Inovalon
Healthcare
StaffSoftwareEngineer
Neural analysis suggests this role is
optimal for Staff candidates.
“Staff Software Engineer at Inovalon. Skills: Application security, SaaS security, Cloud security. Act as security engineering subject matter expert. Establish secure coding standards”
Industry & Context.
Root-cause analysis
What They're Looking For.
Must Have
6+ years Software Engineer experience, Application security experience, Secure cloud-native SaaS applications, Secure coding standards experience, Authentication and authorization failures understanding, Secure session management understanding, Injection and input validation risks understanding, Encryption, key management, data protection understanding, Agile development environments experience, HIPAA-regulated systems support experience, PCI DSS-scoped applications experience, Payment data flows experience, Compliance requirements to engineering controls understanding
Nice to Have
CSSLP certification, Cloud security certifications, Application-security certifications
What You'll Do.
Act as security engineering subject matter expert
Establish secure coding standards
Evolve secure coding patterns
Evolve secure coding best practices
Lead secure design reviews
Participate in secure design reviews
Participate in code reviews
Identify security flaws
Identify architectural risks
Identify improper patterns
Collaborate to remediate vulnerabilities
Ensure security considerations are balanced
Identify trust boundaries
Identify attack surfaces
Define security risks
Manage security risks
Define residual risks
Manage residual risks
Translate threats into requirements
Translate obligations into requirements
Ensure security requirements incorporated into architecture
Ensure security requirements incorporated into backlogs
Ensure security requirements incorporated into acceptance criteria
Ensure security requirements incorporated into definitions of done
Define security controls
Validate security controls
Provide security engineering leadership
Partner with Compliance teams
Partner with Risk teams
Partner with Audit teams
Ensure engineering designs support obligations
Ensure implementations support obligations
Address compliance requirements through engineering controls
Address compliance requirements through testable validation
Partner with Quality Engineering
Partner with DevSecOps
Validate security controls using secure code analysis
Validate security controls using threat-driven tests
Validate security controls using security regression tests
Verify mitigations implemented
Verify mitigations are effective
Support penetration testing
Support security assessments
Support remediation efforts
Resolve findings sustainably
Influence security posture across teams
Coach engineers on secure design patterns
Coach engineers on common security pitfalls
Serve as technical contributor during incident response
Serve as technical contributor during root-cause analysis
Serve as technical contributor during security retrospectives
How You'll Work.
Team & Collaboration
Engineering teams; Architecture teams; Quality Engineering teams; DevSecOps teams; Compliance teams; Risk teams; Audit teams
Process & Methodology
Agile development
Full Job Description
Inovalon was founded in 1998 on the belief that technology, and data specifically, would empower the transformation of the entire healthcare ecosystem for the better, improving both outcomes and economics. At Inovalon, we believe that when our customers are successful in their missions, healthcare improves. Therefore, we focus on empowering them with data-driven solutions. And the momentum is building. Together, as ONE Inovalon, we are a united force delivering solutions that address healthcare’s greatest needs. Through our mission-based culture of inclusion and innovation, our organization brings value not just to our customers, but to the millions of patients and members they serve. Role Overview We are seeking a Staff Software Engineer with a strong focus on application security to serve as a technical leader responsible for embedding security across the design, development, and operation of our cloud‑native SaaS platforms. This role plays a critical part in establishing secure coding standards, and ensuring that security risks, requirements, and controls are effectively implemented, tested, and validated throughout the product lifecycle. The ideal candidate has hands‑on experience securing SaaS applications operating under HIPAA and PCI compliance requirements, and acts as a trusted partner to Engineering, Architecture, Quality Engineering, DevSecOps, and Compliance teams. This is not a policy‑only or audit‑only role—the Staff Engineer is expected to lead through technical depth, influence, and hands‑on contribution. Key Responsibilities Secure Software Engineering & Technical Leadership Act as a security engineering subject matter expert across multiple teams or services. Establish, document, and evolve secure coding standards, patterns, and best practices for SaaS applications. Lead and participate in secure design and code reviews, identifying security flaws, architectural risks, and improper patterns early. Collaborate with engineers to remediate vulnerabili
Applying for this Staff Software Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Inovalon?
Real rants from real employees. Read before you apply.