About NexHealth
Our healthcare system is frustratingly analog. When you live in a world of one-tap car rides, meal delivery, and unlimited streaming, why do you have to call to schedule an appointment with a doctor and are still handed a clipboard to fill in a form? NexHealth’s mission is to accelerate innovation in healthcare. We’re doing this by connecting patients, doctors, and developers. We’re the first to fully automate the integration with health record systems, paving the way for a new generation of disruptive health-tech companies
Here's Some Of What We've Accomplished
- $125M Series C at $1B valuation
- Manage more than 38 million patient records
- 100%+ annual revenue growth
- Top 10% of Inc. 5000 (2022)
Information Security at NexHealth
If you get excited about building and securing infrastructure or products, this role is for you! NexHealth is building the API infrastructure for healthcare patient data movement and securing our software is a core part of fulfilling that vision. That is why we are in the process of becoming SOC2 compliant.
As a Security Engineer, you will build security solutions and collaborate across teams to support them in building the solutions needed within their areas of responsibility. Information Security and security engineers on the team are focused on meeting our SOC2 obligations. As part of that, they work alongside the larger technology organization to evaluate the design and implementation of our products, design security solutions and features, and educate our teams on secure coding and emerging threats.
This position will constantly challenge you to learn new skills and apply yourself in different ways towards our mission of accelerating innovation in healthcare by creating the data exchange infrastructure to power that. In this role, you will work alongside the compliance function and be tasked with providing security guidance and recommendations to the rest of the engineering team.
You will rely on your experience and judgment as well as your ability to find data from a wide variety of sources to solve complex problems. Solving these problems will require the ability to make risk-based decisions after developing a clear understanding of security goals and the goals of the company as a whole. You will be expected to consistently follow through on your commitments and have the ability to admit mistakes and gain insight from experiences when things go wrong.
Information Security is a new and small team. As a member of the Information Security team, you will be joining highly collaborative people across NexHealth focused on having a meaningful impact on our customers and the greater healthcare industry. The Information Security team resides within the legal and compliance organization, which helps this team have visibility and reach into the broader company.
What You’ll Do
- Own security engineering work streams and build security solutions in support of HIPAA and SOC2 compliance
- Provide security engineering guidance and architecture oversight, design reviews and security feature roadmap collaboration
- Provide security subject matter expertise to development teams, developing secure coding practices, and develop hands-on training to developers and quality engineers
- Analyze security test results, document risks, and build mitigating controls
- Develop new automation and tooling to improve our detection of and assist in the remediation of findings
- Support security compliance programs and policies
- Support security diligence reviews by prospective and current customers
What You’ll Bring
- Experience with any of the following areas of compliance: (HIPAA, SOC2, HITRUST, NIST 800-53, NIST CSF, NIST 800-171)
- A solid understanding/usage of agile development concepts like Infrastructure as Code, Configuration Management, Security Automation, Terraform, Ansible, etc.
- Working knowledge of the browser security model, cryptography, network and systems security
- Familiarity with providing security recommendation and guidance in at least two of the following languages/frameworks: Ruby on Rails, Python, GoLang, Javascript, React, Angular
NexHealth Values
- Solve the customer’s problems, not yours When making decisions, think from the perspective of the customer. It’s easy to make decisions that make our lives simpler, but not the customers.
- Do the things others are not willing to do As a Nexer, always go after the hardest problems. Pursue things at the highest quality. Move at the fastest pace.
- Take ownership Act like a founder. Own your roles, destinies, mistakes, behavior, and our mission. The buck stops with each of us - no blaming or excuses.
- Say what’s on your mind, with positive intent Be direct, proactive, transparent, and frequent in your communication.
- Default trust As a Nexer, you do not have to earn trust, trust is given to you by default. If we by default trust each other, our speed of communication, feedback, information sharing, and overall improvements will be a lot faster.
- Think in first principles We first identify the problem and then break it down to its fundamentals before diving into solutions. We constantly ask “why” to validate our assumptions.
Benefits
- Competitive salary plus equity
- Commuter benefits
- 401K
- Full Medical, Dental and Vision
- Unlimited PTO
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender expression, sexual orientation, age, marital status, veteran status or disability status. We will provide reasonable accommodation to individuals with disabilities to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation at talent@nexhealth.com.
Note From The Remote JobHunters:
- When you apply, be sure to mention that you heard about this position from The Remote JobHunters!
- Looking for more entry-level remote positions? If so, be sure to join The Remote JobHunters Facebook group, Subreddit, and subscribe to our weekly newsletter!
