Software Engineer, Security

Doximity | Must Be In: North America

Date listed

3 weeks ago

Employment Type

Full time

Remote

Yes

Employees

101-250

Salary

$66k

Total Funding

$81.8 million

Found on:

Responsive image Remote OK

Doximity is transforming the health care industry. Our mission is to help clinicians be more productive, informed, and connected. As a software engineer, you'll work within cross-functional delivery teams alongside other engineers, designers, and product managers in building software to help improve health care.  

Our team brings a diverse set of technical and cultural backgrounds and we like to think pragmatically in choosing the tools most appropriate for the job at hand.

Here's How You Will Make an Impact

  • Help maintain our private security bug bounty program hosted on hackerone: this involves engaging security researchers, validating security finds, determining impact/risk, awarding bounties, and fixing or coordinating remediation efforts.
  • Help set good security posture; this includes finding bad security habits in applications and encapsulating good secure defaults into libraries/modules, creating training materials for application developers, etc.
  • Work side-by-side with the rest of the infrastructure, application, and data teams to empower all of engineering to move quickly while meeting security requirements.
  • Design and implement secure and easy-to-use tooling and abstractions for other teams to leverage.
  • Active involvement in the design, implementation, and maintenance of the development, staging, and production infrastructure.
  • Participate in an on-call rotation for the services owned by your team.
  • Help ensure the stability and uptime of services within the organization.
  • Create concise post-mortems in the event of an outage.
  • Write and maintain run-books for other engineers to leverage.
  • Ensure proper security, monitoring, alerting, and reporting.

What we’re looking for

  • You’re a software engineer with more than 4 years of experience and a deep understanding of software engineering practices.
  • You either have experience with security or really want to dive in headfirst and learn.
  • You don’t shy away from:
  • Reading, reviewing, and implementing our implementation of the oauth spec.
  • Getting dirty with CORS, CSRF, XSS, etc
  • Our web applications are built primarily using Ruby, Rails, Javascript (Vue.js), and a bit of Golang
  • You have experience working with Terraform and Chef (or similar tooling).
  • You are proficient with Linux/Unix, AWS, and Git.
  • You are able to maintain a minimum of 5 hours overlap with 9:30 to 5:30 PM Pacific time.
  • You can dedicate about two weeks per year for travel to company events.

Benefits & Perks

  • Generous time off policy
  • Comprehensive benefits including medical, vision, dental, Life/ADD, 401k, flex spending accounts, commuter benefits, equipment budget, educational resources and conference access
  • Family support and planning benefits
  • Pre-IPO stock incentives
  • .. and much more! For a full list, see our career page

About Doximity

We’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $3.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunities for you to make an impact—join us!

Doximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

Location

  • North America