Senior Application Security Engineer

abridgeabridge·Remote(United States)
Cybersecurity
Excel

WFA Digital Insight

As demand for healthcare security specialists continues to grow, with the global market expected to reach

3.8 billion by 2027, experienced professionals like Senior Application Security Engineers are in high demand. Abridge, a pioneer in AI-powered healthcare solutions, is seeking a skilled engineer to drive security initiatives and shape the company's secure software development lifecycle. With the rise of remote work, companies are looking for experts who can work seamlessly across teams and geographies, making this role an exciting opportunity for those with strong technical and communication skills. Before applying, candidates should be aware of the company's commitment to innovation and customer satisfaction, as well as the need for collaboration and adaptability in a rapidly evolving industry.

Job Description

About the Role

The Senior Application Security Engineer will play a crucial role in building out security from the ground up at abridge, a leading AI-powered healthcare solutions provider. As one of the first engineers on the Abridge Security team, this individual will drive key initiatives, shape the product, infrastructure, and engineering practices, and impact both the vision and hands-on execution of the secure software development lifecycle (SDLC) across the entire product portfolio.

The ideal candidate will have deep technical expertise, a builder's mindset, and excellent communication skills to influence security culture across the organization. This role requires collaboration with product and engineering teams to integrate security seamlessly, automate security capabilities and controls, and mentor others to build secure-by-default systems at scale in the age of AI.

Abridge is committed to powering deeper understanding in healthcare through its AI-powered platform, which improves clinical documentation efficiencies and enables clinicians to focus on patient care. The company's enterprise-grade technology transforms patient-clinician conversations into structured clinical notes in real-time, with deep EMR integrations.

What You Will Do

  • Lead threat modeling and design reviews for complex systems, new products, and platform initiatives, providing expert guidance and requirements to meet Abridge's security goals
  • Define and implement the technical roadmap for the Application Security program, focusing on scalable assurance, proactive security measures, and setting clear standards and guardrails
  • Mentor and enable product and engineering teams, providing guidance on security features, product defense, secure coding practices, application architecture, and vulnerability remediation strategies
  • Conduct training and awareness programs to build a foundation of security best practices across the engineering organization
  • Perform and lead in-depth secure code reviews to identify complex security vulnerabilities and flaws, including logic and authorization vulnerabilities
  • Lead internal penetration testing engagements for net new products and historical systems to identify security risks across the environment
  • Design and enhance the end-to-end vulnerability management program for Abridge's products and applications
  • Serve as an expert on Abridge's products and applications for the security incident response team, assisting in incident response and remediation efforts

What We Are Looking For

  • Deep technical expertise in application security, with a strong understanding of secure software development lifecycle (SDLC) principles and practices
  • Experience with threat modeling, security architecture, and secure coding practices
  • Excellent communication and collaboration skills, with the ability to influence security culture across the organization
  • Experience with vulnerability management, penetration testing, and incident response
  • Strong analytical and problem-solving skills, with the ability to analyze complex security issues and develop effective solutions
  • Experience with AI-powered healthcare solutions and enterprise-grade technology
  • Strong understanding of Excel and its applications in security and data analysis

Nice to Have

  • Experience with cloud-based security solutions and infrastructure
  • Familiarity with DevOps and agile development methodologies
  • Certification in application security, such as OSCP or CISSP

Benefits and Perks

  • Competitive compensation and benefits package
  • Opportunity to work with a cutting-edge AI-powered healthcare solutions provider
  • Collaborative and dynamic work environment with a team of experienced professionals
  • Professional development and growth opportunities
  • Flexible working hours and remote work options
  • Access to the latest security tools and technologies
  • Recognition and reward for outstanding performance and contributions

How to Stand Out

  • Familiarize yourself with the latest security tools and technologies, including AI-powered solutions, to stay ahead of the curve in application security.
  • Develop a strong understanding of secure software development lifecycle (SDLC) principles and practices to improve your chances of success in this role.
  • Highlight your experience with threat modeling, security architecture, and secure coding practices in your application and be prepared to discuss these topics in detail during the interview process.
  • Be prepared to provide examples of your analytical and problem-solving skills, and how you have applied these skills to complex security issues in the past.
  • Research abridge and its commitment to innovation and customer satisfaction to demonstrate your understanding of the company's mission and values.
  • Prepare to discuss your experience with AI-powered healthcare solutions and enterprise-grade technology, and how you can apply this experience to drive security initiatives at abridge.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.