Senior Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Take charge of vulnerability management, dependency security, threat modeling, security code reviews, and addressing findings from penetration tests.

• Enhance our AWS security framework, identity and access management (IAM, SSO, SAML, SCIM), endpoint security, threat detection, and incident response capabilities.

• Create and implement security measures for AI-driven products and workflows, including safeguards against prompt injection, data leakage, and other AI-related threats.

• Develop technical safeguards that facilitate the secure handling of PHI and sensitive data within LLM-powered systems.

• Establish and uphold the technical controls, documentation, and security practices necessary to comply with HIPAA, SOC 2, and other compliance standards.

• Utilize AI-driven tools, automation, and contemporary security platforms to amplify security impact organization-wide.

• Construct self-service security solutions, paved roads, and runbooks that empower engineers to work efficiently while upholding rigorous security protocols.

• Collaborate closely with Engineering and IT to provide practical, scalable security solutions that promote product speed and business expansion.

• Act as a force multiplier for the Pod-Infra team.

⛳️ Requirements

• Minimum of 2 years of experience in Security Engineering, with significant expertise in either application security or infrastructure/cloud security, and functional proficiency in the other area.

• Strong knowledge of AWS and cloud security, including IAM, identity management (SSO, SAML, SCIM), network security, secrets management, and cloud-native security tools.

• Practical software engineering experience with the ability to read, review, and deploy production code in Ruby and/or TypeScript; Python experience is a plus.

• Experience in implementing technical controls in regulated environments like HIPAA, SOC 2, HITRUST, PCI, or similar compliance frameworks.

• Proven expertise with AI and LLM-driven tools, including hands-on experience integrating them into daily engineering practices.

• Solid understanding of AI security concepts, such as prompt injection, AI agent guardrails, data governance, PHI management, and AI vendor risk.

• A builder mentality with a strong inclination towards execution, ownership, and effective problem-solving.

• Ownership mindset – responsible for achieving results that align with the mission, business goals, and customer satisfaction.

• Excellent collaboration skills with stakeholders from engineering, product, and legal teams.

• Strong motivation to thrive in a fast-paced, complex early-stage startup environment with minimal decision-making barriers (no “red tape”).

• A passion for assisting individuals facing complex chronic needs such as homelessness, severe mental health issues, and substance use disorders.

🏝️ Benefits

• Competitive salary: $170,000 - $190,000 (based on experience).

• Equity compensation package.

• Flexible vacation policy – take the time you need to recharge.

• Comprehensive medical, dental, and vision insurance.

• 401(k) plan.

• Fully company-sponsored short and long-term disability and life insurance.

• Subsidized backup childcare and caregiver support through Wellthy.

• Work entirely from the comfort of your own home.

• Monthly $100 stipend for work-from-home expenses.

• We provide the necessary equipment for the role.

• Opportunities for rapid career advancement with ample room for personal growth!