Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy, and consent to receive emails from Rise
Jobs / Job page
Security & Risk Engineer || Remote, US-based image - Rise Careers
Job details

Security & Risk Engineer || Remote, US-based

About Buoy Software


Our mission is to deliver the best experience possible to as many donors of blood products (such as plasma) as possible, in as many communities as possible. We use our understanding of blood product donation and the industry’s regulations and pair them with our extensive consumer product experience to enrich the lives of our members and improve health outcomes for patients everywhere. 


In an industry that hasn’t seen innovation in more than two decades, Buoy’s software streamlines the donation process allowing our business to promote loyalty while improving efficiency in a donation center. In turn, the increase in blood product donations improves a supply level that is at an all time low, and allows for blood-product derived biotherapies to continue to evolve, improve, and save lives for those who face life-threatening conditions (i.e. immune deficiencies and blood disorders). Without an increase in blood product donations, we are facing a worldwide health crisis that ultimately results in rationing of care without the proper resources. Buoy Software is excited to be playing more of a role in improving the state of blood products and blood product donations.


We’re working alongside Join Parachute ([www.joinparachute.com/](http://www.joinparachute.com/)) in the opening of small market donation centers across the country that will create local donation center careers, opportunities to donate blood products, and provide financial compensation for those donations that will have a positive economic impact in those communities. 


The need for blood products is growing rapidly. We want to close the gap in blood product supply and demand by empowering organizations with the right tools. Buoy is the intuitive, data-driven mobile application for donors.


About The Role


We're looking for a Security and Risk Engineer to join our team. You should be someone who is comfortable and experienced in risk management and code review. This role will work closely with specific product engineering pods, owning all security controls and documentation for assigned pods. You should have an eye for continuous improvement, risk and vulnerability management, and security compliance.


What you’ll do:
  • Oversee vulnerability and security risk management including, but not limited to, vulnerability and risk identification/assessment, crafting mitigation proposals, tracking mitigation status, and testing and validating mitigation methods
  • Oversee security compliance activities including, but not limited to, hazard analyses, threat modeling, root cause analysis, and creating, updating, and maintaining policies and other relevant documentation
  • Manage continuous monitoring and auditing processes to detect and respond to security incidents
  • Perform code assessments to determine any impacts for Buoy’s applications
  • Responsible for defining, implementing, evaluating, and maintaining the effectiveness of security and risk controls
  • Identify current and emerging issues including security trends, vulnerabilities, and threats
  • Collaborate with team members and stakeholders on projects and audits
  • Design security controls that increase operational efficiency and reduces the likelihood of control failure
  • Perform third party security assessments
  • Educate and train staff on security best practices


Who you are:
  • You have experience with threat modeling analysis such as STRIDE and Attack Tree methodologies.
  • You have experience with software as a service.
  • You are a self starter. You enjoy working in an environment where you have a lot of autonomy. You are not one to wait around to be given work, but are always looking for ways in which you can provide support for your colleagues.
  • You can adapt to change quickly and thrive in an environment where every day is different / you own a variety of tasks.
  • You are a team player. Everyone contributes within the Buoy team, and you want to help the team get the job done when needed, regardless of initial ownership.
  • You are professional in your collaboration and communication methods. You can represent Buoy and our values both internally and externally (with vendors / partners) as needed.


In the first 30 days, you will…
  • Be introduced to the team - we’ll help you start to get to know your colleagues, point of contacts for various scenarios, understanding dynamics within the broader org.
  • Learn how Buoy Software operates internally - we’ll help you get accustomed to Buoy’s process, engineering terminology, and other cultural aspects of working here.
  • Go through product demos to start to understand Buoy Software and how it works for both donors experience and donor processing.
  • Begin meeting with and getting to know your direct manager who will share various projects and goals for this role to provide guidance as you settle into the position.
  • Review existing security documentation and determine gaps or improvements.
  • Hit the ground running!


In the first 60 days, you will…
  • Understand goals for your respective pods over the next 6 - 12 months.
  • Begin implementing solutions for gaps identified and performing all duties related to continuous management of security for your pods.
  • Become more familiar with workflows and processes.
  • Become more autonomous as you work with your pods and other stakeholders.
  • Start to define timelines for various projects with your manager to help prioritize your focus and align them with the goals for this role.
  • Begin to suggest changes and improvements to the security program and/or internal processes.


In the first 90 days, you will…
  • Meet with stakeholders across the broader Buoy Software organization.
  • Become more familiar with the other departments across Buoy Software (including leadership, support, customer success, marketing, and people ops).


$120,000 - $140,000 a year

Where you'll be

We are fully remote. We deeply believe in distributed teams at Buoy. We build projects around motivated individuals. We give our team the environment, support and trust they need to get the job done.


We are only considering candidates currently based in the United States at this time.


---

Employment at Buoy Software is contingent upon achievement of satisfactory results on your background check and reference check and your ability to provide proof of your identity and eligibility to accept employment in the United States.

