Secure the Future of Healthcare with Abridge
Abridge is revolutionizing healthcare with generative AI, empowering clinicians and patients to connect on a deeper level. Our AI-powered platform is purpose-built for medical conversations, transforming them into structured clinical notes in real-time and integrating seamlessly with EMR systems. We're pioneers in responsible AI deployment, setting industry standards and improving clinical documentation efficiencies.
Join our growing team of MDs, AI scientists, PhDs, creatives, technologists, and engineers in our mission to power deeper understanding in healthcare. We have offices in New York, San Francisco, and Pittsburgh.
Security Engineer: Your Mission, Should You Choose to Accept It
Are you a seasoned Security Engineer passionate about securing cutting-edge AI? Do you thrive in a fast-paced environment where your expertise directly impacts the future of healthcare? Abridge is seeking a talented Security Engineer to join our US-based engineering team and help us build secure applications that protect sensitive patient data.
What You'll Be Doing
As a Security Engineer at Abridge, you'll be a key player in safeguarding our generative AI-powered products and ensuring the trust of our users. You'll be involved in all stages of the software development lifecycle, from design to deployment. Here's a glimpse of what you'll do:
Champion Secure Coding: Define and implement secure coding standards, collaborating with engineers and management to advocate for and enforce them.
Be the Security Architect: Conduct architectural and code reviews, focusing on secure development practices and identifying potential vulnerabilities.
Threat Modeling & Risk Assessment: Lead threat modeling and risk assessment exercises, both independently and as part of our broader security and compliance program.
Vulnerability Management: Identify and remediate security vulnerabilities through both manual and automated testing techniques.
Automate Security: Integrate automated security tools (SAST, DAST, RASP, SCA) into our CI/CD pipelines to ensure continuous security monitoring.
Incident Response: Lead triage of incoming security issues and collaborate with engineering teams to remediate known or suspected vulnerabilities.
Security Training & Mentorship: Train and mentor engineers on secure development practices, fostering a security-conscious culture.
Technology Evaluation: Research commercial and open-source security solutions, providing build vs. buy recommendations to enhance our security capabilities.
Empathy & Communication: Build deep user empathy and maintain a user-centric mindset. Communicate effectively within and across cross-functional teams, including product, machine learning, and platform engineering.
What You'll Bring to the Table
We're looking for a passionate and experienced security professional with a strong understanding of cloud-native application security. Here's what we're looking for:
Experience: 7+ years of software engineering experience, with a significant focus on cybersecurity for cloud-native applications.
Technical Expertise: Deep understanding of software security principles and practices, with experience at multiple levels of the stack. You can identify XSS vulnerabilities, debate the merits of different encryption algorithms (CBC vs GCM), and architect systems with appropriate data segregation for confidential data.
Compliance Experience: Experience working in a regulated environment and familiarity with compliance frameworks such as SOC2 and HITRUST.
Continuous Learning: Up-to-date knowledge of industry best practices and emerging security trends, with a passion for learning and staying ahead of the curve.
Hands-on Attitude: Excited to be hands-on in a fast-moving, productive, and supportive environment.
Team Player: Willing to pitch in wherever needed and contribute to a collaborative team environment.
Important Note: This position requires a hybrid work model, with a minimum of 3 days per week in either our San Francisco or New York office. Relocation assistance is available for candidates willing to relocate.
We value diverse perspectives and encourage you to apply, even if you don't meet every single requirement. Your passion and experience might be just what we're looking for.
Why Choose Abridge?
Abridge is not just another startup; we're a mission-driven company transforming healthcare delivery with cutting-edge AI. We offer:
Impactful Work: Contribute to a product that directly improves the lives of clinicians and patients.
Growth Opportunities: Join a fast-paced, high-growth startup where your contributions are valued and you have the opportunity to learn and grow.
Collaborative Culture: Work alongside a team of passionate, high-achieving individuals in a supportive and inclusive environment.
Meaningful Mission: Be part of a company that prioritizes empathy and strives to make care more accessible and understandable.
Benefits that Matter
We care about our employees and offer a comprehensive benefits package, including:
Generous Time Off: 13 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees.
Comprehensive Health Plans: Medical, Dental, and Vision plans for all full-time employees. Abridge covers 100% of the premium for you and 75% for dependents. HSA contributions are also available.
Paid Parental Leave: 16 weeks paid parental leave for all full-time employees.
401k and Matching: Contribution matching to help invest in your future.
Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Learning and Development Budget: Yearly contributions for coaching, courses, workshops, conferences, and more.
Sabbatical Leave: 30 days of paid Sabbatical Leave after 5 years of employment.
Compensation and Equity: Competitive compensation and equity grants for full time employees.
... and much more!
Diversity & Inclusion
Abridge is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace where everyone feels valued and respected.
Protect Yourself from Recruitment Fraud
Please be aware of fraudulent recruitment activities. Abridge will never ask for financial information or payment during the application or interview process. All emails from our recruiting team will come from an @abridge.com email address. If you encounter suspicious activity, please exercise caution and cease communication.
Learn more about avoiding recruitment scams.