Senior Engineer – Application Security

Job not on LinkedIn

November 4

Apply Now

Receive Emails with Similar Jobs

Ensemble Health Partners

WebsiteLinkedInAll Job Openings

Healthcare Insurance • SaaS • Enterprise

Ensemble Health Partners is a leading provider of revenue cycle management (RCM) services for healthcare organizations. They offer an end-to-end RCM solution that helps hospitals, health systems, and affiliated physician groups optimize their revenue cycles, reduce denials and underpayments, and enhance patient experiences using a combination of expert management and advanced technology. Ensemble Health Partners leverages certified operators and AI to deliver consistent results, improve collections, and support future growth for healthcare providers. They are recognized for their robust client partnerships and commitment to delivering reliable revenue lift and cost savings for their clients.

5001 - 10000 employees

⚕️ Healthcare Insurance

☁️ SaaS

🏢 Enterprise

💰 Private Equity Round on 2022-03

📋 Description

• Manage and optimize application security tools (SAST, DAST, SCA, IaC, secret scanning) and ensure effective integration into CI/CD pipelines and the SDLC lifecycle. • Analyze source code and infrastructure-as-code for security vulnerabilities and provide actionable remediation guidance. • Validate and triage findings from security tools, removing false positives and ensuring accurate issue tracking. • Create and manage remediation tickets (e.g., Aha! Ideas, ServiceNow Requests), ensuring vulnerabilities are prioritized, assigned, and tracked to resolution. • Collaborate with development and engineering teams to validate remediation efforts and confirm closure of security issues. • Participate in the risk management process by documenting, reviewing, and maintaining risk exceptions for unresolved or accepted vulnerabilities. • Work with risk owners and business stakeholders to ensure appropriate compensating controls are in place and documented. • Lead secure code reviews and contribute to threat modeling and design discussions for high-risk applications. • Develop and maintain dashboards and reports that communicate application security posture, remediation progress, and risk trends to leadership. • Stay informed on emerging threats, vulnerabilities, and industry trends, and recommend improvements to tooling and processes.

🎯 Requirements

• Preferred Certifications: CISSP, CSSLP, CCSP, OSWE, OSCP, GPEN, GWEB. • A minimum of 5 years of experience in software development, architecture, or engineering roles. • A minimum of 3-5 years of experience applying secure development practices or working directly with application security tools (e.g., SAST, DAST, SCA, IaC scanning). • Proficiency in one or more programming languages such as Java, .NET (C#), PHP, JavaScript, or Python. • Strong understanding of OWASP Top10 and secure coding standards. • Strong collaboration skills - partner with other teams to solve problems, incorporate feedback and ensure smooth delivery. • Strong business analysis, documentation, and presentation skills.

🏖️ Benefits

• Health Benefits and Insurance Coverage for family and parents. • Accidental Insurance for the associate. • Compliant with all Labor Laws- Maternity benefits, Paternity Leaves. • Company Swags- Welcome Packages, Work Anniversary Kits. • Exclusive Referral Policy. • Professional Development Program and Reimbursements. • Remote work – flexibility to work from home.