Senior Security Developer

About the Company: 

iScribeHealth is an AI-powered virtual scribe solution that helps healthcare providers efficiently document patient care and sync data with Electronic Health Records (EHR) systems. Founded in 2015, we are dedicated to reducing provider burnout and improving healthcare efficiency through cutting- edge AI and automation. Our mobile platform streamlines workflows, enabling doctors to focus on patient care while ensuring seamless EHR integration. At iScribeHealth, we empower our employees to make a meaningful impact—both for themselves and the patients we serve.

We are seeking a Senior Security Developer with preferred expertise in .NET framework, C#, and cloud- based architectures to lead our SOC 2 & HIPAA compliance initiatives. This role is a combination of hands-on software development  and security/compliance leadership. You will work closely with engineering, DevOps, security, and compliance teams to ensure our  platform meets the highest standards of security, privacy, and reliability.

Essential Duties and Responsibilities:

Full-Stack Development &Architecture:

• Design, develop, and maintain secure, scalable, and high-performance applications using .NET Framework and C#.
• Work across the full stack, including backend APIs, cloud infrastructure, and front-end components.
• Optimize EHR integration workflows and API performance.
• Implement best practices for secure coding, encryption, and data protection.

SOC 2 &HIPAA Compliance Leadership

• Lead the technical implementation of SOC 2 Type 1 & Type 2 audits and HIPAA security controls.
• Define and enforce secure coding standards and data access policies.
• Work with DevOps and security teams to implement logging, monitoring, and access control.
• Conduct internal security audits and risk assessments to ensure ongoing compliance.
• Ensure third-party vendors and integrations align with compliance and security requirements.

DevOps, Cloud Security & Infrastructure

• Collaborate with cloud engineers to maintain a secure backend.
• Implement/upgrade/maintain IAM (Identity & Access Management), encryption, logging, and monitoring.
• Ensure compliance with data retention, backup policies, and disaster recovery plans.
• Assist in incident response planning for security threats and breaches.

Qualifications:

• 5+ years of development experience, specializing in .NET Framework and C#.
• Strong backend architecture skills, including API design, database security and stability, authentication, and in general security best practices.
• Experience leading SOC 2 Type 1 & Type 2 and HIPAA compliance implementations.
• Knowledge of cloud security principles, including AWS/Azure IAM, logging, and encryption.
• Hands-on experience with secure coding, encryption techniques, and access control.
• Familiarity with DevOps & CI/CD pipelines, containerization, and infrastructure as code.
• Excellent communication skills to work cross-functionally with security, compliance, and engineering teams.

Preferred Skills:

• Experience with healthcare IT, EHR integrations, and HL7/FHIR.
• Strong understanding of SOC 2 trust service criteria (TSC) and security controls.
• Experience with Penetration Testing, Threat Modeling, and Incident Response Planning.
• Development experience

Must align with iScribeHealth’s Core Values: Cares Deeply, Resourceful, Accountable, Customer- obsessed and Knowledgeable

Why Join Us?

• We welcome new ideas and allow you to make an immediate impact on the team.
• Flex PTO for any reason, including sick days (no specified limits), flexible work schedule.
• Personal laptop.
• Health and wellness package.
• Remote work.

iScribeHealth is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.