Senior Software Security Engineer

About The Position

Requirements

• 5+ years of software engineering experience with strong focus on security engineering, platform engineering, or infrastructure security.
• Experience building internal engineering or security tooling in cloud-native production environments.
• Strong hands-on backend engineering experience building APIs, services, and automation systems.
• Experience implementing secure authentication and authorization systems in production applications.
• Experience integrating security tooling into CI/CD pipelines and developer workflows.
• Experience working with Kubernetes and distributed systems in production environments.
• Demonstrated experience using AI tools in a practical, responsible way
• Curiosity and openness to experimenting with new technologies
• Ability to balance efficiency with quality and sound judgment

Nice To Haves

• Experience working in regulated or high-trust environments such as healthcare, fintech, or enterprise SaaS is strongly preferred.
• Experience working with AI-enabled systems, AI-assisted engineering workflows, or LLM-based applications is considered a strong asset.

Responsibilities

• Design, build, and maintain custom internal security tooling used across League’s engineering organization
• Develop automation systems that improve application security, secrets management, identity management, and secure software delivery workflows
• Build developer-friendly security tooling integrated into CI/CD pipelines and internal engineering platforms
• Create scalable systems for vulnerability detection, remediation automation, policy enforcement, and security telemetry collection
• Write secure, maintainable, production-quality code across backend services, APIs, and cloud-native systems
• Develop security services and APIs supporting authentication, authorization, secrets management, and access governance
• Build and maintain tooling around OAuth/OIDC flows, token lifecycle management, RBAC, service authentication, and secure session handling
• Improve secure-by-default engineering practices across League’s platform ecosystem
• Build and automate cloud security controls across AWS, GCP, and Kubernetes environments
• Develop tooling for infrastructure security, workload identity, encryption management, and runtime protection
• Partner with Platform Engineering teams to strengthen container security, Kubernetes security posture, and infrastructure hardening
• Improve observability and monitoring for security events, anomalous behavior, and operational risk
• Build security capabilities that support AI-native engineering workflows and AI-powered healthcare experiences
• Evaluate emerging AI-assisted security tooling and identify opportunities to improve engineering productivity and platform protection
• Develop secure workflows and controls around AI-enabled systems and sensitive healthcare data usage
• Partner closely with Security, Infrastructure, Platform Engineering, Compliance, and Product Engineering teams to drive secure engineering practices
• Translate security concepts into practical engineering solutions that improve developer experience and operational efficiency
• Support security incident response, root cause analysis, and remediation efforts when required
• Ensure access management is performed in compliance with the employee's role and responsibilities
• Responsibility and accountability for executing League's policies and procedures within the department/ team
• Notification of HR, Legal, Compliance & Security of any incidents, breaches or policy violations
• Compliance with Information Security Policies

Benefits

• bonus
• equity
• benefits