Abridge · 2 months ago
Senior/Staff Enterprise Security Engineer
San Francisco-Hybrid
Full-time
Hybrid
Senior Level, Lead/Staff
$182K/yr - $254K/yr
5+ years expAbridge is a company focused on improving healthcare through AI-powered solutions. They are seeking a highly experienced Senior or Staff Enterprise Security Engineer to lead security initiatives and ensure the integrity of their enterprise infrastructure and systems.
Artificial Intelligence (AI)Health CareIntelligent SystemsMachine LearningMedical
Responsibilities
Architect and implement enterprise-wide Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions
Own the implementation and maintenance of authentication standards, including Single Sign-On (SSO), phishing resistant Multi-Factor Authentication (MFA), and identity federation protocols (SAML, OIDC, OAuth2)
Design and enforce security policies for critical SaaS applications using tools like SSPM (SaaS Security Posture Management) to ensure secure configurations and access controls
Develop and automate the full identity lifecycle (joiner, mover, leaver) process, leveraging SCIM and other APIs for streamlined user provisioning and de-provisioning
Lead the development of the security automation roadmap for Enterprise Security, identifying key areas for efficiency gains
Design and build custom automation scripts and integrations using languages like Python to connect security tools (SIEM, EDR, IAM, Ticketing)
Utilize Infrastructure as Code (IaC) tools (e.g., Terraform) to manage the secure configuration of enterprise tools and enforce security policies at scale across code repos, MDM, and cloud environments
Engineer, deploy, and manage our Endpoint Detection and Response (EDR) and Mobile Device Management (MDM) platforms to ensure full coverage, policy compliance, and timely incident response across a fleet of various operating systems (Primarily MacOS)
Design, configure, and maintain enterprise network security controls, including next-generation firewalls, secure web gateways, VPNs, and micro-segmentation strategies
Own and optimize the email security stack, DMARC/DKIM/SPF enforcement, and anti-phishing controls to mitigate social engineering attacks
Drive the technical implementation of the company's Zero Trust architecture across corporate networks, systems, and endpoints
Act as an escalation point for complex security events and technical issues within the Enterprise Security domain, performing root cause analysis and leading remediation efforts
Ensure the security capabilities meet compliance and regulatory requirements (e.g. FedRAMP Moderate, SOC 2), providing technical evidence and documentation for audits. Be a strong partner for the Security and Privacy Compliance Team
Work closely with the Information Technology Team to ensure security is integrated into the lifecycle of designing, implementing, and maintaining technology across the company
Qualification
Required
5 to 7+ years of progressive experience in an Enterprise/Corporate Security Engineering role
Proven hands-on experience developing security automation solutions with Python or similar high-level languages
Expert-level knowledge of IAM concepts, protocols (SAML, OAuth), and hands-on experience with at least IAM in Google Workspace. Additional experience with other IAM platforms is a big plus
Strong experience deploying and managing modern Endpoint Protection (EDR) and MDM solutions in a large corporate environment
Deep understanding of networking and security protocols (TCP/IP, DNS, TLS/SSL, VPN, Firewalls) and how to secure hybrid environments
Demonstrated ability to lead complex projects, mentor junior staff, and communicate security risks and solutions effectively to both technical and non-technical stakeholders
Preferred
Deep understanding of the security of AI models, agents, and associated infrastructure and systems
Experience working with a Security Orchestration, Automation, and Response (SOAR) platform (e.g., Google, Tines, Splunk, Phantom, Cortex XSOAR, etc.)
Deep expertise with security cloud platforms (Primarily GCP, but AWS and Azure are a big plus)
Deep expertise designing and implementing RBAC, ABAC, NACLs, etc
Experience performing hands-on penetration tests against SaaS vendors, custom applications, etc
Benefits
Generous Time Off: 13 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees.
Comprehensive Health Plans: Medical, Dental, and Vision plans for all full-time employees. Abridge covers 100% of the premium for you and 75% for dependents. If you choose a HSA-eligible plan, Abridge also makes monthly contributions to your HSA.
Paid Parental Leave: 16 weeks paid parental leave for all full-time employees.
401k and Matching: Contribution matching to help invest in your future.
Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Learning and Development Budget: Yearly contributions for coaching, courses, workshops, conferences, and more.
Sabbatical Leave: 30 days of paid Sabbatical Leave after 5 years of employment.
Compensation and Equity: Competitive compensation and equity grants for full time employees.
Company
Abridge
Abridge is an AI-driven platform that transforms patient-clinician conversations into structured clinical notes for healthcare industries.
201-500 employees
H1B Sponsorship
Abridge has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (9)
2024 (1)
2022 (1)
Funding
Current Stage
Late StageTotal Funding
$757.5MKey Investors
Spark CapitalIKS HealthWittington Ventures
2025-06-24Series E· $300M
2025-02-17Series D· $250M
2024-02-23Series C· $150M
Leadership Team
Jonathan Lydon
VP People
Recent News
MedCity News
2026-01-07
HospitalManagement.net
2025-12-24
Company data provided by crunchbase