Augmedix is searching for Application Security Engineer 2022 in Dhaka
Key Job Responsibilities
- Perform design review, threat modeling, secure code review, and penetration testing for our products, infrastructures and services.
- Provide technical security guidance to mitigate identified risks.
- Create security guidance and documentation for internal and external audiences.
- Review existing processes and suggest improvements for increased security and efficiency.
- Strongly influence decision-makers and stakeholders to achieve a consistently high security bar for new services or features.
- Build Security metrics to track the effectiveness of our security excellence program.
- Keep up to date with trending known/unknown (0-day) security vulnerabilities and take appropriate action to make our services secured.
Augmedix, Inc. (Nasdaq: AUGX) provides automated medical documentation and data services to large healthcare systems and physician practices, supporting medical offices, clinics, hospitals, emergency departments, and telemedicine nationwide. The Company’s Ambient Automation Platform converts the natural conversation between physicians and patients into timely and comprehensive medical notes and performs a suite of related data services. These services relieve physicians of administrative burdens to enable more time for patient care. Augmedix’s proprietary platform uses automatic speech recognition, natural language processing, and clinical datasets to capture the ambient visit conversation and generate a structured medical note. The structured medical note data is then used to deliver additional data services. Quality is assured by trained medical documentation specialists.
Location:
BangladeshBenefits
Check the official link.
Eligibilities
Job Requirement:
- Bachelor’s degree in Engineering or relevant field, or an equivalent combination of education, training, and experience.
- Minimum of 2 years of professional experience with any combination of at least 2 technical disciplines, including the following: application security, mobile security, network security, penetration testing, secure coding and development methodologies.
- Knowledge of core application security principles, secure code review, common security vulnerability classes, their root causes, and mitigations.
Preferred Requirements:
- Professional experience conducting security assessments and reviews, including penetration testing or red teaming, and demonstrated the ability to clearly explain the remediation of findings to product owners.
- Knowledge of threat modeling or other risk identification techniques.
- Knowledge of web and mobile application vulnerabilities and remediation techniques.
- An understanding of communication protocols and data formats (such as TLS, HTTP(S), JSON, XML, Web Sockets).
- An understanding of cryptography, web service frameworks, mobile application architectures, and service architectures (such as event-driven, service-oriented, or serverless architectures).
- An understanding of containerization technologies (Docker, Kubernetes) for the purpose of secure implementation review.
- Experience with one or more scripting or programming languages (such as Java, C++, Python, Go) for the purpose of code review.
- Familiarity with security best practices for Amazon Web Services (such as API Gateway, IAM, Cognito, EC2, S3, DynamoDB, Lambda, ECR, EKS) or similar enterprise cloud computing platforms
- Ability to lead through influence within a secure software development life-cycle for multiple products and services, meeting customer and compliance expectations for security.
- Strong written and verbal communication skills with the ability to engage directly with senior leadership.
- Ability to discover and communicate deep technical issues in terms of business risk with non-experts and senior leaders.
- Strong ownership, urgency, and drive.
