Senior Risk Engineer

Job Description

CareDx, Inc. is a leading precision medicine solutions company focused on the discovery, development, and commercialization of clinically differentiated, high-value healthcare solutions for transplant patients and caregivers.

The company offers products, testing services, and digital healthcare solutions along the pre- and post-transplant patient journey, and is the leading provider of genomics-based information for transplant patients.

Key Responsibilities

• Implement and maintain security measures to protect sensitive healthcare data.
• Monitor threats and respond to security incidents in a timely manner.
• Conduct compliance work, including SOC 2, vendor assessment, and project coordination.

Security Tools Implementation

• Deploy and manage security tools, including SIEM, EDR, firewalls, IDPS, and WAF.

Security Monitoring and Threat Detection

• Maintain and tune security monitoring systems to ensure optimal performance.

Document and Report Security Incidents

• Document and report security incidents, and assist in remediation efforts.

Regulatory Compliance

• SUPPORT COMPLIANCE EFFORTS WITH HIPAA, HITECH, SOC 2, AND OTHER RELEVANT REGULATIONS.
• CONDUCT SECURITY ASSESSMENTS AND AUDITS TO ENSURE COMPLIANCE WITH REGULATORY STANDARDS.

Vendor Risk Management

• DEVELOP AND MAINTAIN A VENDOR RISK MANAGEMENT PROGRAM.

Project Coordination

• COORDINATE SECURITY AND COMPLIANCE PROJECTS, ENSURING THEY ARE COMPLETED ON TIME AND WITHIN SCOPE.

Cloud Security

• SECURE CLOUD ENVIRONMENTS (AWS, AZURE, GCP) BY IMPLEMENTING BEST PRACTICES AND SECURITY CONTROLS.
• MONITOR AND MANAGE CLOUD SECURITY CONFIGURATIONS.

Requirements

• Bachelor's degree in computer science, Information Technology, Cybersecurity, or relevant work experience.
• At least 2 years of experience in cybersecurity or related fields.
• Relevant certifications such as CompTIA Security , CEH, or equivalent a plus.

About CareDx

Every individual at CareDx has a direct impact on our collective mission to improve the lives of organ transplant patients worldwide.

We believe in taking great care of our people, so they take even greater care of our patients.

Benefits

• Health and welfare benefits including a gym reimbursement program
• Employee Stock Purchase Plan
• Pre-tax commuter benefits

In addition, we have a Living Donor Employee Recovery Policy that allows up to 30 days of paid leave annually to a full-time employee who makes the selfless act of donating an organ or bone marrow.