Senior Security Engineer

About The Position

Requirements

• 5+ years of experience in security engineering, application security or a closely related software engineering role with a strong secure coding background.
• Fluency in common vulnerability classes (OWASP Top 10 and beyond), authentication and cryptography fundamentals.
• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.
• Hands-on AWS security experience across IAM, VPC, GuardDuty, Security Hub, CloudTrail and KMS.
• Comfort building and maintaining infrastructure-as-code (Terraform or CDK).
• Proven information security compliance experience—writing controls, building evidence pipelines and supporting audits.
• Familiarity with ISO 27001, ISO 13485, HIPAA, SOC 2 or HITRUST.
• Experience securing cloud and SaaS vendor environments.
• Scripting fluency in Python or a similar language for automation.
• Strong communication and a track record of effective collaboration across engineering and cross-functional teams in fast-moving startup environments.

Nice To Haves

• Medical device or other regulated industry experience.
• Experience with SAST/DAST/SCA tooling.
• Certifications such as CISSP, OSCP, or AWS Security Specialty.

Responsibilities

• Help shape how information security is embedded into the development and delivery of AI-powered cardiovascular imaging software.
• Work across application security, cloud infrastructure and compliance.
• Contribute to secure SDLC practices, threat modeling, code and design reviews, CI/CD security testing, AWS hardening and audit readiness.
• Translate complex security and regulatory requirements into practical controls that support both patient safety and engineering velocity.
• Perform vendor risk assessments and secure configuration for cloud and SaaS vendor environments.
• Automate security tasks using scripting languages like Python.

Benefits

• Flexible hybrid environment
• Equal opportunity employer
• Value diversity