Average salary estimate

$130000 / YEARLY (est.)
min
max
$120000K
$140000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

Similar Jobs
Photo of the Rise User
Posted 9 days ago
Customer-Centric
Rapid Growth
Diversity of Opinions
Reward & Recognition
Friends Outside of Work
Inclusive & Diverse
Empathetic
Feedback Forward
Work/Life Harmony
Casual Dress Code
Startup Mindset
Collaboration over Competition
Fast-Paced
Growth & Learning
Open Door Policy
Rise from Within
Maternity Leave
Paternity Leave
Flex-Friendly
Family Coverage (Insurance)
Medical Insurance
Dental Insurance
Vision Insurance
Mental Health Resources
Life insurance
Disability Insurance
Health Savings Account (HSA)
Flexible Spending Account (FSA)
401K Matching
Paid Holidays
Paid Sick Days
Paid Time-Off

As a Senior Technical Solutions Operations Engineer at Datadog, you'll lead the optimization of a global Zendesk environment while enhancing support processes for a technical customer base.

Photo of the Rise User

Join GR8 Tech as a Middle DevOps Engineer and help build scalable infrastructure for modern iGaming applications.

Photo of the Rise User
Posted 13 days ago

Join AnaVation as a Network Security Engineer (SME) and play a pivotal role in safeguarding vital federal infrastructure through innovative security practices.

Posted 8 days ago

Join Northrop Grumman as a RHEL Principal/Sr. Principal Systems Integration Engineer in Colorado Springs, supporting crucial defense systems.

Photo of the Rise User
Posted 3 days ago

As an IT Infrastructure Engineer at Sierra, you will play a pivotal role in enhancing our internal systems amidst rapid growth in AI technology.

Fortune Brands Hybrid 520 Lake Cook Road, Deerfield, ILLINOIS
Posted 6 days ago

Join Fortune Brands Innovations as a Lead Workday Analyst to drive technology initiatives supporting HR functions.

Endeavour Group Remote 26 Waterloo St, Surry Hills NSW 2010, Australia
Posted 10 days ago

Join Endeavour Group as a Senior Devops Engineer and play a critical role in transforming our technology landscape.

Photo of the Rise User

Join Visa’s Cybersecurity team as a Senior Consultant to manage regulatory audits and enhance information security controls.

Photo of the Rise User
Cherokee Federal Hybrid Tulsa, Oklahoma, United States
Posted 12 days ago

Lead the cybersecurity strategy and governance as the Chief Information Security Officer at Cherokee Federal to protect sensitive information and drive organizational resilience.

Photo of the Rise User
Clearbrook Agency Hybrid Arlington Heights, IL
Posted 10 days ago

In the role of Network Administrator, Clearbrook seeks a tech-savvy individual to drive network stability and employee support.

Photo of the Rise User
Target Remote 7000 Target Pkwy N,NCD-0375 Brooklyn Park,MN 55445
Posted 3 days ago
Inclusive & Diverse
Rise from Within
Mission Driven
Diversity of Opinions
Work/Life Harmony

As Director of Technology - Product Security at Target, you will lead teams to shape the future of application security for a major retail platform.

Photo of the Rise User
Boeing Hybrid USA - Everett, WA
Posted 14 days ago

Join Boeing as a Senior Network Designer to lead the design and maintenance of critical network infrastructure in a global environment.

Photo of the Rise User
Posted 6 days ago

Join Focused Energy as a Senior IT Systems Engineer and contribute to revolutionary advancements in clean energy solutions.

buoy is the industry’s answer to unlocking more plasma supply.

8 jobs
MATCH
Calculating your matching score...
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
EMPLOYMENT TYPE
Full-time, remote
DATE POSTED
January 12, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
LATEST ACTIVITY
Photo of the Rise User
98 people applied to Cybersecurity Intern at Dewberry
Photo of the Rise User
90 people applied to Jr SOC Analyst at IBM
Photo of the Rise User
Someone from OH, Columbus just viewed Resident Assistant (RA) at Datadog
Photo of the Rise User
Someone from OH, Cleveland just viewed Bellman and Doorman at Marriott International
Photo of the Rise User
Someone from OH, Cincinnati just viewed Finance Intern at Roche
Photo of the Rise User
Someone from OH, Cincinnati just viewed Personal Shopper - Sam's at Walmart
F
Someone from OH, Cincinnati just viewed CART - Captionist at Focus Interpreting
P
Someone from OH, Brecksville just viewed Verification Specialist at Planned Parenthood of Illinois
Photo of the Rise User
Someone from OH, Sheffield Lake just viewed Busser/Server Assistant at Chili's Grill and Bar
Photo of the Rise User
Someone from OH, Cincinnati just viewed Furniture Sales Representative at Furniture Fair
Photo of the Rise User
Someone from OH, Dayton just viewed Data Engineer | NDA at GT
Photo of the Rise User
Someone from OH, Dayton just viewed Data Engineer at Koddi
Photo of the Rise User
Someone from OH, Dayton just viewed Data Engineer at Launchpad Technologies
Photo of the Rise User
Someone from OH, Columbus just viewed Accounts Receivable Specialist at Brixio