Cedar
Cedar is committed to improving the healthcare billing experience for all.
Hybrid
View Profile
Jobs//Hybrid//Cybersecurity + IT//

Product Security Engineer

Sorry, this job was removed at 11:23 a.m. (EST) on Tuesday, October 6, 2020
View 273 Jobs
Find out who's hiring in Greater NYC Area.
See all Cybersecurity + IT jobs in Greater NYC Area
View 273 Jobs
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

The Role

Cedar has built a platform that combines data science and machine learning to connect patients with healthcare providers in a way that helps solve the critical challenges of patient billing and payment. Our technology improves the overall experience of patient billing and engagement, enabling patients to help understand the cost of their care while ensuring providers can thrive in a rapidly changing environment. Patients put their trust in Cedar's platform, making security and availability an integral part of what we do.

As a Product Security Engineer, you will help build the application security program, affecting the whole product lifecycle: from input to architecture through the release process as well as ongoing assessment, triage and remediation of application vulnerabilities. As a fast-growing startup, security cannot be reactive, and so you will be hands-on with our codebase: helping build tools, services and guidance that form the "golden road", so releasing secure software is the easy and obvious path for the rest of our maker community. 

Responsibilities

  • Embed security practices into new and existing CI/CD pipelines
  • Perform security assessments of new products and technologies
  • Evangelize security through participation in design discussions and code reviews
  • Build security solutions not just to mitigate the OWASP Top 10, but to raise the bar on data protection and monitoring
  • Drive technical projects end-to-end, including the integration of secure development standards, tools and processes
  • Perform threat modeling, research and share threat intelligence specific to Cedar's business
  • Prioritize remediations and projects based on knowledge of threat, risk and importance to the business

Required Skills & Experience

  • 5+ years in technical security roles
  • Proficient in a few general purpose programming languages (ideally Python & Javascript)
  • Experience with penetration tests & application assessments, ideally on both sides of the table
  • Experience performing code audits on internal and open source libraries
  • Experience with DAST, SAST as well as manual testing techniques 
  • Familiarity with AWS operations; this isn't an infrastructure role, but you should be able to advocate for controls at different parts of the stack

Preferred Qualifications

  • A record of participation in the open-source and security communities
  • Experience building secure APIs and secure data science pipelines
  • Hands-on experience with container and AWS security, and implementing automations with and for these platforms
  • Familiarity with HIPAA, PCI and the unique considerations around health and payments data
  • Experience with vulnerability and threat management activities generally, including bug bounty and external assessment programs
  • Strong communications skills - ability to describe the security of our platform to existing and potential clients would be a big win

What do we offer to the ideal candidate?

  • An opportunity to work on a platform that is scaling very rapidly with 200,000 engaged patients a day as of May 2020
  • A chance to join a high-growth company at an early stage
  • The ability to impact the growth of our company, we value all comments and suggestions
  • Transparency across teams and interaction with multiple departments
  • Competitive pay, employer-paid healthcare, stock options
  • Daily team lunch and unlimited healthy snacks at our NYC office

 

Applicants must be currently authorized to work in the United States on a full-time basis. Cedar will not hire any applicants for Product Security Engineer who are present in the United States on an F-1 visa

See More
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Sara Bernstein
Software Engineer
MISSION DRIVEN
The patient experience
Software Engineer Sara Bernstein joined Cedar to help put their mission into practice. “I am constantly working with my teammates on products that enhance the patient experience and aim to make healthcare more affordable,” Bernstein said. Whether working through code reviews, running through tickets or focusing on pair programming, Bernstein knows her work makes a difference. “I love that the products I’m building directly impact our patients and that I get to see the impact of my work,” she said. Bernstein also mentioned she's a big fan of the almond butter cups in the NYC HQ snack pantry.
Software Engineer Sara Bernstein joined Cedar to help put their mission into practice. “I am constantly working with my teammates on products that enhance the patient experience and aim to make healthcare more affordable,” Bernstein said. Whether working through code reviews, running through tickets or focusing on pair programming, Bernstein knows her work makes a difference. “I love that the products I’m building directly impact our patients and that I get to see the impact of my work,” she said. Bernstein also mentioned she's a big fan of the almond butter cups in the NYC HQ snack pantry.
Pooling together different opinions, experiences and areas of expertise gives our team the ability to deliver an excellent product.
Manisha Ram
Product Success Lead
BE@CEDAR
Building space for diverse voices in tech
In addition to her work with clients, Manisha Ram serves as co-chair of be@cedar, an employee resource group focused on building inclusion and community for BIPOC Cedarians. Along with Ram’s personal growth as a leader and her gratitude for the be@cedar community, she is also grateful for how Cedar is able to model inclusivity, both in the tech world and for their healthcare clients. “We have a responsibility to create that inclusive environment so that our providers, patients and observers clearly see our commitment to anti-racism and diversity in our product and in each of us,” she said.
In addition to her work with clients, Manisha Ram serves as co-chair of be@cedar, an employee resource group focused on building inclusion and community for BIPOC Cedarians. Along with Ram’s personal growth as a leader and her gratitude for the be@cedar community, she is also grateful for how Cedar is able to model inclusivity, both in the tech world and for their healthcare clients. “We have a responsibility to create that inclusive environment so that our providers, patients and observers clearly see our commitment to anti-racism and diversity in our product and in each of us,” she said.
There is an indescribable feeling when you find out you share a similar background and experiences with another co-worker. You feel like you can be your true self a little more.
Harry Morgenstern
Implementations Director, Sales
SOLUTIONS ORIENTED
Solving complex problems cross-functionally
Each day is different for Harry Morgenstern. One recent cross-functional project connected him to Cedar’s product, engineering and design teams to quickly deploy features to support a client. “The ‘all hands on deck’ approach is not new for Cedarians, but it was invigorating to know I can count on my teammates, even when it’s not their direct responsibility to step in,” Morgenstern said. According to Morgenstern, especially in his role, that solutions-oriented approach is key. “Each healthcare organization we partner with presents new challenges that Cedar can help solve.”
Each day is different for Harry Morgenstern. One recent cross-functional project connected him to Cedar’s product, engineering and design teams to quickly deploy features to support a client. “The ‘all hands on deck’ approach is not new for Cedarians, but it was invigorating to know I can count on my teammates, even when it’s not their direct responsibility to step in,” Morgenstern said. According to Morgenstern, especially in his role, that solutions-oriented approach is key. “Each healthcare organization we partner with presents new challenges that Cedar can help solve.”
I love being part of a team that continually strives to make our implementations more efficient.

