation range of $120,000 - $160,000 annually, depending on education and experience.
COMPANY DESCRIPTION
PaceMate® is a pioneering force in cardiac remote monitoring and data management. We’re driven by a mission to modernize digital healthcare and envision a future of connected, personalized cardiac care. Since 2015, PaceMate has been simplifying and streamlining device clinic operations with one easy-to-use platform PaceMateLIVE®. As the industry’s only comprehensive cardiac remote monitoring solution, PaceMateLIVE® uniquely pairs device and EHR data and prioritizes patient care intelligently. Visit PaceMate.com to see how together—We never miss a beat.®
About PaceMate
Recognized as a Top 100 Healthcare Technology Company by Healthcare Technology Report, PaceMate offers the most comprehensive remote cardiac monitoring solution in the industry. PaceMateLIVE is the only clinical dashboard with user-friendly integrations for all implantable cardiac devices, ambulatory monitors, consumer ECGs, and heart failure products. PaceMate’s Auto-Triage™ prioritizes patients based on clinician-customized standards—not device alerts—resulting in a substantial reduction in alert burden. With the most live connections through EHR-partnered integrations across Epic, Cerner, and athenahealth, PaceMate offers a true, vetted, and validated industry-leading solution for interoperability: ensuring bi-directional data transfer for more accurate reporting, streamlined workflows, and one-click billing. PaceMate’s software-only, concierge on-demand, and full-service offerings deliver a flexible, customized solution for cardiac practices. Visit PaceMate.com to learn how one platform is transforming the future of digital health.
Required profile
Experience
Industry :
Healthtech: Health + Technology
Spoken language(s):
English
Check out the description to know which languages are mandatory. Hard Skills
AWS Cloud ServicesSecure CodingApplication SecurityCompliance ManagementKey ManagementOAuthVuforiaJava (Programming Language)Web Application SecuritySAMtoolsMicrosoft Security Development LifecycleJavaScript (Programming Language)CheckmarxArmed GuardCloud FoundrySonarQubeDigital File ManagementBurp SuitePkMSSecurity TestingSecurity TestingOAuthAPI TestingComputer SecuritySecurity TestingRisk AnalysisPenetration Testing
Other Skills
- Verbal Communication Skills
- Teamwork
- Problem Solving
Security Engineer Related jobs
Senior Security Engineer- Palo Alto FW
Senior Security Engineer- Palo Alto FW
2 day ago
Arrow Electronics
- From: Mexico (Full Remote)
- Full time
Network SecurityInternet Protocols SuiteFirewallVirtual Private Networks (VPN)
Vehicle Security Specialist (m/f/x)
Vehicle Security Specialist (m/f/x)
30+ days ago
FINN
- From: Germany (Full Remote)
- Full time
Maritime SecurityRisk ManagementSecurity Analysis
Senior Security Engineer
Senior Security Engineer
30+ days ago
You.com
- From: United States (Full Remote)
- Full time
Penetration TestingSoftware SecurityThreat Modeling
Product Security Engineer (Remote)
Product Security Engineer (Remote)
30+ days ago
iHerb, LLC
- From: United States (Full Remote)
- Full time
Threat ModelingSecure Application DevelopmentSoftware SecurityTest Automation
Security Engineer - Ubuntu
Security Engineer - Ubuntu
30+ days ago
Canonical
- From: Anywhere (Full Remote)
- Full time
LinuxVulnerabilityOpen Source DevelopmentVulnerability Assessments