RxSense Group
Application Security Engineer Princeton, NJ , Boston, MA or PBG, FL
RxSense Group, Princeton, New Jersey, us, 08543
RxSense is a high-growth healthtech company empowering clients and consumers with technology to access lower cost prescription drugs. Its transformative cloud-based enterprise platform enables clients to take control of their pharmacy benefits with fast, flexible and customizable solutions and real time data insights to improve operational and financial performance -- and ultimately deliver better care to patients nationwide. RxSense also owns and operates SingleCare, a free prescription savings service that offers consumers access to consistently low prices on prescription drugs. Through its partnerships with the country’s largest pharmacies and grocers, including CVS, Walgreens, Walmart, Kroger and Albertsons, SingleCare improves access and adherence to more affordable medications and has helped millions of Americans collectively save over $8 billion on their medications.RxSense is a great place to work! Our company has earned recognition as one of Fast Company’s Most Innovative Companies, Forbes’ Top Startup Employers, Modern Healthcare's Best Places to Work in Healthcare, and Inc’s Best in Business and Best Workplaces.Position Summary:The Application Security Engineer position is a mid-tier role in the RxSense Information Security team that will focus on assessing and managing risks in the application security domain. In this role you will act as an application security SME on project teams and be responsible for performing various security touchpoints throughout the RxSense Software Development Lifecycle.Must be aware of and comply with all aspects of the RxSense Information Security Program and the policies contained therein. Must always understand the importance of maintaining Information Security in all Business Operations.Job Responsibilities:Work with development and product teams to define security requirements and ensure they are followedPartner with development and product teams to drive remediation of security gapsCoordinate 3 rd
party penetration tests and work with internal teams to remediate findingsPerform architecture and design reviews on company applicationsMonitor and analyze application security logs and events to detect and respond to security threatsPerform monitoring and management of Web Application FirewallInterpret and manually validate Static Application Security Testing (SAST) resultsManage SAST, SCA and DAST tools to ensure comprehensive testing and remediation of findingsAnalyze and report on risks discovered through application security testingParticipate on project teams as InfoSec representativeAbility to quickly adapt to changing priorities as business needs changeExcellent interpersonal and communication skills a mustStrengths:Knowledge and experience with techniques, tools and practices pertaining to securing the SDLC (Software Development Lifecycle).Experience with software development, programing, scripting.Experience with OWASP ZAP or Burp ProxyExperience with static application security testing toolsKnowledge and experience with implementing and managing web application firewallsHigh level understanding of securing Cloud Platforms, AWS and GCP, cloud architectureAlthough the position is in application security domain, a broad interest/experience across the whole security domain would be an advantageRequirements:BS in Information Systems preferred but appropriate experience is acceptable3+ years of experience in application security, software development, or IT related fieldMust have the ability to identify, analyze and solve security risks pragmaticallyFamiliarity with web application architecture, APIs, and cloud environmentsExperience with security standards and frameworks, such as OWASP, NIST, or CISPractical understanding of common application security vulnerabilitiesExcellent problem-solving and analytical skills with demonstrated ability to investigate and solve complex problemsExcellent communication skills are needed with demonstrated ability to work with multiple organizational functions and levelsSalary Range: $120,000 - $135,000RxSense believes that a diverse workforce is a more talented and productive workforce. As such, we are an Equal Opportunity and Affirmative Action employer. Our recruitment process is free from discriminatory hiring practices and all qualified applicants are considered for employment without regard to race, color, religion, sex, gender, sexual orientation, gender identity, ancestry, age, or national origin. Neither will qualified applicants be discriminated against on the basis of disability or protected veteran status. We believe in the strength of the collaboration, creativity and sense of community a diverse workforce brings.Accepted file types: pdf, doc, docx, txt, rtfAccepted file types: pdf, doc, docx, txt, rtfLinkedIn ProfileAre you legally authorized to work in the United States? *
Select...Will you now, or in the future, require sponsorship for employment Visa status (e.g. H-1B Visa Status? *
Select...Are you able to work onsite at either our Princeton, NJ, Boston, MA or PBG, FL offices 3 days per week? *
Select...EducationSchool *
Select...Degree *
Select...Select...Select...Start date year *End date month
Select...End date year *Voluntary Self-Identification
For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.As set forth in RxSense’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.Select...Voluntary Self-Identification of Disability
Form CC-305Page 1 of 1OMB Control Number 1250-0005Expires 04/30/2026Voluntary Self-Identification of Disability
Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026Why are you being asked to complete this form?
