Senior Security Engineer
| Company | Abridge |
|---|---|
| Location | San Francisco, CA, USA, New York, NY, USA |
| Salary | $185000 – $265000 |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior, Expert or higher |
Requirements
- 7+ years of software engineering experience, with several years of experience focusing on cybersecurity for cloud-native applications.
- Experienced working in a regulated environment.
- Familiarity with compliance frameworks such as SOC2 and HITRUST.
- Up-to-date on industry best-practices and trends.
Responsibilities
- Help define and implement secure coding standards, and work with engineers and engineering management to advocate for and implement these standards.
- Perform architectural and code reviews, with a focus on secure development practices.
- Perform threat modeling and risk assessment, both standalone and as part of our larger security and compliance program.
- Identify and remediate security vulnerabilities through manual and automated testing.
- Incorporate automated tools such as SAST / DAST / RASP / SCA into the development process, such as by augmenting CI + CD pipelines.
- Lead triage of incoming issues, and work with engineering teams to remediate known or suspected security vulnerabilities.
- Train and mentor engineers on secure development practices.
- Research commercial and open-source solutions, and make build vs buy recommendations to bring new capabilities into the technology organization.
- Build deep user empathy and maintain a user-centric mindset.
- Communicate regularly and effectively within and on behalf of our cross-functional product delivery teams.
Preferred Qualifications
- Passionate about software security, and experienced at multiple levels of the stack.
- Excited about being hands-on in a fast-moving, productive, and supportive environment.
- Willing to pitch in wherever needed.