Senior Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Metriport · 7 hours ago

Senior Security Engineer

positionSan Francisco, CA
timeFull-time
remoteHybrid
senioritySenior Level
money$160K/yr - $220K/yr
date6+ years exp

Metriport is an open-source data intelligence platform that helps healthcare organizations access and exchange patient data in real-time. The role involves leading security projects, evangelizing security practices across the team, and ensuring the security of the platform while maintaining efficiency.

Developer ToolsHealth CareOpen SourceSoftware

Responsibilities

Evangelizing security across Metriport’s growing team - we will look to you for guidance, and training
Driving full-stack security projects , big and small, end-to-end from ideation to production rollout.These projects could include things like:
Implement an enterprise-grade audit logging solution for a new national healthcare network infrastructure stack
Implement fine grained RBAC on the API key access layer, and more robust roles on our UIs
Help us revamp our internal security policies and put tools in place to keep the platform, and employees, secure while still allowing the team to be efficient
Helping the engineering team with PR reviews with a security-focused lens
Work with the Go to Market team to complete customer security assessments and questionnaires
Work with the engineering team to harden security across the development lifecycle - think secret management, access controls, and vulnerability scanning
Managing your own work in Linear
Participating in bi-weekly sprint planning / retro sessions, and quarterly planning sessions
Attending a daily 30 minute remote stand-up at 7:30am PST Mon-Fri (our only regular mandatory meeting)

Qualification

Security engineering experienceHIPAA complianceSecurity frameworks SOC 2Security frameworks NISTCloud security (AWS)Data protection technologiesSecret managementSCASASTDAST in CICDMobile Device Management (MDM)AuthenticationEncryptionSoft skills

Required

You have 6+ years experience in security engineering and information security
You're located in San Francisco or the Bay Area (or willing to relocate)
Familiar with HIPAA compliant environments
Experience rolling out and maintaining security frameworks like SOC 2, NIST, HITRUST, FedRAMP, etc
Experience rolling out data protection technologies like SSO, MFA, VPN, FIPS, etc
Experience with organizational secret management
Experience implementing SCA, SAST, DAST in CICD workflows
Experience with Mobile Device Management (MDM)
Proficiency in cloud security & networking on AWS - IAM, WAF, KMS, etc
Proficiency in authentication, cryptography, encryption, and security protocols such as: mTLS, RSA, SSL, HMAC, RBAC, etc

Preferred

Bonus: experience with IHE profiles (ATNA, CT, XUA)

Benefits

Competitive equity + compensation package 🚀
Full family Platinum health insurance, dental, and vision coverage 🦷
401(k) retirement plan + matching 💰
Flexible work from home or in-office 🏢
Healthy lunches are complimentary when working in-office (and breakfast + dinners as needed) 🍏
Quarterly company off-sites with the team ⛷️
MacBook provided by us 💻
Unlimited PTO (we work hard, but trust you to take time you need to be at your best) 🧘‍♂️

Company

Metriport

twittertwittertwitter
company-logo
Metriport is an open-source platform that makes it easy for healthcare organizations to access and exchange medical data for their patients.
dateFounded in 2022
location
San Francisco, California, USA
people-size11-50 employees
web-link
https://metriport.com/

Funding

Current Stage
Early Stage
Total Funding
$2.4M
2022-12-21Seed· $2.4M

Leadership Team

leader-logo
Dima Goncharov
Co-Founder & CEO
linkedin
leader-logo
Colin Elsinga
Co-Founder & COO
linkedin

Recent News

PR Newswire
Certiport Names 2025 Microsoft Office Specialist U.S. National Champions
2025-06-21
Company data provided by crunchbase