Skip to content
HeadwayHeadwayNew York, NY

Senior Security Engineer

Senior Security Engineer partnering with product and engineering teams to design and implement secure features, build AI-native/agentic security tooling, create developer guardrails, and handle security operations at a mental healthcare platform company. Requires 5+ years in security/software engineering, strong technical depth, and excitement about AI in security.

223k – 279k
Hybrid5+ YOESecurity Engineering

About the role

What you’ll do at Headway

  • Partner with Product and Engineering on new product launches with rich data components: participate in implementation efforts, conduct security reviews, help with product design decisions, audit and surface vulnerabilities in current products.
  • Build Agentic Security Tooling: develop agentic workflows (beyond rules-based automation) to address code problems at scale across the growing codebase; define what AI-native product security looks like.
  • Make the safe way the easy way: define and build application guardrails so developers build securely by default; instill a culture of secure development across engineering.
  • Assist in ongoing security operations: incident response, vulnerability management, penetration testing, security reviews, and other operational tasks to maintain a world-class security program.

You’ll be great for this role if you have

  • 5+ years experience in security and/or software engineering roles with a demonstrated history of working on security-related projects or with responsibilities as a security generalist (0→1 security experience).
  • Strong cross-functional experience partnering with other teams.
  • Strong technical depth and breadth: experience building secure platforms and products, performing security design and code reviews, understanding and improving security systems for efficiency and scalability.
  • Excited by AI’s potential to reshape product security and desire to be at the forefront.
  • Thrive in ambiguity in a fast-paced environment with an optimistic attitude.
  • Seek opportunities to lead the industry in implementing latest security and privacy technologies.
  • Results driven with deep care for creating impact.
  • Mission driven by increasing access to high quality mental health care.

Tools we use

  • Cloud Security: Lacework
  • Languages: Python 3, TypeScript
  • Libraries: FastAPI, SQLAlchemy, React
  • Datastores: Postgres, Redis
  • Infrastructure: AWS (Fargate, ECS, S3, and more), Spark and Kafka
  • Monitoring: Datadog, PagerDuty
  • Version Control: Github
  • Vulnerability Management: Snyk, Semgrep

Compensation & Benefits

Expected base pay range: $218,500 - $273,125 (based on qualifications, experience, and location). Eligible for equity grant. Comprehensive benefits include medical, dental, vision, HSA/FSA, 401K, work-from-home stipend, therapy reimbursement, 16-week parental leave, Carrot Fertility, 13 paid holidays + Holiday Break, flexible PTO, EAP, training and professional development.

Skills

Security EngineeringApplication SecurityProduct SecurityPythonTypeScriptAWSLaceworkSnykSemgrepFastAPIReactIncident ResponseVulnerability ManagementPenetration Testing
Teleport

Senior Backend Engineer - Platform Security

TeleportUnited States

Senior Backend Engineer focused on application security for Teleport's core product. Design and implement security controls in Go for distributed systems, collaborating with security researchers on vulnerabilities.

222k – 342k
Remote5+ YOESecurity Engineering
Semgrep

Senior Security Engineer

SemgrepSan Francisco, CA +3

Senior Security Engineer embeds with engineering teams to enhance cloud and product security, leads production security improvements, and implements secure platform features using AWS/GCP. Requires 7+ years in security engineering with strong software background.

222k – 278k
Hybrid7+ YOESecurity Engineering
Harvey

Trust Engineer

HarveySan Francisco, CA

As a Trust Engineer, you will be the engineering backbone of Harvey's compliance and assurance programs, building data infrastructure, automation tooling, and AI-powered workflows to scale audit readiness, continuous monitoring, and risk reporting.

220k – 330k
Hybrid6+ YOESecurity Engineering
Apollo

Engineering Manager, Security Detection & Response

ApolloUnited States

Lead a remote Security Detection & Response team at Apollo.io. Hands-on manager responsible for detection engineering, incident response, Panther content, Python automation, AI triage workflows, and cross-functional security improvements in a cloud/SaaS environment. Requires 5+ years security engineering experience and 2+ years people management.

225k – 282k
Remote7+ YOESecurity Engineering
Vanta

Senior Security Engineer

VantaUnited States

Senior Security Engineer owning risk identification, threat modeling, vulnerability management, and secure architecture projects. Partners with engineering to build security culture and tools while minimizing operational friction. Requires independent ownership, software development experience, and strong collaboration skills.

227k – 267k
Remote5+ YOESecurity Engineering