We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp .How do you know if you have a disability?
A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability.
Disabilities include, but are not limited to:Alcohol or other substance use disorder (not currently using drugs illegally)Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDSBlind or low visionCancer (past or present)Cardiovascular or heart diseaseCeliac diseaseCerebral palsyDeaf or serious difficulty hearingDiabetesDisfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disordersEpilepsy or other seizure disorderGastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndromeIntellectual or developmental disabilityMental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSDMissing limbs or partially missing limbsMobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supportsNervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilitiesPartial or complete paralysis (any cause)Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysemaShort stature (dwarfism)Traumatic brain injury
Disability Status
Select...
PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.
#J-18808-Ljbffr
party penetration tests and work with internal teams to remediate findingsPerform architecture and design reviews on company applicationsMonitor and analyze application security logs and events to detect and respond to security threatsPerform monitoring and management of Web Application FirewallInterpret and manually validate Static Application Security Testing (SAST) resultsManage SAST, SCA and DAST tools to ensure comprehensive testing and remediation of findingsAnalyze and report on risks discovered through application security testingParticipate on project teams as InfoSec representativeAbility to quickly adapt to changing priorities as business needs changeExcellent interpersonal and communication skills a mustStrengths:Knowledge and experience with techniques, tools and practices pertaining to securing the SDLC (Software Development Lifecycle).Experience with software development, programing, scripting.Experience with OWASP ZAP or Burp ProxyExperience with static application security testing toolsKnowledge and experience with implementing and managing web application firewallsHigh level understanding of securing Cloud Platforms, AWS and GCP, cloud architectureAlthough the position is in application security domain, a broad interest/experience across the whole security domain would be an advantageRequirements:BS in Information Systems preferred but appropriate experience is acceptable3+ years of experience in application security, software development, or IT related fieldMust have the ability to identify, analyze and solve security risks pragmaticallyFamiliarity with web application architecture, APIs, and cloud environmentsExperience with security standards and frameworks, such as OWASP, NIST, or CISPractical understanding of common application security vulnerabilitiesExcellent problem-solving and analytical skills with demonstrated ability to investigate and solve complex problemsExcellent communication skills are needed with demonstrated ability to work with multiple organizational functions and levelsSalary Range: $120,000 - $135,000RxSense believes that a diverse workforce is a more talented and productive workforce. As such, we are an Equal Opportunity and Affirmative Action employer. Our recruitment process is free from discriminatory hiring practices and all qualified applicants are considered for employment without regard to race, color, religion, sex, gender, sexual orientation, gender identity, ancestry, age, or national origin. Neither will qualified applicants be discriminated against on the basis of disability or protected veteran status. We believe in the strength of the collaboration, creativity and sense of community a diverse workforce brings.Accepted file types: pdf, doc, docx, txt, rtfAccepted file types: pdf, doc, docx, txt, rtfLinkedIn ProfileAre you legally authorized to work in the United States? *
Select...Will you now, or in the future, require sponsorship for employment Visa status (e.g. H-1B Visa Status? *
Select...Are you able to work onsite at either our Princeton, NJ, Boston, MA or PBG, FL offices 3 days per week? *
Select...EducationSchool *
Select...Degree *
Select...Select...Select...Start date year *End date month
Select...End date year *Voluntary Self-Identification
For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.As set forth in RxSense’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.Select...Voluntary Self-Identification of Disability
Form CC-305Page 1 of 1OMB Control Number 1250-0005Expires 04/30/2026Voluntary Self-Identification of Disability
Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026Why are you being asked to complete this form?
We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp .How do you know if you have a disability?
A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability.
Disabilities include, but are not limited to:Alcohol or other substance use disorder (not currently using drugs illegally)Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDSBlind or low visionCancer (past or present)Cardiovascular or heart diseaseCeliac diseaseCerebral palsyDeaf or serious difficulty hearingDiabetesDisfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disordersEpilepsy or other seizure disorderGastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndromeIntellectual or developmental disabilityMental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSDMissing limbs or partially missing limbsMobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supportsNervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilitiesPartial or complete paralysis (any cause)Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysemaShort stature (dwarfism)Traumatic brain injury
Disability Status
Select...
PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.
#J-18808-Ljbffr