Senior Security Engineer II (Engineering & Tooling)
Job Summary
Job Description
Aledade is seeking a Senior Security Engineer II to design, implement, and maintain security systems and tooling across its infrastructure. The role requires a strong background in security engineering, in-depth knowledge of security tools, and a proactive approach to mitigating cybersecurity risks. Responsibilities include infrastructure security, architecture reviews, threat modeling, and implementing security tools. The engineer will leverage automation, manage advanced security tools like SIEM and EDR, integrate security tooling in cloud environments (AWS, Azure, GCP), and collaborate with cloud engineering teams. This position also involves leading the evaluation of new security technologies, developing secure configurations, automating security processes using scripting languages, and ensuring the effectiveness of vulnerability management programs. The role also includes providing technical leadership and mentoring junior members of the security engineering team.
Must have:
- 7+ years of experience in security engineering
- Strong understanding of Threat Modeling Principles
- Experience with SIEM, EDR, and vulnerability management tools
- Proficiency in securing cloud environments (AWS, Azure, GCP)
- Experience with automation tools and scripting (Python, PowerShell, Bash)
- Familiarity with DevSecOps and container security
- Bachelor's degree in Computer Science or related field (or equivalent experience)
Good to have:
- Experience with Datadog
- Experience in monitoring security tools and leading forensic investigations
- Experience with Zero Trust models and microsegmentation
- Knowledge of regulatory frameworks (PCI DSS, GDPR, HIPAA)
- Mentored junior engineers and provided technical leadership
- Strong analytical and problem-solving skills
- Previous experience in healthcare, finance, or government sectors
- Certifications (CISSP, GSEC, AWS Certified Security Specialty, CCNP, CEH)
Perks:
- Flexible work schedules
- Remote work available
- Health, dental, and vision insurance (80% paid)
- 21 days of PTO
- Two paid volunteer days
- 11 paid holidays
- 12 weeks paid parental leave
- Six weeks paid sabbatical after six years
- Educational Assistant Program
- Clinical Employee Reimbursement Program
- 401(k) with up to 4% match
- Stock options
20 skills required
Job Details
As a Senior Security Engineer you will design, implement, and maintain security systems and tooling across our infrastructure. The ideal candidate will have a strong background in security engineering, an in-depth understanding of security tools, and a proactive approach to mitigating cybersecurity risks. This role involves both hands-on technical work, working closely with cross-functional teams and strategic collaboration to enhance our overall security posture. This candidate will provide technical leadership and coach junior members of the security engineering team.
Primary Duties:
- Primary focus will be on infrastructure security through architecture reviews, threat modeling for new and existing services and security tool implementations, while leveraging automation to scale security solutions.
- Design, deploy, and manage advanced security tools, including SIEM, EDR, DLP, vulnerability management, and firewalls.
- Engineer solutions to integrate security tooling across cloud environments, ensuring seamless protection and visibility. Collaborate with cloud engineering teams to implement and secure cloud-native solutions (e.g., IAM, VPC, security groups, cloud firewalls), implement security controls for cloud infrastructure and containerized environments.
- Lead the evaluation, implementation, and configuration of new security technologies to address evolving threats and stay updated on emerging technologies, trends, and best practices in security engineering and tooling.
- Develop and maintain secure configurations for operating systems, applications, and networking equipment and Automate security processes using scripting languages (Python, PowerShell) and tools like Terraform or Ansible.
- Conduct security assessments and ensure vulnerability management programs are effective, addressing gaps proactively.
Minimum Qualifications:
- Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
- 7+ years of experience in security engineering, including designing and managing security tools.
- Strong understanding of Threat Modeling Principles
- Experience with Security Incident Response & Risk Management
- Strong hands-on expertise with SIEM (e.g., Splunk or Sumo logic), EDR (e.g., CrowdStrike, SentinelOne), and vulnerability management tools (e.g., Tenable, Qualys), Wiz, Snyk etc.
- Proficiency in securing cloud environments (AWS, Azure, or GCP), including experience with IAM, VPCs, security groups, EKS/ECR and cloud-native security solutions (e.g., AWS Security Hub, Azure Sentinel).
- Experience with automation tools IAC and CI/CD: Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD and scripting (Python, PowerShell, or Bash) for integrating and managing security solutions.
- Familiarity with DevSecOps practices, container security (e.g., Kubernetes, Docker), and CI/CD pipeline security.
