Secure the Future of Healthcare AI with Abridge!
Abridge is revolutionizing healthcare by transforming patient-clinician conversations into structured clinical notes using cutting-edge AI. We're not just improving documentation; we're enabling clinicians to focus on what truly matters: their patients. As pioneers in generative AI for healthcare, we're setting industry standards and deploying AI responsibly across health systems. Join our mission to power deeper understanding in healthcare!
We're seeking a highly motivated and experienced Senior/Staff Enterprise Security Engineer to be a key technical leader on our growing Security team. If you're passionate about building security from the ground up at the leading edge of AI, this is your chance to make a real impact. You'll drive large initiatives, shape our company's security posture, and work cross-functionally to integrate security seamlessly across our enterprise.
Your Mission:
As a critical member of our team, you will be responsible for:
Building a Secure Foundation: Design, implement, and maintain robust security solutions for our enterprise infrastructure, SaaS ecosystem, and business practices.
Automating Security at Scale: Develop and implement automation strategies to streamline security operations and enhance our overall security posture.
Championing a Security-First Culture: Mentor and guide teams across the organization to build secure-by-default solutions and foster a strong security culture.
What You'll Be Doing:
Identity & Access Management (IAM) and SaaS Security
Architect and implement enterprise-wide Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions.
Own the implementation and maintenance of authentication standards, including Single Sign-On (SSO), phishing resistant Multi-Factor Authentication (MFA), and identity federation protocols (SAML, OIDC, OAuth2).
Design and enforce security policies for critical SaaS applications using tools like SSPM (SaaS Security Posture Management) to ensure secure configurations and access controls.
Develop and automate the full identity lifecycle (joiner, mover, leaver) process, leveraging SCIM and other APIs for streamlined user provisioning and de-provisioning.
Security Automation and Tooling
Lead the development of the security automation roadmap for Enterprise Security, identifying key areas for efficiency gains.
Design and build custom automation scripts and integrations using languages like Python to connect security tools (SIEM, EDR, IAM, Ticketing).
Utilize Infrastructure as Code (IaC) tools (e.g., Terraform) to manage the secure configuration of enterprise tools and enforce security policies at scale across code repos, MDM, and cloud environments.
Endpoint, Network, and Email Security
Engineer, deploy, and manage our Endpoint Detection and Response (EDR) and Mobile Device Management (MDM) platforms to ensure full coverage, policy compliance, and timely incident response across a fleet of various operating systems (Primarily MacOS).
Design, configure, and maintain enterprise network security controls, including next-generation firewalls, secure web gateways, VPNs, and micro-segmentation strategies.
Own and optimize the email security stack, DMARC/DKIM/SPF enforcement, and anti-phishing controls to mitigate social engineering attacks.
Drive the technical implementation of the company's Zero Trust architecture across corporate networks, systems, and endpoints.
Leadership and Partnership
Act as an escalation point for complex security events and technical issues within the Enterprise Security domain, performing root cause analysis and leading remediation efforts.
Ensure the security capabilities meet compliance and regulatory requirements (e.g. FedRAMP Moderate, SOC 2), providing technical evidence and documentation for audits. Be a strong partner for the Security and Privacy Compliance Team.
Work closely with the Information Technology Team to ensure security is integrated into the lifecycle of designing, implementing, and maintaining technology across the company.
What You'll Need to Succeed:
Experience: 5 to 7+ years of progressive experience in an Enterprise/Corporate Security Engineering role.
Coding/Automation: Proven hands-on experience developing security automation solutions with Python or similar high-level languages.
IAM Deep Dive: Expert-level knowledge of IAM concepts, protocols (SAML, OAuth), and hands-on experience with at least IAM in Google Workspace. Additional experience with other IAM platforms is a big plus.
Endpoint Expertise: Strong experience deploying and managing modern Endpoint Protection (EDR) and MDM solutions in a large corporate environment.
Networking: Deep understanding of networking and security protocols (TCP/IP, DNS, TLS/SSL, VPN, Firewalls) and how to secure hybrid environments.
Cross-Functional Skills: Demonstrated ability to lead complex projects, mentor junior staff, and communicate security risks and solutions effectively to both technical and non-technical stakeholders.
Bonus Points If You Have:
Deep understanding of the security of AI models, agents, and associated infrastructure and systems.
Experience working with a Security Orchestration, Automation, and Response (SOAR) platform (e.g., Google, Tines, Splunk, Phantom, Cortex XSOAR, etc.).
Deep expertise with security cloud platforms (Primarily GCP, but AWS and Azure are a big plus).
Deep expertise designing and implementing RBAC, ABAC, NACLs, etc.
Experience performing hands-on penetration tests against SaaS vendors, custom applications, etc.
Why Abridge?
We offer:
Impactful Work: Be at the forefront of AI innovation in healthcare, solving real-world problems that directly improve patient care.
Growth Opportunities: Thrive in a fast-paced, high-growth startup environment where you can learn, grow, and advance your career.
A Collaborative Culture: Work alongside a team of passionate, talented individuals who are dedicated to making a difference.
Competitive Benefits: We offer a comprehensive benefits package, including generous time off, comprehensive health plans, paid parental leave, 401k matching, and more.
How we take care of Abridgers:
Generous Time Off: 13 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees.
Comprehensive Health Plans: Medical, Dental, and Vision plans for all full-time employees. Abridge covers 100% of the premium for you and 75% for dependents. If you choose a HSA-eligible plan, Abridge also makes monthly contributions to your HSA.
Paid Parental Leave: 16 weeks paid parental leave for all full-time employees.
401k and Matching: Contribution matching to help invest in your future.
Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Learning and Development Budget: Yearly contributions for coaching, courses, workshops, conferences, and more.
Sabbatical Leave: 30 days of paid Sabbatical Leave after 5 years of employment.
Compensation and Equity: Competitive compensation and equity grants for full time employees.
... and much more!
Ready to secure the future of healthcare AI? Join the Abridge team!
Abridge is an equal opportunity employer and values diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Staying safe - Protect yourself from recruitment fraud
We are aware of individuals and entities fraudulently representing themselves as Abridge recruiters and/or hiring managers. Abridge will never ask for financial information or payment, or for personal information such as bank account number or social security number during the job application or interview process. Any emails from the Abridge recruiting team will come from an @abridge.com email address. You can learn more about how to protect yourself from these types of fraud by referring to this article. Please exercise caution and cease communications if something feels suspicious about your interactions.