SimplePractice is seeking a detail-oriented and proactive Security Analyst to join our growing security team. This role is pivotal in safeguarding our AWS-hosted healthcare SaaS platform, ensuring the confidentiality, integrity, and availability of sensitive health data. The ideal candidate will possess a strong background in defensive security operations, regulatory compliance, and risk management.
The ideal candidate will have a security mindset and the ability to think outside the box, contributing to a team of highly motivated and skilled information security practitioners. As a Security Consultant and Penetration Tester the main goal is to balance both security and business imperatives using a risk based approach and to validate security controls by performing penetration tests across the organization. This individual will conduct information security penetration tests as well as provide security consulting and advisory in one or more of the following fields: application, network, platform/OS security, and biomedical devices.
Support the development and implementation of GRC strategies within ModMed, ensuring adherence to regulatory requirements, industry standards, and best practices for cybersecurity, conduct risk assessments, and collaborate across departments to enhance our security posture.
This is a high-impact role where you will partner with engineering and product leadership to embed security into everything. You will define and drive the overarching security roadmap, guiding teams to design, build, and deploy secure products at scale. Your leadership will ensure security posture evolves with proactively identifying risks, enabling innovation, and earning customer trust.