Senior Security Engineer

About The Position

Requirements

• 2+ years of Security Engineering experience, with significant depth in either application security or infrastructure/cloud security and working proficiency in the other
• Strong AWS and cloud security expertise, including IAM, identity management (SSO, SAML, SCIM), network security, secrets management, and cloud-native security tooling
• Hands-on software engineering experience with the ability to read, review, and ship production code in Ruby and/or TypeScript. Python experience is a plus
• Experience implementing technical controls in regulated environments such as HIPAA, SOC 2, HITRUST, PCI, or similar compliance frameworks
• Demonstrated fluency with AI and LLM-powered tools, including practical experience incorporating them into day-to-day engineering workflows
• Strong understanding of AI security concepts, including prompt injection, AI agent guardrails, data governance, PHI handling, and AI vendor risk
• Builder mindset with a bias toward execution, ownership, and practical problem-solving.
• Ownership mindset – own driving results for the mission, business, and customer experience
• Strong collaboration skills with thought partners from engineering, product, and legal
• Strong desire to work in an early stage startup environment that is fast paced, complex, and has minimal barriers to make decisions (no “red tape”)
• Passion for helping individuals experiencing complex chronic needs such as homelessness, severe mental illness, and substance use disorder

Nice To Haves

• A consulting or advisory background
• Experience as an early security hire at a startup, particularly as the first or early security engineer
• Experience securing consumer-facing or patient-facing AI products and applications
• Contributions to open-source security projects, security tooling, and/or published security research
• CISSP, OSCP, AWS Security Specialty, or similar certifications

Responsibilities

• Own vulnerability management, dependency security, threat modeling, security code reviews, and remediation of penetration test findings.
• Strengthen our AWS security posture, identity and access management (IAM, SSO, SAML, SCIM), endpoint security, threat detection, and incident response capabilities.
• Design and implement security controls for AI-powered products and workflows, including protections against prompt injection, data leakage, and other AI-specific risks.
• Build technical safeguards that enable the secure use of PHI and sensitive data within LLM-powered systems.
• Implement and maintain the technical controls, evidence, and security practices required to support HIPAA, SOC 2, and other compliance programs.
• Leverage AI-powered tooling, automation, and modern security platforms to scale security impact across the organization.
• Build self-service security solutions, paved roads, and runbooks that help engineers move quickly while maintaining strong security standards.
• Partner closely with Engineering and IT to deliver pragmatic, scalable security solutions that support product velocity and business growth.
• Be a force multiplier for the Pod-Infra team

Benefits

• Competitive salary: $170,000 - $190,000 (depending on experience)
• Equity compensation package
• Flexible vacation policy – take the time you need to recharge
• Comprehensive medical, dental, and vision coverage
• 401(k)
• 100% company-sponsored short and long-term disability and life insurance
• Subsidized backup childcare and caregiver supports through Wellthy
• Work entirely from the comfort of your own home
• Monthly $100 work from home expense stipend
• We provide the equipment needed for the role
• Opportunity for rapid career progression with plenty of room for personal growth!