Senior/Staff Application Security Engineer jobs in United States
info-icon
This job has closed.
company-logo

Abridge · 2 weeks ago

Senior/Staff Application Security Engineer

positionNew York, NY
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$214K/yr - $252K/yr
date7+ years exp

Abridge is a healthcare technology company focused on improving clinical documentation efficiencies through AI-powered solutions. They are seeking a highly experienced Senior or Staff Application Security Engineer to lead security initiatives, mentor teams, and ensure secure software development practices across their product portfolio.

Artificial Intelligence (AI)Health CareIntelligent SystemsMachine LearningMedical
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Lead Threat Modeling and Design Reviews: Impact the product from ideation through to code that is shipping to production. Conduct advanced threat modeling and security architecture reviews for complex systems, new products, and platform initiatives, providing expert guidance and requirements to meet Abridge’s security goals
Define Security Strategy: Define and implement the technical roadmap for the Application Security program, focusing on scalable assurance, proactive security measures, and setting clear standards and guardrails
Mentor and Enable: Act as a subject matter expert and trusted advisor to product and engineering teams, providing mentorship on security features, product defense, secure coding practices, application architecture, and vulnerability remediation strategies
Build Security Pipelines & Key Capabilities: Design, implement, and maintain advanced security automation tools and services, integrating them seamlessly into CI/CD pipelines (e.g., automated SAST, DAST, SCA, IaC, WAF, etc.)
Tool Management & Tuning: Own the deployment, configuration, and maintenance of AppSec tooling, tuning scanners and custom rules to reduce false positives and maximize efficacy across various technology stacks
Drive Proactive Security: Develop custom scripts and tooling to automate repetitive security tasks, accelerate vulnerability detection, and enforce policy-as-code across the development environment
Code and Security Reviews: Perform and lead in-depth secure code reviews (both manual and tool-assisted) to identify complex security vulnerabilities and flaws, including logic and authorization vulnerabilities that automated tools often miss. Get hands on with assessing AI models, agents, and architectures
Vulnerability Program Oversight: Working with the AppSec team, oversee the end-to-end vulnerability management program for Abridge’s products and applications, ensuring timely identification, prioritization, and remediation of critical security issues while doing so in as developer-friendly a way as possible
Security Incident Response: Serve as an expert on Abridge’s products and applications for the security incident response team, assisting in investigating and resolving security events and incidents

Qualification

Application SecurityThreat ModelingSecurity AutomationVulnerability ManagementProgramming FluencyCloud SecurityDevSecOpsCross-Functional InfluenceData-Driven SecurityMentorship

Required

Experience: 7+ years of direct experience in an Application Security role, with a demonstrated history of designing and implementing security improvements at scale
Programming Fluency: Deep proficiency in one or more major programming languages (Python and NextJS a big plus) and a solid background in software development principles
Cloud & Containers: Extensive experience securing applications deployed in Cloud environments (GCP a big plus) and knowledge of containerization technologies (Kubernetes)
Technical Depth: Expert-level knowledge of web application security techniques and principles, APIs, IAM (including identity, authentication/authorization, RBAC, ABAC), applied cryptography, etc
SDLC/DevSecOps: Hands-on experience integrating security testing and tooling (SAST, DAST, SCA, IaC, WAF, etc.) and gates into modern development workflows and CI/CD systems

Preferred

AI Security: Deep understanding of the security of AI and ML models, agents, and associated systems
Security Research: Proven experience contributing to or leveraging open-source security tools, publishing security research, managing bug bounty programs, and active engagement in the security industry
Cross-Functional Influence: Demonstrated ability to drive large, cross-functional technical projects that impact security posture across the entire organization
Data-Driven Security: Experience defining and utilizing security metrics to measure and report on the effectiveness of the AppSec program to both technical and executive audiences

Benefits

Generous Time Off: 14 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees
Comprehensive Health Plans: Medical, Dental, and Vision coverage for all full-time employees and their families.
Generous HSA Contribution: If you choose a High Deductible Health Plan, Abridge makes monthly contributions to your HSA.
Paid Parental Leave: Generous paid parental leave for all full-time employees.
Family Forming Benefits: Resources and financial support to help you build your family.
401(k) Matching: Contribution matching to help invest in your future.
Personal Device Allowance: Tax free funds for personal device usage.
Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Lifestyle Wallet: Monthly contributions for fitness, professional development, coworking, and more.
Mental Health Support: Dedicated access to therapy and coaching to help you reach your goals.
Sabbatical Leave: Paid Sabbatical Leave after 5 years of employment.
Compensation and Equity: Competitive compensation and equity grants for full time employees.

Company

Abridge

twittertwittertwitter
company-logo
Abridge is an AI-driven platform that transforms patient-clinician conversations into structured clinical notes for healthcare industries.
dateFounded in 2018
location
Pittsburgh, Pennsylvania, USA
people-size201-500 employees
web-link
https://www.abridge.com

H1B Sponsorship

Abridge has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (9)
2024 (1)
2022 (1)

Funding

Current Stage
Late Stage
Total Funding
$757.5M
Key Investors
Spark CapitalIKS HealthWittington Ventures
2025-06-24Series E· $300M
2025-02-17Series D· $250M
2024-02-23Series C· $150M

Leadership Team

leader-logo
Jonathan Lydon
VP People
linkedin

Recent News

Business Wire
Abridge and Availity Collaborate to Redefine Payer-Provider Synergy at the Point of Conversation
2026-01-13
MedCity News
The Revenue Cycle Needs Surgery, Not Band-Aids
2026-01-07
HospitalManagement.net
Northwell Health gains DOH approval for new pancreas transplant programme
2025-12-24
Company data provided by crunchbase