Skip to content
AbridgeAbridgeSan Francisco, CA

Senior/Staff Application Security Engineer

Leads application security initiatives including threat modeling, secure code reviews, penetration testing, and vulnerability management for AI healthcare platform. Mentors engineering teams on secure practices with 7+ years experience in AppSec, cloud, and AI security.

214k – 252k
Hybrid7+ YOESecurity Engineering

About the role

What You’ll Do

Secure Development & Architecture Leadership

  • Lead Threat Modeling and Design Reviews: Impact the product from ideation through to code that is shipping to production. Conduct advanced threat modeling and security architecture reviews for complex systems, new products, and platform initiatives, providing expert guidance and requirements to meet Abridge’s security goals.
  • Define Security Strategy: Define and implement the technical roadmap for the Application Security program, focusing on scalable assurance, proactive security measures, and setting clear standards and guardrails.
  • Mentor and Enable: Act as a subject matter expert and trusted advisor to product and engineering teams, providing mentorship on security features, product defense, secure coding practices, application architecture, and vulnerability remediation strategies.
  • Conduct Training & Awareness: Develop training materials for engineers to build a foundation of security best practices across the engineering organization.

Vulnerability Management & Incident Response

  • Code and Security Reviews: Perform and lead in-depth secure code reviews (both manual and tool-assisted) to identify complex security vulnerabilities and flaws, including logic and authorization vulnerabilities that automated tools often miss. Get hands on with assessing AI models, agents, and architectures.
  • Internal Penetration Testing: Lead internal penetration testing engagements for net new products and historical systems identify security risks across our environment.
  • Vulnerability Program Oversight: Design and enhance the end-to-end vulnerability management program for Abridge’s products and applications, ensuring timely identification, prioritization, and remediation of critical security issues while doing so in as developer-friendly a way as possible.
  • Security Incident Response: Serve as an expert on Abridge’s products and applications for the security incident response team, assisting in investigating and resolving security events and incidents.

Skills

Threat ModelingSecure Code ReviewPenetration TestingKubernetesGCPPythonNext.jsIAMRBACAbacApplied CryptographyAi SecurityMl SecurityVulnerability ManagementSDLC
Abridge

Senior/Staff Infrastructure Security Engineer

AbridgeSan Francisco, CA +1

Senior/Staff Infrastructure Security Engineer building self-service security platforms, automating DevSecOps workflows, and designing high-scale security data pipelines and IaC guardrails in a greenfield cloud-native environment at an AI healthcare company. Requires 8+ years software engineering experience with deep cloud and IaC expertise.

214k – 252k
Remote8+ YOESecurity Engineering
Crusoe

Staff Software Engineer, Security

CrusoeSan Francisco, CA

Staff Security Software Engineer designing and building scalable security infrastructure, identity systems, and compliance automation platforms. Requires 8+ years software engineering experience with deep Kubernetes, Go/Rust, and cloud platform expertise.

215k – 260k
On-site8+ YOESecurity Engineering
Reddit

Staff Software Engineer, Identity & Access Management

RedditUnited States

Staff Software Engineer on the IAM team designing, delivering, and supporting digital identity, authentication, and access systems. Requires 10+ years backend experience, deep IAM expertise, and proficiency in Go/Python/Java/TypeScript.

217k – 304k
Remote10+ YOESecurity Engineering
Reddit

Staff Product Security Engineer

RedditUnited States

Leads design and delivery of secure frameworks, guardrails, and workflow-native controls to prevent vulnerabilities in production, especially for AI-assisted development. Requires 8+ years in software/product security, staff-level impact, and proficiency in Go, Python, or JS/TS.

217k – 304k
Remote8+ YOESecurity Engineering
Databricks

Senior Staff Software Engineer - Security Infrastructure

DatabricksBellevue, WA

Leads security infrastructure engineering at Databricks, plugging critical gaps in large-scale systems, with 15+ years experience in distributed systems and 9+ in data security areas like Kubernetes security and cryptography. Requires MS/PhD and strong leadership.

217k – 288k
On-site15+ YOESecurity Engineering