Information Security Engineer

DoctronicNew York, NY
3d$180,000 - $240,000Onsite
Match Resume

About The Position

We're looking for an Information Security Engineer to own our security posture. We're HIPAA-compliant and SOC 2 Type II certified—you'll maintain and strengthen that foundation as we scale to serve millions of patients and enterprise partners. This role is critical to our mission. When you're protecting healthcare data, security isn't just best practice—it's a sacred responsibility. You'll combine hands-on technical work with strategic security leadership, ensuring Doctronic remains the most trusted AI diagnostic platform in healthcare.

Requirements

  • 7+ years of information security experience in production environments
  • Healthcare or fintech background required—you understand regulated industry security requirements
  • Hands-on technical ability, not just policy and paperwork—you can read code, configure systems, and investigate incidents
  • Deep experience with SOC 2, HIPAA, or equivalent compliance frameworks
  • Familiarity with AWS security controls, IAM, encryption, and cloud security best practices
  • Strong communicator who can translate security requirements for technical and non-technical audiences
  • Proactive problem-solver who anticipates risks before they materialize
  • Collaborative partner who enables teams to move fast while staying secure

Nice To Haves

  • CISSP, CISM, CISA, or equivalent security certification
  • Experience with health information exchanges, TEFCA, QHIN, or interoperability standards
  • Startup security experience—building security programs from scratch vs. maintaining established ones
  • Familiarity with AI/ML security considerations and model protection
  • Experience with mobile app security (iOS/Android)
  • Knowledge of medical device security standards or FDA digital health guidance
  • Background in application security, secure SDLC, or DevSecOps

Responsibilities

  • Maintain SOC 2 Type II compliance and manage ongoing audits with external assessors
  • Implement and monitor HIPAA technical safeguards across our infrastructure and applications
  • Conduct and coordinate regular penetration testing, vulnerability assessments, and security reviews
  • Complete vendor security reviews and respond to enterprise security questionnaires from health systems and payers
  • Implement and enforce security policies across engineering, operations, and business teams
  • Respond to security incidents with urgency and thoroughness, conducting post-incident analysis
  • Build security automation and monitoring to scale protection as the company grows
  • Collaborate with engineering teams to embed security best practices into the development lifecycle
  • Stay current on emerging threats, vulnerabilities, and regulatory requirements in healthcare technology

Benefits

  • Equity Opportunities
  • Comprehensive Health Benefits

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

No Education Listed

Job Search Resources

Similar Information Security Engineer job opportunities

Information Security Engineer
Conagra Brands
Conagra Brands • Omaha, NE4d • Hybrid
Information Security Engineer
Synovus
Synovus • Columbus, GA10d
Information Security Engineer
Doctronic
Doctronic • New York City, NY2d • $180,000 - $240,000 • Onsite
Information Security Engineer
Stefanini Group
Stefanini Group • Atlanta, GA8d • Hybrid
Information Security Engineer
Stefanini Group
Stefanini Group • Atlanta, GA8d • Hybrid
Information Security Engineer
CONAGRA
CONAGRA • Omaha, NE4d • Hybrid
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service