Description
The Senior Staff Security Engineer (Architect) will be responsible for designing, implementing, and maintaining security services that support our business. This role requires a deep understanding of application security, security tools, engineering environment setup, and data architecture. The Security Architect will work cross-functionally to ensure the security of our digital landscape and drive impactful outcomes.
Primary Duties:
- Application Security:
- Design and deploy advanced security controls to safeguard applications.
- Establish secure Software Development Life Cycle (SDLC) and DevSecOps processes.
- Conduct code reviews, threat modeling, and vulnerability assessments using Static/Dynamic Application Security Testing (SAST/DAST) methodologies and tools.
- Implement security controls for web-based SaaS applications, including API Security and Web Application Firewalls (WAF).
- Security Tools:
- Evaluate, deploy, and maintain a suite of security tools, including SIEM, IDS/IPS, DLP, endpoint protection, and threat intelligence platforms.
- Integrate security tools into the organization’s infrastructure, ensuring seamless interoperability.
- Automate security processes and improve operational efficiency using scripting languages such as Python and PowerShell.
- Engineering Environment Setup:
- Work with IT, DevOps, and engineering teams to ensure secure deployment and operation of applications within Cloud Native environments (AWS, Azure, GCP).
- Develop automated security testing and validation systems using tools like Terraform and CloudFormation.
- Shape security services strategy and execution across disciplines.
- Data Architecture:
- Architect and develop secure data systems, ensuring the protection of sensitive data such as Electronic Health Records (EHR) and Clinical data.
- Implement and manage tools for continuous vulnerability scanning and patch management.
- Leverage data to understand trends, metrics, and opportunities to improve security posture.
Minimum Qualifications:
- BS/BTech (or higher) in Computer Science, Information Technology, Cybersecurity, or a related field, or 10 years of security domain experience without a degree.
- 6+ years of experience in securing and deploying applications within Cloud Native environments.
- 3+ years of experience in a dedicated application security role.
- Extensive experience with security tools and methodologies.
- Proficient in coding languages such as Python, R, C++, and JavaScript.
- Strong familiarity with server-side web technologies (e.g., Java, Python, Scala, C#, C++, Go).
Preferred Knowledge, Skills and/or Abilities:
- Knowledge of health-tech systems, including EHR and Clinical data.
- Experience with AI/LLM and machine learning architectures.
- In-depth knowledge of OWASP Top 10 vulnerabilities and best practices for containment and remediation.
Who We Are:
Aledade, a public benefit corporation, exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014, and since then, we've become the largest network of independent primary care in the country - helping practices, health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally, by creating value-based contracts across a wide variety of health plans, we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care, aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients, good for practices and good for society - and if you're eager to join a collaborative, inclusive and remote-first culture - you've come to the right place.
What Does This Mean for You?
At Aledade, you will be part of a creative culture that is driven by a passion for tackling complex issues with respect, open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences, interests, backgrounds, beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission.
In addition to time off to support work-life balance and enjoyment, we offer the following comprehensive benefits package designed for the overall well-being of our team members:
Flexible work schedules and the ability to work remotely are available for many roles
Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
Robust time-off plan (21 days of PTO in your first year)
Two paid volunteer days and 11 paid holidays
12 weeks paid parental leave for all new parents
Six weeks paid sabbatical after six years of service
Educational Assistant Program and Clinical Employee Reimbursement Program
401(k) with up to 4% match
Stock options
And much more!
At Aledade, we don’t just accept differences, we celebrate them! We strive to attract, develop and retain highly qualified individuals representing the diverse communities where we live and work. Aledade is committed to creating a diverse environment and is proud to be an equal opportunity employer. Employment policies and decisions at Aledade are based on merit, qualifications, performance and business needs. All qualified candidates will receive consideration for employment without regard to age, race, color, national origin, gender (including pregnancy, childbirth or medical conditions related to pregnancy or childbirth), gender identity or expression, religion, physical or mental disability, medical condition, legally protected genetic information, marital status, veteran status, or sexual orientation.
Privacy Policy: By applying for this job, you agree to Aledade's Applicant Privacy Policy available at https://www.aledade.com/privacy-policy-applicants
Other Jobs from Aledade
Network Development Sales Lead, Southern California
Remote
Los Angeles, CA
Staff Security Engineer (IAM), Remote
Remote
US
There are more than 50,000 engineering jobs:
Subscribe to membership and unlock all jobs
Engineering Jobs
60,000+ jobs from 4,500+ well-funded companies
Updated Daily
New jobs are added every day as companies post them
Refined Search
Use filters like skill, location, etc to narrow results
Become a member
🥳🥳🥳 452 happy customers and counting...
Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.
To try it out
For active job seekers
For those who are passive looking
Cancel anytime
Frequently Asked Questions
- We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
- We've got about 70,000 jobs from 5,000 vetted companies. No fake or sleazy jobs here!
- We aggregate jobs from 5,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
- We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
- Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
- Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
- Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅
What Fellow Engineers Say