- Proven track record in incident response, threat hunting, and forensic investigations.
- Certifications such as CISSP, GSEC, AWS Certified Security Specialty, or equivalent.
Preferred Knowledge, Skills, and/or Abilities:
- Strongly Preferred:
- Experience with Datadog for metrics and log analysis.
- Experience in monitoring security tools and leading forensic investigations and helping in incident response efforts.
- Experience with Security incident response & Risk Management.
- Stay updated on emerging technologies, trends, and best practices in security engineering and tooling.
- Experience with Zero Trust models, microsegmentation, and cloud-native security solutions (e.g., AWS Security Hub, Azure Sentinel).
- Knowledge of regulatory frameworks (e.g., PCI DSS, GDPR, HIPAA) and how to engineer tools to support compliance.
- Has mentored junior engineers and provided technical leadership for security-focused initiatives.
- Strong analytical and problem-solving skills, with excellent communication and documentation abilities.
- Previous experience in healthcare, finance, or government sectors, particularly in managing network security within compliance frameworks like HIPAA, PCI-DSS, or SOX.
- Preferred:
- Certifications such as CISSP, CCNP, CEH, or similar are strongly preferred.
Who We Are:
Aledade, a public benefit corporation, exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014, and since then, we've become the largest network of independent primary care in the country - helping practices, health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally, by creating value-based contracts across a wide variety of health plans, we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care, aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients, good for practices and good for society - and if you're eager to join a collaborative, inclusive and remote-first culture - you've come to the right place.
What Does This Mean for You?
At Aledade, you will be part of a creative culture that is driven by a passion for tackling complex issues with respect, open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences, interests, backgrounds, beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission.
In addition to time off to support work-life balance and enjoyment, we offer the following comprehensive benefits package designed for the overall well-being of our team members:
Flexible work schedules and the ability to work remotely are available for many roles
Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
Robust time-off plan (21 days of PTO in your first year)
Two paid volunteer days and 11 paid holidays
12 weeks paid parental leave for all new parents
Six weeks paid sabbatical after six years of service
Educational Assistant Program and Clinical Employee Reimbursement Program
401(k) with up to 4% match
Stock options
And much more!
At Aledade, we don’t just accept differences, we celebrate them! We strive to attract, develop and retain highly qualified individuals representing the diverse communities where we live and work. Aledade is committed to creating a diverse environment and is proud to be an equal opportunity employer. Employment policies and decisions at Aledade are based on merit, qualifications, performance and business needs. All qualified candidates will receive consideration for employment without regard to age, race, color, national origin, gender (including pregnancy, childbirth or medical conditions related to pregnancy or childbirth), gender identity or expression, religion, physical or mental disability, medical condition, legally protected genetic information, marital status, veteran status, or sexual orientation.
Privacy Policy: By applying for this job, you agree to Aledade's Applicant Privacy Policy available at https://www.aledade.com/privacy-policy-applicants
Similar Jobs
TALA
Manila, Metro Manila, Philippines (Remote)
• 1 Month ago
NVIDIA
Santa Clara, California, United States (Hybrid)
• 4 Months ago
FICO
Bengaluru, Karnataka, India (On-Site)
• 3 Months ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
Power Integrations
Pasig, Metro Manila, Philippines (On-Site)
• 1 Year ago
Abstraction Games
Eindhoven, North Brabant, Netherlands (Hybrid)
• 4 Months ago
Unity
London, England, United Kingdom (On-Site)
• 3 Months ago
Get notifed when new similar jobs are uploaded
Jobs in United States
Apple
Sunnyvale, California, United States (On-Site)
• 2 Months ago
The Walt Disney Company
Glendale, California, United States (On-Site)
• 9 Months ago
Luma
Palo Alto, California, United States (Hybrid)
• 6 Months ago
Qualcomm
San Diego, California, United States (On-Site)
• 1 Month ago
bytedance
San Jose, California, United States (On-Site)
• 4 Months ago
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
Optiv
San Francisco, California, United States (On-Site)
• 2 Months ago
Tencent
Shenzhen, Guangdong Province, China (On-Site)
• 2 Months ago
Devoteam
Barcelona, Catalonia, Spain (On-Site)
• 3 Months ago
Ethos Life
San Francisco, California, United States (On-Site)
• 4 Weeks ago
Get notifed when new similar jobs are uploaded
