Aledade, Inc. is hiring a
Staff Security Engineer, Remote - United States

Summary

The Staff Security Engineer for Application Security will design, implement, and maintain security services to support the business, lead development of comprehensive security strategies, mentor engineers, and set standards for security processes. They should have a BS/BTech degree in Computer Science or related field with 10 years of experience in the security domain without a degree, 8+ years of experience in securing and deploying applications within Cloud Native environments, and 5+ years of experience in a dedicated application security role.

Requirements

• BS/BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 10 years security domain experience without degree
• 8+ years of experience in securing and deploying applications within Cloud Native environments
• 5+ years of experience in a dedicated application security role with focus on establishing secure SDLC and DevSecOps processes

Responsibilities

• Lead the development, implementation, and ongoing maintenance of comprehensive security strategies and solutions
• Design and deploy advanced security controls to safeguard networks, systems, and applications
• Work across disciplines to shape our security services strategy and execution
• Mentor and galvanize new engineers to do their best work

Preferred Qualifications

• Experience architecting, developing, and deploying large-scale distributed systems at scale
• Extensive experience identifying, evaluating and triaging vulnerabilities with Static/Dynamic Application Security Testing (SAST/DAST) methodologies and tools
• Proven experience conducting code reviews, and threat modeling
• Extensive experience with developing automated security testing and validation systems using Terraform, Cloudformation, Python, etc
• Proficient in coding languages such as Python, R, C++, Javascript
• Extensive experience working in AWS/Azure/GCP software development environment
• Proven experience with implementing security controls for web-based SaaS applications such as API Security, WAF, etc
• In-depth knowledge of AI/LLM and machine learning architectures and best practices for securing them
• In-depth knowledge of OWASP Top 10 vulnerabilities along with containment and remediation best practices
• Strong familiarity with server-side web technologies (eg: Java, Python, Scala, C#, C++, Go)
• 4+ years of experience acting as a trusted technical decision-maker in a team setting, solving for short-term and long-term business value
• Experience with health-tech systems, like Electronic Health Records, Clinical data, etc preferred

Benefits

• Flexible work schedules and the ability to work remotely are available for many roles
• Health, dental and vision insurance paid up to 80% for employees, dependents, and domestic partners
• Robust time off plan (21 days of PTO in your first year, 2 Paid Volunteer Days & 11 paid holidays)
• 12 weeks paid Parental Leave for all new parents
• 6 weeks paid sabbatical after 6 years of service
• Educational Assistant Program & Clinical Employee Reimbursement Program
• 401(K) with up to 4% match
• Stock options