Placement papers | Freshers Walkin | Jobs daily: Senior Security Engineer in HealthTech SaaS at Castor EDC (Amsterdam, Netherlands)


Search jobs and placement papers

Senior Security Engineer in HealthTech SaaS at Castor EDC (Amsterdam, Netherlands)

Castor is looking for an experienced security engineer to ensure the security of our platform in a quickly growing organisation.




About us


Delivering the best possible healthcare to patients worldwide, requires an efficient research process that drives innovation in healthcare. Currently, 85% of resources spent on medical research do not contribute to patient health. At Castor we are creating user friendly technology that solves these issues. Founded by an MD PhD, we understand that researchers want technology to work for them, not against them. 


Our goal is to ensure the world’s research data becomes reusable and machine readable, so that we can leverage the power of AI to help us solve the biggest healthcare challenges. This poses interesting challenges related to scalability, security, cryptography, AI and UX. 




Who are we looking for?


To reach our goals, we are looking for an experienced security engineer. In this role you will be working from the operational to the strategic level on tasks that cover the full spectrum of information security, including web, application systems and network security.


You have at least 5 years of experience with information security and a technical bachelor degree or higher.




What will you be doing?


To keep our products at the frontier of innovation, your responsibilities will include:




  • Work with the product and engineering teams to define needs, identify problems, evaluating potential solutions, demonstrating and implementing improvements




  • Implement security best practices through the software development life cycle



  • Write / review security control procedures and recommend changes to management

  • Accountable for responses and actions based on internal and external security audit findings

  • Code review and security auditing of our applications


  • Educating engineers in security best practices




  • Hardening our systems and applications




  • Investigating and building automated security/vulnerability tests




  • Identifying opportunities for process and tool improvements and implementing them






Our stack and tools


Our applications are built in PHP 7 and backed by a multi-server, multi-tenant MySQL database setup. We use Zend Framework as the basis for our applications and Doctrine 2 as our ORM. For the frontend we are currently using Sencha’s ExtJS, but we are migrating towards React. Our production environments are managed by third parties, but we manage a wide range of servers ourselves as well. Quarterly external security audits are performed on the application level.


Our toolset includes Slack, JIRA, Bitbucket, Confluence and Google for Business. We use Jenkins as a continuous integration server.




We offer




  • The chance to carve out your technical role in a fast-moving scale-up




  • A way to help the world by improving medical research




  • The option to work from home one or two days a week




  • 30 vacation days per year on top of the official Dutch holidays




  • The opportunity to attend relevant tech conferences




  • A team of young, smart and driven colleagues




  • A spacious office with all amenities located in the south-east part of Amsterdam




  • Free lunch, snacks and Friday afternoon drinks!




  • A great salary, bonuses based on company results and a pension plan






Essential qualifications




  • Keen interest in all things related to information security




  • Thorough knowledge of web application security and common security vulnerabilities




  • Ability to assess impact and severity of issues in the context of our business




  • Hands-on experience with PHP and Javascript




  • Experience with Linux and understanding of network security




  • Understanding of regulatory controls and industry standards like ISO27001, GDPR, SOC-* and PCI.




  • Excellent problem solving and analytical skills.




  • Strong verbal and written English communication skills




  • Knowledge of cryptography is a plus






Desired mindset




  • High standards of ethics and privacy




  • Hands-on mentality and proactive attitude




  • You educate yourself, read articles on new techniques, and keep up to date on the latest trends and issues in information security




  • You’re excited about the opportunity to help us scale from NL to EU to global, making sure all our customers have the best user experience




  • You relish the opportunity to help us with automated testing, security and Continuous Delivery




  • You have a strong customer focus




by via developer jobs - Stack Overflow
 

No comments:

Post a Comment