Head of Security Engineering

Science Corporation•Alameda, CA

46d

About The Position

Science is a clinical stage, vertically integrated technology company focused on solving some of neuroscience's hardest questions and most serious unmet medical needs. We work to restore quality of life to those with debilitating conditions for which there are no treatment options, creating devices aimed at restoring vision, cognition, and mobility to patients who have lost it. To support progress across our industry, we provide state-of-the-art components and vertically integrated infrastructure for others to build on via Science Foundry. We are looking for a Head of Security Engineering who will build the company's technical security function, focusing on the design, implementation, and operation of security infrastructure, applications, documentation, and research systems. This hands-on role bridges IT, product development, and compliance, developing technical safeguards that protect research data, intellectual property, and connected lab environments.

Requirements

7+ years of experience in security engineering, infrastructure security, or DevSecOps.
Strong knowledge of Linux administration, network security, and cloud platforms (AWS, Azure, or GCP).
Experience with endpoint management across mixed OS environments (Windows, MacOS, Linux).
Familiarity with security and privacy requirements for healthcare or regulated data.
Hands-on capability to script, automate, and troubleshoot security systems.
Track record of building security programs from the ground up or during high-growth phases.
Experience managing security incidents from detection through resolution, including coordination with legal, compliance, and external parties (law enforcement, vendors, regulators).

Nice To Haves

Experience securing research, laboratory, or healthcare environments with specialized equipment and regulatory requirements (FDA, HIPAA, or equivalent).
Experience with medical device security or FDA regulatory compliance.
Security certifications (CISSP, OSCP, CEH, or cloud security certifications).
Background in threat intelligence or security research.

Responsibilities

Design and implement security controls across hybrid infrastructure (on-prem servers and services, IoT/lab systems, cloud workloads, and SaaS).
Leverage integrations and automation to move the company closer to adherence with zero-trust principles.
Enhance forensics and detections within the corporate infrastructure, including within our cloud presence and custom applications.
Automate vulnerability management and patch processes.
Communicate to executive leadership and principal stakeholders about ongoing changes.
Collaborate with key principals to account for unusual requirements of scientific equipment.
Establish security metrics and KPIs to track posture improvements and communicate risk trends to leadership.
Participate in on-call rotation and respond to critical security incidents outside business hours.
Collaborate with the software team to integrate application security (threat modeling, SAST, dependency management, and secure CI/CD) into the overall software development life cycle.
Guide developers on secure coding practices and assist in reviewing designs for data protection and compliance.
Support product teams in implementing privacy-by-design principles.
Partner with IT to harden servers, networks, and endpoints; define baseline configurations and asset inventory processes.
Own technical incident response: forensics, containment, and remediation.
Evaluate and deploy new security tools and technologies as appropriate for scale and risk.
Serve as the technical counterpart to the CISO, translating strategy into engineering implementation.
Mentor IT and software engineers on security practices.
Manage relationships with external vendors and consultants supporting security operations.