RemoteLeaf Logo
Log in Sign up

Senior Security Engineer

1 week ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
Android AWS Burp Suite CI/CD CrowdStrike Docker Encryption GCP Go HIPAA iOS Kubernetes Microservices Python SIEM Terraform WAF
Apply Now
Included Health

Included Health

Included Health is a healthcare company that provides cost-saving solutions for employers and health plans. They offer virtual care and navigation services, connecting millions with board-certified doctors and specialists for comprehensive and convenie...

Insurance
1K-5K
$106M raised
View All Jobs 28

Description

  • Design, implement, and automate security controls across application and cloud environments, primarily in AWS with GCP considerations.
  • Build and manage Just-in-Time access controls and Privileged Access Management workflows to remove standing privileged production access.
  • Review platform permissions and enforce a least-privilege access model for cloud and application roles.
  • Implement, tune, and operate CI/CD security tools including SAST, DAST, SCA, and secrets scanning.
  • Develop custom SAST rules and manual review processes to detect high-risk flaws, insecure PII/PHI handling, and cryptographic issues.
  • Partner with engineering teams to add IDE plugins, automated pull request checks, and secure design reviews early in development.
  • Build automation for vulnerability management, including triage, validation, assignment, and remediation workflows.
  • Develop security automation scripts and services in Python or Go to support security operations and compliance checks.
  • Work with SecOps to create SIEM correlation rules and automated response playbooks.
  • Design and maintain encryption, key management, cloud network segmentation, DLP, endpoint security, and hardening standards across operating systems.
  • Lead threat modeling sessions and act as an embedded security advisor and mentor for product and platform teams.
  • Develop and manage security programs for emerging risks such as SaaS security and AI security.

Requirements

  • 6+ years of experience in security engineering with hands-on application security and cloud security experience.
  • Strong proficiency in at least one scripting or programming language, preferably Python or Go.
  • Experience in two or more core areas: application and SDLC security, security automation and engineering, cloud security, identity and encryption, or endpoint and data security.
  • Experience with SAST, DAST, and SCA tools such as Semgrep, Snyk, and Burp Suite, plus CI/CD automation.
  • Experience with SOAR platforms such as Tines and infrastructure as code using Terraform.
  • Experience securing cloud-native environments in AWS or GCP, including VPCs, IAM, WAF, and CSPM.
  • Experience with JIT access controls, PAM, and cryptographic key lifecycles.
  • Experience with endpoint security, EDR/XDR, DLP, and MDM solutions.
  • Experience securing containerized environments such as Docker and Kubernetes.
  • Experience in healthcare, fintech, or another highly regulated industry.
  • Excellent communication skills for explaining security risks to both technical and non-technical stakeholders.
  • Preferred: experience with mobile application security for iOS and Android.
  • Preferred: familiarity with AI security principles and governing LLM usage.
  • Preferred: experience building or managing a SaaS security (SSPM) program.
  • Preferred: background in software development, DevOps, or Site Reliability Engineering.
  • Preferred: experience with incident response, threat hunting, and forensics.
  • Preferred: relevant certifications such as CISSP, GIAC, AWS Certified Security – Specialty, GCP Professional Cloud Security Engineer, OSCP, or CEH.
  • Preferred: contributions to open-source security projects or active participation in the security community.

Benefits

  • Remote-first culture.
  • Base salary range of $128,130 to $235,287 depending on geographic zone, plus equity and benefits.
  • 401(k) savings plan through Fidelity.
  • Comprehensive medical, vision, and dental coverage, including disability insurance options.
  • Paid Time Off (PTO) and Discretionary Time Off (DTO).
  • 12 weeks of 100% paid parental leave.
  • Family building and compassionate leave, including fertility coverage, $25,000 for surrogacy/adoption, and paid leave for failed treatments, adoption, or pregnancies.
  • Work-from-home reimbursement to support home office collaboration.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Aledade

Senior Security Engineer II (Engineering & Tooling), Remote

Aledade 1K-5K Health Care Providers & Services

Aledade is hiring a Senior Security Engineer II to design and operate security tooling and infrastructure protections for a remote, cloud-focused environment supporting its healthcare platform.

United States Full-time Senior Security Engineer
Ansible Argo CD AWS Azure Bash Buildkite Chef CrowdStrike Cybersecurity Datadog DevSecOps Docker GCP Helm HIPAA Jenkins Kubernetes Network Security PowerShell Python SIEM Splunk Terraform
2 hours, 37 minutes ago
Binance

Blockchain Security Engineer (Smart Contract Auditing)

Binance 5K-10K Capital Markets

Binance is hiring a Blockchain Security Engineer to perform smart contract auditing and on-chain security analysis across wallets, blockchains, and related blockchain products in a remote role based in Taipei/Asia.

Taiwan Full-time Junior Security Engineer
Blockchain Encryption Git Go Python Rust VS Code
2 hours, 52 minutes ago
Sysdig

Staff Threat Research Engineer

Sysdig 251-1K IT Services

Sysdig is hiring a Staff Threat Research Engineer to research cloud-based attacks and drive threat detection and security solutions for containers, Kubernetes, and cloud environments.

United States Full-time Lead Research Scientist Security Engineer
$163k-$204k
Cybersecurity Kubernetes Linux Penetration Testing
3 hours, 7 minutes ago
Pingwind

Senior Technical Lead for Systems Security

Pingwind 51-250 Internet Software & Services

PingWind is hiring a remote Senior Technical Lead for Systems Security to assess and strengthen security compliance for federal systems, with the main objective of ensuring required controls are met and risks are identified and mitigated.

Anywhere Full-time Lead Security Engineer
Cybersecurity
3 hours, 7 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers