Security Engineer

Job Description Job Description We are exclusively representing a mission-driven global leader in the Health-Tech sector. This rapidly scaling organization is dedicated to developing smart affordable digital health solutions that increase access to care for millions of people worldwide. With a strong presence in the market and significant growth ahead they are committed to building a world-class security and compliance function to protect their users and enable their mission. This is a greenfield opportunity for a senior security professional to build a mature cybersecurity program from the ground up. The current environment is agile and fast-paced and this role is pivotal in embedding security into the fabric of the organization. Your mission is to move the company from a reactive to a proactive security posture architecting the systems processes and compliance frameworks required for global scale. This isnt a maintenance role; its a chance to be the foundational security leader and architect with a direct impact on the companys ability to grow and enter new markets securely. Performance Objectives for Year One Success in this role will be measured by your ability to achieve the following key objectives : Spearhead Compliance Readiness: Within the first 12-18 months successfully architect and lead the organizations preparation for SOC2 Type 2 and HiTrust certifications. This involves conducting gap analyses developing remediation plans and partnering with internal teams and external auditors to build a robust auditable compliance framework. Modernize Vulnerability Management: Overhaul the existing vulnerability management program by establishing an automated scanning triaging and remediation workflow. Your success will be demonstrated by a measurable reduction in the average time-to-remediate critical vulnerabilities across the companys AWS infrastructure and applications. Establish a DevSecOps Culture: Architect and integrate a comprehensive security strategy into the entire software development lifecycle. This includes implementing automated security gates within the CI / CD pipeline and working closely with development teams to ensure secure coding standards and infrastructure provisioning are adopted and followed. Architect Automated Threat Detection & Response: Design and deploy a modern automated security monitoring and incident response capability for the AWS cloud environment. You will leverage tools like AWS GuardDuty and WAF and implement SIEM / SOAR principles to significantly reduce the mean time to detect (MTTD) and respond (MTTR) to security threats. Build the Cybersecurity Roadmap & Knowledge Base: Develop and own the companys first formal cybersecurity roadmap and create a centralized comprehensive document bank for all security policies procedures and architectural diagrams. This will serve as the single source of truth for internal governance and to satisfy external customer and audit requests efficiently. Profile for Success Minimum Requirements: An engineering degree in Computer Science Software or a related field is essential. Proven Compliance Leadership: Demonstrated track record of leading an organization through a major compliance certification process such as SOC2 HiTrust or ISO 27001. Hands-On Cloud Security Expertise: Deep practical experience architecting and securing cloud-native infrastructure particularly within the AWS ecosystem (IAM GuardDuty WAF EKS / ECS etc.). DevSecOps Champion: Experience building security into the CI / CD pipeline and fostering a collaborative security culture within engineering teams. Strategic & Tactical Mindset: You can create a high-level security roadmap while also being comfortable diving deep to implement technical controls automate processes and respond to incidents. Certifications (Desirable): Professional certifications such as CISSP CCSP OSCP or PNPT are highly advantageous. Key Skills Key Skills: Splunk, IDS, Network security, Computer Networking, Identity & Access Management, PKI, PCI, NIST Standards, Security System Experience, Information Security, Encryption, Siem Employment Type: Full-Time Experience: years Vacancy: 1 #J-18808-Ljbffr