Senior Security Engineer

• Design, build, and implement Just-in-Time (JIT) access controls and Privileged Access Management (PAM) workflows.
• Conduct platform permission reviews and implement a least-privilege access model.
• Ensure 100% of production access requests and approvals are captured in audit logs.
• Lead the implementation, tuning, and operation of security tools in the CI/CD pipeline.
• Develop custom SAST rules for high-risk flaw patterns detection.
• Deploy IDE plugins and automated PR checks with engineering collaboration.
• Conduct manual security code reviews for high-risk features.
• Design, build, and maintain automation for vulnerability management.
• Engineer automated workflows for vulnerability triage and management.
• Develop and maintain security automation scripts, tools, and services.
• Build high-fidelity SIEM correlation rules and automated response playbooks with SecOps.
• Implement and maintain data encryption strategies for PHI in compliance with HIPAA.
• Manage cryptographic key lifecycle and administer key management systems.
• Design secure cloud network architectures and network segmentation strategies.
• Lead the remediation of cloud security findings.
• Implement and manage a centralized security control plane.
• Design and implement Data Loss Prevention (DLP) policies.
• Enforce security configurations and hardening standards for operating systems.
• Manage and tune endpoint security solutions including EDR/XDR.
• Lead threat modeling sessions and conduct secure design reviews.
• Act as an embedded security partner for product and platform teams.
• Develop and manage security programs for emerging risks.

• 6+ years experience in security engineering in application and cloud security.
• Proficiency in scripting or programming languages like Python or Go.
• Experience in core areas: Application & SDLC Security, Security Automation, Cloud Security, Identity & Encryption, Endpoint & Data Security.
• Experience securing containerized environments (Docker, Kubernetes).
• Experience in healthcare, fintech, or highly regulated industries.
• Excellent communication skills for explaining complex security risks.

Pay range: $128K - $235K

• Remote-first culture
• 401(k) savings plan through Fidelity
• Comprehensive medical, vision, and dental coverage
• Paid Time Off and Discretionary Time Off
• 12 weeks of 100% Paid Parental leave
• Family Building & Compassionate Leave
• Work-From-Home reimbursement