Castor is looking for an experienced security engineer to ensure the security of our platform in a quickly growing organisation.
About us
Delivering the best possible healthcare to patients worldwide, requires an efficient research process that drives innovation in healthcare. Currently, 85% of resources spent on medical research do not contribute to patient health. At Castor we are creating user friendly technology that solves these issues. Founded by an MD PhD, we understand that researchers want technology to work for them, not against them.
Our goal is to ensure the world’s research data becomes reusable and machine readable, so that we can leverage the power of AI to help us solve the biggest healthcare challenges. This poses interesting challenges related to scalability, security, cryptography, AI and UX.
Who are we looking for?
To reach our goals, we are looking for an experienced security engineer. In this role you will be working from the operational to the strategic level on tasks that cover the full spectrum of information security, including web, application systems and network security.
You have at least 5 years of experience with information security and a technical bachelor degree or higher.
What will you be doing?
To keep our products at the frontier of innovation, your responsibilities will include:
Work with the product and engineering teams to define needs, identify problems, evaluating potential solutions, demonstrating and implementing improvements
Implement security best practices through the software development life cycle
- Write / review security control procedures and recommend changes to management
- Accountable for responses and actions based on internal and external security audit findings
- Code review and security auditing of our applications
Educating engineers in security best practices
Hardening our systems and applications
Investigating and building automated security/vulnerability tests
Identifying opportunities for process and tool improvements and implementing them
Our stack and tools
Our applications are built in PHP 7 and backed by a multi-server, multi-tenant MySQL database setup. We use Zend Framework as the basis for our applications and Doctrine 2 as our ORM. For the frontend we are currently using Sencha’s ExtJS, but we are migrating towards React. Our production environments are managed by third parties, but we manage a wide range of servers ourselves as well. Quarterly external security audits are performed on the application level.
Our toolset includes Slack, JIRA, Bitbucket, Confluence and Google for Business. We use Jenkins as a continuous integration server.
We offer
The chance to carve out your technical role in a fast-moving scale-up
A way to help the world by improving medical research
The option to work from home one or two days a week
30 vacation days per year on top of the official Dutch holidays
The opportunity to attend relevant tech conferences
A team of young, smart and driven colleagues
A spacious office with all amenities located in the south-east part of Amsterdam
Free lunch, snacks and Friday afternoon drinks!
A great salary, bonuses based on company results and a pension plan
Essential qualifications
Keen interest in all things related to information security
Thorough knowledge of web application security and common security vulnerabilities
Ability to assess impact and severity of issues in the context of our business
Hands-on experience with PHP and Javascript
Experience with Linux and understanding of network security
Understanding of regulatory controls and industry standards like ISO27001, GDPR, SOC-* and PCI.
Excellent problem solving and analytical skills.
Strong verbal and written English communication skills
Knowledge of cryptography is a plus
Desired mindset
High standards of ethics and privacy
Hands-on mentality and proactive attitude
You educate yourself, read articles on new techniques, and keep up to date on the latest trends and issues in information security
You’re excited about the opportunity to help us scale from NL to EU to global, making sure all our customers have the best user experience
You relish the opportunity to help us with automated testing, security and Continuous Delivery
You have a strong customer focus
by via developer jobs - Stack Overflow
No comments:
Post a Comment