Senior Security Operations Engineer

About Velsera

Medicine moves too slow. At Velsera, we are changing that.

Velsera was formed in 2023 through the shared vision of Seven Bridges and Pierian, with a mission to accelerate the discovery, development, and delivery of life-changing insights.

Velsera provides software and professional services for:

• AI-powered multimodal data harmonization and analytics for drug discovery and development
• IVD development, validation, and regulatory approval
• Clinical NGS interpretation, reporting, and adoption

With our headquarters in Boston, MA, we are growing and expanding our teams located in different countries!

What will you do?

• Conduct security assessments of our product and cloud infrastructure

• Select, implement and configure security tools and technologies in a cloud environment, e.g. SIEM, EDR, HIDS,

Vulnerability Scanners, Container Security, etc.

• Identify the need and contribute to the development of critical alerts for security monitoring

• Monitor security events within our infrastructure

• Lead security threats assessments, incident investigations, and escalations

• Collaborate with our Operations and Engineering teams to constantly improve security of our system and help us scale highly dynamic infrastructure running thousands of servers in parallel

• Track, review, and evaluate new vulnerabilities across the technology stack

• Keep up to date with latest security threats and vulnerabilities in the industry

• Monitor security controls and processes

Requirements

What do you bring to the table?

• 3-5 years of experience in Security Engineering, Systems Administration, DevOps or related positions

• Deep knowledge and understanding of:

1. Security principles, methodologies, and best practices
2. Command line interface of multiple operating systems – Linux, macOS, Windows, etc.
3. Linux/Unix system administration and internals
4. Cloud Providers services – AWS, GCP, Azure
5. Vulnerability management, container security and HIDS/HIPS/SIEM tools
6. Testing and exploitability of web application vulnerabilities - e.g. SQL injection, CSFR, etc (OWASP Top 10)
7. Threat intelligence and indicators of compromise (IOC’s)

• Proficiency with at least one scripting language and orchestration technology (Bash, Python, PowerShell, Ansible, Terraform, Kubernetes, etc.)

• Organized, detail-oriented, trustworthy, willing to speak up, proactive, persuasive

• Excellent communication and presentation skills

• Proficiency in spoken and written English

Benefits

• Flexible Work & Time Off - Embrace hybrid work models and enjoy the freedom of unlimited paid time off to support work-life balance.
• Health & Well-being - Access comprehensive group medical and life insurance coverage, along with a 24/7 Employee Assistance Program (EAP) for mental health and wellness support.
• Growth & Learning - Fuel your professional journey with continuous learning and development programs designed to help you upskill and grow.