What are Cedar Perks + Benefits

Cedar Benefits Overview

Working at Cedar: what’s not to love?

Being part of our team means working together to solve a problem that impacts millions of consumers every year. It’s challenging, exciting and complex. We’re proud to be the only company that truly empowers consumers with an easier, more personalized and transparent healthcare journey.

Culture
Volunteer in local community
Open door policy
OKR operational model
Team based strategic planning
Pair programming
Open office floor plan
Employee resource groups
Employee-led culture committees
Hybrid work model
In-person all-hands meetings
Employee awards
Flexible work schedule
Remote work program
Cedar offers a very flexible remote work program, both pre-COVID and after.
Diversity
Documented equal pay policy
Mandated unconscious bias training
We offer annual unconscious bias training for all employees.
Diversity employee resource groups
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Dental benefits are part of our comprehensive benefits offered through industry brand carriers with multiple options to choose from.
Vision insurance
Vision benefits are part of our comprehensive benefits offered through industry brand carriers with multiple options to choose from.
Health insurance
Life insurance
Pet insurance
Mental health benefits
We offer an experienced EAP counselor 24 hours a day, 7 days per week.
Financial & Retirement
401(K)
Company equity
Child Care & Parental Leave Benefits
Generous parental leave
At Cedar we want to support all new parents in their expanding family. Therefore, we offer our full time team members who are expecting or having a new child Paid Leave.
Family medical leave
Cedar offers family medical leave for employees. Our leave partner walks employees through every step of the process.
Vacation & Time Off Benefits
Unlimited vacation policy
Paid holidays
Paid sick days
Company-wide vacation
Cedar offers company wide shut downs around major holidays
Office Perks
Commuter benefits
Cedar offers pre-tax commuter benefits for all full-time employees.
Company-sponsored outings
Free daily meals
Daily lunches are provided at our NYC HQ.
Free snacks and drinks
Our kitchen is stocked full of snacks and drinks for every desire! Some of our favorites are cold brew, kombucha, rotating craft beers, fresh fruit, yogurt and every kind of chip you can imagine!
Company-sponsored happy hours
Pet friendly
Our NYC HQ has a dog lounge. Bring your dog to work!
Meditation space
Mother's room
Professional Development Benefits
Job training & conferences
Lunch and learns
Cedar hosts lunch & learns monthly. This allows employees to present in-depth on projects they're working on or for the occasional guest invitee to teach the team about a topic of interest.
Promote from within
Mentorship program
Our mentorship program pairs folks based on shared interests and goals, from the same team or cross-functionally, and emphasizes building mutually beneficial relationships for professional equity.
Customized development tracks
Paid industry certifications
Personal development training

Additional Perks + Benefits

We take great pride in making our employees' wellness a top priority, and we create opportunities to talk openly about mental health and wellbeing.

We have a directory with resources for mental and physical wellbeing, emphasizing benefits offered through our health insurance. The directory covers topics such as managing grief, therapist information, nutrition & water intake, and resources on talking to children about current events. We want to take a holistic approach and include resources that appeal to everyone, so we also included information on remote alternative wellness offerings, including reiki, sound healing, meditation and yoga. We even have an onsite meditation room in our NYC HQ!

View full list of perks + benefits
Photo Gallery

More Jobs at Cedar

Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about CedarFind similar jobs like this