Join Abridge: Revolutionizing Healthcare with AI - Senior/Staff Cloud Security Engineer
Abridge is on a mission to power deeper understanding in healthcare, and we're looking for a passionate and experienced Senior or Staff Cloud Security Engineer to help us secure the future of AI in medicine. If you're a security-minded builder who thrives in a fast-paced, innovative environment, this is your chance to make a real impact.
As one of the first members of our growing Security team, you'll play a pivotal role in shaping our security posture from the ground up. You'll be a technical leader, driving key initiatives to secure our cloud infrastructure and engineering practices across our entire product portfolio. This is a hands-on role that requires deep technical expertise, a builder's mindset, and excellent communication skills to influence security culture across the organization.
About Abridge
We're not just another tech company; we're a team of MDs, AI scientists, PhDs, creatives, technologists, and engineers dedicated to empowering people and making healthcare make more sense. Our AI-powered platform transforms patient-clinician conversations into structured clinical notes in real-time, leveraging Linked Evidence and our auditable AI to ensure accuracy and trust. We're pioneers in generative AI for healthcare, setting the industry standards for responsible AI deployment.
What You'll Do
Secure Development & Architecture Leadership:
Lead threat modeling and security architecture reviews for complex multi-cloud systems, new infrastructure, and platform initiatives, ensuring alignment with Abridge’s security goals.
Define and implement the technical roadmap for our Cloud Security program, focusing on scalable assurance and proactive security measures.
Mentor and enable product and engineering teams, providing expert guidance on cloud and infrastructure security, vulnerability remediation, and resilience.
Security Automation and Tooling:
Design, implement, and maintain advanced security automation tools and services, integrating them seamlessly into infrastructure-as-code pipelines.
Own the deployment, configuration, and maintenance of CloudSec tooling, tuning scanners and custom rules to reduce false positives and maximize efficacy.
Develop custom scripts and tooling to automate security tasks, accelerate configuration monitoring, vulnerability detection, and enforce policy-as-code.
Vulnerability Management & Incident Response:
Perform in-depth security and code reviews (manual and tool-assisted) to identify vulnerabilities in infrastructure, networks, configurations, and policies, including those associated with AI models and architectures.
Oversee the end-to-end vulnerability management program, ensuring timely identification, prioritization, and remediation of critical security issues in a developer-friendly manner.
Serve as a cloud environment, infrastructure, and networks expert on the security incident response team, assisting in investigations and resolutions.
What You'll Bring
Experience: 7+ years in a Cloud Security / Infrastructure Security role, with a track record of designing and implementing security improvements at scale.
Programming Fluency: Deep proficiency in one or more major programming languages (Python and/or NextJS a significant plus) and a solid background in software development principles.
Infrastructure-as-Code: Hands-on experience with Terraform, infrastructure-as-code pipelines, and associated automation.
Cloud & Containers: Extensive experience securing cloud environments (GCP, AWS) and knowledge of containerization technologies (Kubernetes, Docker).
Technical Depth: Expert-level knowledge of cloud and infrastructure security techniques and principles, and network security.
Bonus Points If…
AI Security: Deep understanding of the security of AI models, agents, and associated infrastructure.
Offensive Security: Experience with red teaming / penetration testing of clouds, infrastructure, and networks.
Security Research: Experience contributing to or leveraging open-source security tools, publishing security research, and active engagement in the security industry.
Cross-Functional Influence: Ability to drive large, cross-functional technical projects that impact security posture across the organization.
Data-Driven Security: Experience defining and utilizing security metrics to measure and report on the effectiveness of security programs.
Why Work at Abridge?
We offer a unique opportunity to work on cutting-edge technology, solve complex problems, and make a tangible difference in healthcare. You'll be part of a supportive and collaborative team where your contributions are valued and your growth is encouraged.
How We Take Care of Abridgers:
Generous Time Off: 13 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees.
Comprehensive Health Plans: Medical, Dental, and Vision plans for all full-time employees. Abridge covers 100% of the premium for you and 75% for dependents. If you choose a HSA-eligible plan, Abridge also makes monthly contributions to your HSA.
Paid Parental Leave: 16 weeks paid parental leave for all full-time employees.
401k and Matching: Contribution matching to help invest in your future.
Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Learning and Development Budget: Yearly contributions for coaching, courses, workshops, conferences, and more.
Sabbatical Leave: 30 days of paid Sabbatical Leave after 5 years of employment.
Compensation and Equity: Competitive compensation and equity grants for full time employees.
... and much more!
Ready to join a team that's shaping the future of healthcare with AI? Apply now and let's build a more secure and understanding world together!
Abridge is an equal opportunity employer and values diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Staying safe - Protect yourself from recruitment fraud
We are aware of individuals and entities fraudulently representing themselves as Abridge recruiters and/or hiring managers. Abridge will never ask for financial information or payment, or for personal information such as bank account number or social security number during the job application or interview process. Any emails from the Abridge recruiting team will come from an @abridge.com email address. You can learn more about how to protect yourself from these types of fraud by referring to this article. Please exercise caution and cease communications if something feels suspicious about your interactions.