What you’ll do at Headway
- Partner with Product and Engineering on new product launches with rich data components: participate in implementation efforts, conduct security reviews, help with product design decisions, audit and surface vulnerabilities in current products.
- Build Agentic Security Tooling: develop agentic workflows (beyond rules-based automation) to address code problems at scale across the growing codebase; define what AI-native product security looks like.
- Make the safe way the easy way: define and build application guardrails so developers build securely by default; instill a culture of secure development across engineering.
- Assist in ongoing security operations: incident response, vulnerability management, penetration testing, security reviews, and other operational tasks to maintain a world-class security program.
You’ll be great for this role if you have
- 5+ years experience in security and/or software engineering roles with a demonstrated history of working on security-related projects or with responsibilities as a security generalist (0→1 security experience).
- Strong cross-functional experience partnering with other teams.
- Strong technical depth and breadth: experience building secure platforms and products, performing security design and code reviews, understanding and improving security systems for efficiency and scalability.
- Excited by AI’s potential to reshape product security and desire to be at the forefront.
- Thrive in ambiguity in a fast-paced environment with an optimistic attitude.
- Seek opportunities to lead the industry in implementing latest security and privacy technologies.
- Results driven with deep care for creating impact.
- Mission driven by increasing access to high quality mental health care.
Tools we use
- Cloud Security: Lacework
- Languages: Python 3, TypeScript
- Libraries: FastAPI, SQLAlchemy, React
- Datastores: Postgres, Redis
- Infrastructure: AWS (Fargate, ECS, S3, and more), Spark and Kafka
- Monitoring: Datadog, PagerDuty
- Version Control: Github
- Vulnerability Management: Snyk, Semgrep
Compensation & Benefits
Expected base pay range: $218,500 - $273,125 (based on qualifications, experience, and location). Eligible for equity grant. Comprehensive benefits include medical, dental, vision, HSA/FSA, 401K, work-from-home stipend, therapy reimbursement, 16-week parental leave, Carrot Fertility, 13 paid holidays + Holiday Break, flexible PTO, EAP, training and professional development.