Lead Security Engineer
GoodRx - New York City, NY
Apply NowJob Description
GoodRx is the leading prescription savings platform in the U.S. Trusted by more than 25 million consumers and 750,000 healthcare professionals annually, GoodRx provides access to savings and affordability options for generic and brand-name medications at more than 70,000 pharmacies nationwide, as well as comprehensive healthcare research and information. Since 2011, GoodRx has helped consumers save nearly $75 billion on the cost of their prescriptions.Our goal is to help Americans find convenient and affordable healthcare. We offer solutions for consumers, employers, health plans, and anyone else who shares our desire to provide affordable prescriptions to all Americans.About the RoleGoodRx is looking for a hands-on Lead Security Engineer to keep information secure and eliminate risks across our products and internal systems. This individual will collaborate with GoodRx's Sr. Security Engineering manager, security engineering team and the larger organization to ensure our services are well vetted and maintained. The Lead Security Engineer will have a strong technical background in programming languages, a strong multitasker, and a proactive mindset.. The Lead Security Engineer will work on remediating vulnerabilities, reduce risk, and partner with other teams to deliver a best in class security service.Responsibilities:Provide support for issues that require escalation and resolve complex issuesAbility to incorporate contextual awareness and incorporate risk to provide sound security solutionsPerform risk analysis across the enterprise and production environments to identify and remediate both internal and external threatsProvide advanced security systems technology support as it applies to the installation and maintenance of security tooling, processes, procedures and runbooksMaintain and advise on security technologies and toolsProvide systems support with respect to building or improving systems securityMaintains corporate and production security proceduresPlan, coordinate, and conduct investigations of alleged and suspected computer crimesAbility to work independently to ensure goals set by leadership are reached, and work effectively as a team playerTriage, remediate, and escalate security alerts / events / reportsMaintain all required business controls elements of the security program and participates in the audit process for assigned areas of responsibilitySecure code reviewsRequired Technical and Professional Expertise:At least 8 years experience in cyber security focusing on vulnerabilities and threat managementBachelor's degree in Computer Science, Information Systems, or a related fieldDevelopment experience in any modern programming language (Python, Go, etc.)Strong familiarity with software development lifecycle (SDLC) processes and source control technologiesOffensive security expertise is a plusExperience working in a DevSecOps environmentExperience deploying security tools in Docker and KubernetesExperience integrating and automating security tooling/scanningAbility to create solutions that are scalable, repeatable, secure and maintainableExperience with risk assessment & analysis, emergency preparedness, and investigations/incident managementExcellent communication and team relationship skillsExperience working in a SOC and using SIEM tool (SumoLogic, Splunk, etc.)Experience with SSO platforms, such as Otka and SAMLExperience working with SAST, DAST and SCA tools (Snyk, Semgrep, Veracode, etc.)Experience deploying and managing edge security controls, including WAF and bot managementAt least 3-5 years experience with AWS, GCP, CDN/edge security tools and servicesAWS and GCP certifications are a plusCISSP certification is a plusCertified Kubernetes Administrator certification is a plusAvailability to travel if neededSecurity is responsible for implementing security measures, monitoring suspicious activity, and taking immediate action against cyber threats through the incident response process and vulnerability management program. Additionally, Security monitors GoodRx's organizational systems for end users' activities from an information security perspective and correlates / analyzes logs to detect potential Events and Incidents. Lastly, the team works collaboratively with other departments to improve the organization's security posture.At GoodRx, pay ranges are determined based on work locations and may vary based on where the successful candidate is hired. The pay ranges below are shown as a guideline, and the successful candidate's starting pay will be determined based on job-related skills, experience, qualifications, and other relevant business and organizational factors. These pay zones may be modified in the future. Please contact your recruiter for additional information.San Francisco and Seattle Offices:$161,000.00 - $257,000.00New York Office:$147,000.00 - $235,000.00Santa Monica Office:$134,000.00 - $214,000.00Other Office Locations:$121,000.00 - $193,000.00GoodRx also offers additional compensation programs such as annual cash bonuses and annual equity grants for most positions as well as generous benefits. Our great benefits offerings include medical, dental, and vision insurance, 401(k) with a company match, an ESPP, unlimited vacation, 13 paid holidays, and 72 hours of sick leave. GoodRx also offers additional benefits like mental wellness and financial wellness programs, fertility benefits, generous parental leave, pet insurance, supplemental life insurance for you and your dependents, company-paid short-term and long-term disability, and more!We're committed to growing and empowering a more inclusive community within our company and industry. That's why we hire and cultivate diverse teams of the best and brightest from all backgrounds, experiences, and perspectives. We believe that true innovation happens when everyone has a seat at the table and the tools, resources, and opportunities to excel.With that said, research shows that women and other underrepresented groups apply only if they meet 100% of the criteria. GoodRx is committed to leveling the playing field, and we encourage women, people of color, those in the LGBTQ+ communities, individuals with disabilities, and Veterans to apply for positions even if they don't necessarily check every box outlined in the job description. Please still get in touch - we'd love to connect and see if you could be good for the role!GoodRx is committed to providing reasonable accommodations for candidates with disabilities during our recruiting process. If you need any assistance or accommodations due to a disability, please reach out to us at accommodations@.GoodRx is America's healthcare marketplace. The company offers the most comprehensive and accurate resource for affordable prescription medications in the U.S., gathering pricing information from thousands of pharmacies coast to coast, as well as a tele-health marketplace for online doctor visits and lab tests. Since 2011, Americans with and without health insurance have saved $60 billion using GoodRx and million consumers visit each month to find discounts and information related to their healthcare. GoodRx is the #1 most downloaded medical app on the iOS and Android app stores. For more information, visit .
Created: 2024-11-12