• Directly design and work with the team to deploy security tools across our network, including IAM, endpoint protection, and encryption protocols. • Act and execute during security events. • Oversee the end-to-end security operations, including threat detection, vulnerability management, and leading the response to any potential security breaches. • Lead technical due diligence for all acquired clinics, identifying security risks and standardizing their systems to meet the Ivy Rehab security ecosystem. • Partner directly with teams to integrate security into their workflows without creating bottlenecks. • Manage a portfolio of security initiatives (e.g., IAM rollouts, EMR security hardening, network encryption), ensuring they are delivered on time and within budget. • Manage relationships with strategic security vendors (SOC, MSSP, Cyber Insurance) to ensure all infrastructure and tools are delivering maximum protection. • Lead and mentor a small, agile team of IT professionals by example.

• Protect people, enhance lives, and preserve the planet • Serve consumer and business customers across multiple industries • Maintain a legacy of excellence

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As our Senior Application Security Engineer, you will be the primary owner and driver of our application security program. You’ll work hands‑on with engineering teams to embed secure development practices, improve tooling and automation, and guide security considerations for new features, architectures, and services. This is a high‑impact role where you’ll shape the future of AppSec at a company that values security as a core part of product quality. What You’ll Do - Application Security Ownership - Lead and evolve the company’s application security strategy, roadmap, and day‑to‑day operations. - Serve as the primary AppSec partner for numerous dev teams working on Ruby on Rails web apps, React Native mobile apps, and various other projects including Python and Go. - Provide security guidance during design, development, and code review for new features and projects. - Drive adoption of secure coding practices and threat‑modeling across engineering teams. - Tooling & Automation - Manage and optimize existing AppSec tooling, including: - GitHub Advanced Security (SAST, SCA, Secret Scanning) - Invicti (DAST) - Hadrian (ASM) - AppDome (mobile application security) - Cloudflare WAF - Improve automation and integration of security tools into CI/CD pipelines. - Identify and implement additional tools or processes to strengthen the security posture. - Secure SDLC & Developer Enablement - Build and maintain secure development standards, playbooks, and training materials. - Partner with engineering teams during sprint planning and feature design to proactively address risks. - Conduct security reviews, code assessments, and vulnerability triage with development teams. - Cloud & DevOps Collaboration - Work with DevOps to ensure secure AWS infrastructure deployments and configurations. - Contribute to hardening efforts across ECS, IAM, networking, and supporting cloud services. - Assist in designing and maintaining secure CI/CD workflows. - Incident & Vulnerability Management - Lead or support investigation and remediation of application‑level vulnerabilities. - Monitor, prioritize, and track findings from SAST/DAST/ASM tools. - Collaborate with engineering to ensure timely and effective remediation. Qualifications - 3–7+ years of experience in Application Security, Product Security, or related engineering roles. - Strong understanding of secure coding practices, common vulnerabilities (OWASP Top 10), and modern SDLC. - Experience working with cloud‑native applications, ideally in AWS. - Understanding of SSL certificates & cryptographic key management. - Hands‑on experience with SAST, DAST, WAFs, and/or mobile application security tools. - Ability to partner effectively with developers and influence secure design decisions. - Familiarity with GitHub‑based workflows and CI/CD pipelines. Requirements - Development experience with Ruby on Rails or similar dynamic languages. - Knowledge of AWS ECS/EKS, container security, secrets management and infrastructure‑as‑code (CloudFormation, Terraform). - Experience building or maturing an AppSec program from early stages. - SOAR Automation & Scripting experience. - Experience working in a PCI compliant environment working with annual reporting needs. Benefits - High ownership role where you define the AppSec roadmap. - Modern engineering environment with strong leadership support for security. - Opportunity to influence architecture, tooling, and culture across the entire development organization. - Competitive compensation, benefits, and growth opportunities. - Considerable employer contributions for health, dental, and vision programs. - Generous PTO, paid holidays, and paid parental leave. - 401(k) matching program. - Merit advancement opportunities. - Career development & training. - Team spirit and culture that cultivates an environment of community, connection, and belonging.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description GEM Technologies is seeking an experienced Palo Alto Networks Subject Matter Expert to assist our engineering team with complex firewall and security architecture challenges. This role is not a full-time position. We are looking for a trusted escalation resource who can provide expert guidance when advanced issues arise and help mentor our engineers so they can build internal expertise. - Assist senior engineers with complex Palo Alto firewall troubleshooting - Review firewall configurations and recommend best practices - Help design and validate advanced security architectures - Provide guidance on Panorama, VPNs, routing, NAT, and security policies - Mentor our engineers so they can independently manage similar issues in the future Typical Engagement: - On-demand consultation (remote) - Estimated 5–15 hours per month - Occasional scheduled working sessions with our engineering team Qualifications - Must be located in the United States - 7+ years network security experience - Strong expertise with Palo Alto Networks firewalls - Experience with Panorama and large rule bases - Strong troubleshooting and architecture skills Requirements - PCNSE certification (preferred) - Experience working with MSPs or multiple client environments (preferred) - Ability to explain solutions and mentor engineers (preferred) Benefits - Compensation: $100–$250 per hour depending on experience and certifications - Final rate will depend on experience, certifications, and scope of engagement