Security Engineer

Summary

Join Counterpart Health as a Security Specialist and collaborate with internal and external teams to design, implement, and maintain robust system security and controls. You will implement and monitor security applications, serve as a subject matter expert for security code reviews, and identify and resolve security vulnerabilities. The role involves assessing system compliance, engaging with external customers for security reviews, and improving security posture and processes. You will contribute to the development of new security solutions and initiatives. This position requires 1+ years of experience in a security-focused engineering role and proficiency in at least one scripting language (Python, JavaScript/TypeScript, or Shell Scripting).

Requirements

• You have 1+ years of experience in a security-focused engineering role
• You have experience investigating and triaging security incidents
• You have a basic understanding of operating systems (Linux, macOS, etc.) and networking fundamentals
• You have proficiency in at least one of the following technologies: Python, JavaScript/TypeScript, or Shell Scripting (You will be tested on one)
• You are comfortable conducting frequent code reviews for security vulnerabilities
• You have experience assessing the security of APIs and systems, analyzing authentication, authorization mechanisms, input validation, and potential vulnerabilities
• You have excellent written and verbal communication skills, with the ability to craft clear, comprehensive reports and research findings for engineering teams and stakeholders
• You stay up-to-date with the latest security threats, attack vectors, and industry trends, and are eager to apply that knowledge to strengthen security measures
• You have knowledge of cybersecurity frameworks and standards, such as NIST, ISO, and CIS

Responsibilities

• Implement, operationalize, and monitor security applications, including EDR, DLP, SAST, Vulnerability Management, and CSPM systems
• Serve as a subject matter expert (SME) for security-related code and technical design reviews
• Identify and collaborate with Engineering and SRE teams to resolve security vulnerabilities in software, systems, and infrastructure
• Assess and enhance systems to ensure compliance with security requirements, policies, guidelines, and industry standards
• Engage with external customers, conducting security reviews and assessments
• Improve security posture and processes, covering areas from secure development practices to SecDevOps
• Contribute to the planning, definition, and implementation of new security solutions and related development initiatives

Benefits

• Our commitment to attracting and retaining top talent begins with a competitive base salary and equity opportunities
• Additionally, we offer a performance-based bonus program and regular compensation reviews to recognize and reward exceptional contributions
• We prioritize the health and well-being of our employees and their families by offering comprehensive group medical coverage that include coverage for hospitalization, outpatient care, optical services, and dental benefits
• We understand the importance of mental health in fostering productivity and maintaining work-life balance
• To support this, we offer initiatives such as No-Meeting Fridays, company holidays, access to mental health resources, and a generous annual leave policy
• Additionally, we embrace a remote-first culture that supports collaboration and flexibility, allowing our team members to thrive from any location
• We are committed to developing our talent professionally
• We offer learning programs, mentorship, professional development funding, and regular performance feedback and reviews
• Reimbursement for office setup expenses
• Monthly cell phone & internet stipend
• Flexibility to work from home or from our office, enabling collaboration with global teams
• Paid parental leave for all new parents