Who We Are ;OMNY is a real world data exchange platform that enables health systems and specialty networks to share their de-identified data sets with external parties at scale. The company’s vision is to help sustain the healthcare ecosystem through a data driven business model, while unlocking incredible innovation in the life sciences industry with real world data from health systems. The OMNY platform ensures control, security, and data governance for both data sellers and data buyers. We are eager to onboard professionals who are prepared to innovate and redefine the standards of data sharing and utilization. Join us if you are ready to take on significant challenges and contribute to our continuous success!What We're Looking ForAs a DevSecOps Engineer at OMNY, you will integrate security at every phase of software development to enhance our infrastructure and applications across healthcare-focused platforms. This role requires proactive engagement in a variety of projects, including the development of security infrastructure, continuous monitoring and defense against emerging threats, and ongoing refinement of our security practices to align with compliance standards.Your responsibilities will involve the holistic identification, preparation, and mitigation of potential security threats to OMNY's IT systems and software architecture. You will serve as a pivotal advisor to management on IT policies within the healthcare sector and oversee the performance enhancement of our security frameworks. We seek a candidate who is deeply committed to building secure system foundations and possesses substantial experience in security, networking, and protocol management.Key Responsibilities: ;Integrate security measures with DevOps practices, enhancing the security posture of our applications and infrastructure.Develop and maintain security automation and monitoring to quickly detect and respond to threats.Perform thorough security assessments and penetration testing, identify vulnerabilities, and ensure timely remediation.Collaborate with development teams to advocate secure coding practices and implement security measures throughout the software development and deployment processes.Manage security tools and implement necessary updates and patches to mitigate risk.Support enterprise security goals, including SOC, HITRUST, and others relevant to healthcare data security.Participate in the development and enforcement of security policies and procedures.Support incident response and forensic analysis activities.Stay up-to-date on emerging cybersecurity threats and technologies, and recommend proactive measures to mitigate risks.Take ownership of IAM (Identity and Access Management) policies in our cloud infrastructure, ensuring they are aligned with best practices and compliance standards.Preferred QualificationsProficiency in one or more programming languages (Go, C#, Java, etc…).Certifications such as Certified Ethical Hacker (CEH) or Certified Information Systems Security Professional (CISSP).