We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Senior Security Engineer at Included Health. Location Information: United States. Included Health is a new kind of healthcare company, delivering integrated virtual care and navigation.. Design, build, and implement Just-in-Time (JIT) access controls and Privileged Access Management (PAM) workflows.. Conduct platform permission reviews and implement a least-privilege access model.. Ensure 100% of production access requests and approvals are captured in audit logs.. Lead the implementation, tuning, and operation of security tools in the CI/CD pipeline.. Develop custom SAST rules for high-risk flaw patterns detection.. Deploy IDE plugins and automated PR checks with engineering collaboration.. Conduct manual security code reviews for high-risk features.. Design, build, and maintain automation for vulnerability management.. Engineer automated workflows for vulnerability triage and management.. Develop and maintain security automation scripts, tools, and services.. Build high-fidelity SIEM correlation rules and automated response playbooks with SecOps.. Implement and maintain data encryption strategies for PHI in compliance with HIPAA.. Manage cryptographic key lifecycle and administer key management systems.. Design secure cloud network architectures and network segmentation strategies.. Lead the remediation of cloud security findings.. Implement and manage a centralized security control plane.. Design and implement Data Loss Prevention (DLP) policies.. Enforce security configurations and hardening standards for operating systems.. Manage and tune endpoint security solutions including EDR/XDR.. Lead threat modeling sessions and conduct secure design reviews.. Act as an embedded security partner for product and platform teams.. Develop and manage security programs for emerging risks.. 6+ years experience in security engineering in application and cloud security.. Proficiency in scripting or programming languages like Python or Go.. Experience in core areas: Application & SDLC Security, Security Automation, Cloud Security, Identity & Encryption, Endpoint & Data Security.. Experience securing containerized environments (Docker, Kubernetes).. Experience in healthcare, fintech, or highly regulated industries.. Excellent communication skills for explaining complex security risks.. Pay range:. $128K - $235K. Remote-first culture. 401(k) savings plan through Fidelity. Comprehensive medical, vision, and dental coverage. Paid Time Off and Discretionary Time Off. 12 weeks of 100% Paid Parental leave. Family Building & Compassionate Leave. Work-From-Home reimbursement