Security Engineer @ OneStudyTeam

Security Engineer

Posted on 3/21/2023

INACTIVE

Locations

Remote • United States

Experience Level

Entry

Junior

Mid

Senior

Expert

Desired Skills

Agile

AWS

Python

Datadog

Requirements

2 or more years experience in a dedicated technical information security role is required (e.g., security analyst, security engineer)
Understanding of modern application stacks including microservice architectures, containerization, CI/CD, and IaC in a cloud environment
Understanding of logging in cloud environments (e.g. AWS CloudTrail, CloudWatch Log Groups, etc)
The following experience with a SIEM tool:
Alert, Dashboard, & Report creation
Log formatting, ingestion, & integrations
Incident investigation
Knowledge of modern Identity and Access Management solutions (e.g., OKTA) is a strong plus
Understanding of OWASP top 10 from both the attack chain and mitigation perspectives is highly desirable
Strong understanding of agile SDLC and its related security implications
Python experience preferred

Responsibilities

Assist with the selection, architecture, and configuration of a next-generation enterprise SIEM (.e.g., SplunkCloud, SumoLogic, InsightIDR, Exabeam Fusion, Securonix)
Lead the migration from previous SIEM technology while retaining all capabilities
Own the configuration and the maintenance of the SIEM following migration
Champion integration with Application Performance Monitoring solution (Datadog)
Expand SIEM with a focus on product and application security monitoring and alerting
Investigate security events from multiple sources and analyze, triage, document, and escalate security incidents when detected
Assist with the selection and implementation of advanced corporate security solutions e.g., Endpoint Detection and Response (EDR), Next-Generation Antivirus (NGEP)
Configure and respond to alerts/events from advanced corporate security solutions
Participate in product and vendor security assessments as needed

At OneStudyTeam (a Reify Health company), we specialize in speeding up clinical trials and increasing the chance of new therapies being approved with the ultimate goal of improving patient outcomes. Our cloud-based platform, StudyTeam, brings research site workflows online and enables sites, sponsors, and other key stakeholders to work together more effectively. StudyTeam is trusted by the largest global biopharmaceutical companies, used in over 6,000 research sites, and is available in over 100 countries. Join us in our mission to advance clinical research and improve patient care.

One mission. One team. That’s OneStudyTeam.

By joining our team as a Security Engineer, you will provide support and solutions to a growing team spread around the globe. You will play a key role in supporting security across OneStudyTeam’s applications, infrastructure, endpoints and digital assets. To do so, you will work closely with SRE (DevOps), IT (Corporate), Engineering, Software Development, Product and Data Teams. You will assist with the selection, architecture, and configuration of a next-generation enterprise SIEM and security analytics engine that spans modern infrastructure (AWS), endpoints, and SaaS applications. You will respond and investigate security events in accordance with OneStudyTeam’s Event and Incident Response policies and processes, modifying them as necessary to meet technological and business needs.

What You’ll Be Working On

Assist with the selection, architecture, and configuration of a next-generation enterprise SIEM (.e.g., SplunkCloud, SumoLogic, InsightIDR, Exabeam Fusion, Securonix)
Lead the migration from previous SIEM technology while retaining all capabilities
Own the configuration and the maintenance of the SIEM following migration
Champion integration with Application Performance Monitoring solution (Datadog)
Expand SIEM with a focus on product and application security monitoring and alerting
Investigate security events from multiple sources and analyze, triage, document, and escalate security incidents when detected
Assist with the selection and implementation of advanced corporate security solutions e.g., Endpoint Detection and Response (EDR), Next-Generation Antivirus (NGEP)
Configure and respond to alerts/events from advanced corporate security solutions
Participate in product and vendor security assessments as needed

What You’ll Bring to OneStudyTeam

2 or more years experience in a dedicated technical information security role is required (e.g., security analyst, security engineer).
Understanding of modern application stacks including microservice architectures, containerization, CI/CD, and IaC in a cloud environment
Understanding of logging in cloud environments (e.g. AWS CloudTrail, CloudWatch Log Groups, etc)
The following experience with a SIEM tool:
- Alert, Dashboard, & Report creation
- Log formatting, ingestion, & integrations
- Incident investigation
Knowledge of modern Identity and Access Management solutions (e.g., OKTA) is a strong plus
Understanding of OWASP top 10 from both the attack chain and mitigation perspectives is highly desirable.
Strong understanding of agile SDLC and its related security implications.
Python experience preferred

Learn more about our global benefits offerings on our careers site: https://careers.onestudyteam.com/us-benefits

We value diversity and believe the unique contributions each of us brings drives our success. We do not discriminate on the basis of race, sex, religion, color, national origin, gender identity, age, marital status, veteran status, or disability status.

Note: OneStudyTeam is unable to sponsor work visas at this time. If you are a non-U.S. resident applicant, please note that OST works with a Professional Employer Organization.

As a condition of employment, you will abide by all organizational security and privacy policies.

For a detailed overview of OneStudyTeam’s candidate privacy policy, please visit https://careers.onestudyteam.com/candidate-privacy-policy. This organization participates in E-Verify (E-Verify’s Right to Work guidance can be found here).

201-500 employees

Website

Cloud-based medical development platform

Company Overview

OneStudyTeam's mission is to provide their cloud-based platform StudyTeam to accelerate the development of new and life-saving therapies. OneStudyTeam looks to bring research site workflows online and enables sites, sponsors, and other key stakeholders to work together more effectively using common technology.

Company Core Values

Build things that are useful and unique
Operate with integrity
Respect the people in your life
Put the team first and assume good intentions
Show up every day and put soul into what you do