All openings

Software Engineer, Application Security

Chicago, IL, San Francisco, CA, Washington, D.C.

Rally is all about putting health in the hands of the individual. It's our mission, and it drives everything we do, which is to empower people with easy-to-use online and mobile tools that help them take charge of their health and health care, from improving their diet and fitness to selecting health benefits and choosing the right doctor at the right price for their needs

We’re seeking a backend developer interested or experienced in security engineering to join our growing Application Security team. Our team develops and maintains multiple core security libraries and frameworks. We're looking for people to embed with various teams across the company to assist with integrating with these core systems. You will also be an advocate for security across our engineering team.

One of the key elements to succeed is a knack for being able to jump in and understand complicated codebases. You will also need to be able to ramp up quickly in various development patterns and processes. This role will have a high level of autonomy, and a large impact on our rapidly growing security organization. We will pair you with a product security advisor to help you guide the overall security posture of the company.

The job:

  • You are embedded with a team to spearhead integration efforts
  • You will be crafting and writing internal tooling
  • You'll be applying our internal encryption and secret management libraries to live products and services
  • You will always grow the understanding of and champion secure coding practices across disciplines

Your experience:

  • 4+ years of engineering experience using a compiled language in a web application environment
  • You have familiarity with a microservice architecture and security issues it presents
  • You should have a deep understanding of computer science fundamentals, especially around security
  • Familiarity with the OWASP top 10
  • Expert-level communications skills with technical as well as non-technical staff

Bonus points:

  • You've written major software projects in Scala or another functional programming language
  • You have experience with software security in a non-academic setting
  • You are excellent with AWS (configuring, deploying, managing, monitoring) or another cloud computing platform
  • You familiar with HIPAA and how it applies to information security
  • You tied in to your local application security community

Rally Health is committed to ensuring that its workforce reflects America’s diverse population. Rally Health knows that such diversity will enrich us with the talent, energy, perspective and inspiration it needs to achieve its mission. Rally Health believes in a policy of equal employment and opportunity for all people based on merit and commitment to the principles of diversity. It is our policy to recruit, hire, train, and promote individuals in all job titles, and administer all programs, without regard to race, color, religion, national origin or ancestry, citizenship, sex, age, marital status, pregnancy, childbirth or related medical conditions, personal appearance, sexual orientation, gender identity or expression, family responsibilities, genetic information, disability, matriculation, political affiliation, veteran status, union affiliation, or any other category protected by applicable federal, state or local laws.

Individuals with disabilities and veterans are encouraged to apply. Applicants who require an accommodation related to the application and/or review process should notify

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.