About

JOB SUMMARY

In this role, you will design, build, and maintain a secure enterprise architecture, with a strong focus on embedding security throughout the software development lifecycle (SDLC). You will bring deep expertise in cloud security principles, secure application design, secure coding, and risk management across modern cloud-native environments. Collaborating closely with IT, Engineering, Product, and Compliance teams, you will ensure that security is seamlessly integrated into every phase of our development and deployment processes. Reporting directly by the SVP, Head of Information Security, you will play a key role in advancing a robust cybersecurity program that enables GeneDx to innovate securely and scale confidently in the cloud.

MAJOR DUTIES AND RESPONSIBILITIES

1. Design and implement secure cloud architectures and controls (AWS, Azure, Oracle) tailored to healthcare applications and data, 
2. Lead the adoption of secure SDLC practices across software development teams, ensuring security is embedded throughout the development lifecycle.
3. Integrate security controls into CI/CD pipelines by collaborating with DevOps and engineering teams
4. Deploy and manage DAST tools to detect and remediate runtime vulnerabilities in web and API-based applications.
5. Establish and promote secure coding standards aligned with OWASP and industry best practices.
6. Conduct threat modeling and security risk assessments for new features, platforms, and system architectures.
7. Ensure compliance with healthcare and other regulations such as HIPAA, HITRUST, SOX, and PCI.
8. Develop and enforce cloud security policies, standards, and best practices.
9. Provide expert security input during engineering, IT infrastructure, and application design reviews.
10. Identify and address threats and attack vectors, including XSS, SQL injection, session hijacking, and social engineering.
11. Configure and optimize SIEM tools (e.g., CrowdStrike, Azure Sentinel) to enhance log analysis, threat detection, and incident response capabilities.
12. Design and implement robust cloud security measures, including identity and access management, encryption, and network security.
13. Lead or support vulnerability assessments and penetration testing for web applications and cloud infrastructure. 

EDUCATION/TECHNICAL REQUIREMENTS

Bachelor’s degree in computer science, engineering, Cybersecurity, or related field.

EXPERIENCE

• 7+ years of experience in cybersecurity, with 3+ years focused on security architecture and securing clouds.
• Strong understanding of HIPAA, PCI, HITRUST, SOX, SOC2 and other compliance requirements.
• Proficiency in cloud security frameworks (e.g., CSA CCM, NIST 800-53, CIS Benchmarks).
• Strong experience with one of the following AWS/Azure/Oracle.
• Experience with infrastructure as code (IaC) security (e.g., Terraform, CloudFormation).
• Working knowledge of CrowdStrike and Veracode.
• Hands-on experience with DevOps practices and security integration into CI/CD pipelines.
• Familiarity with container security (e.g., Kubernetes, Docker) and serverless security.

CERTIFICATES, LICENSES, REGISTRATIONS 

Certifications such as CCSP, CISSP, AWS Certified Security Specialty are preferred. 

#LI-REMOTE