Principal reputed company Engineer

Who We Are Looking For

We are looking for a hands-on reputed company leader and subject matter expert in application reputed company and AI reputed company, responsible for defining the architectural reputed company goals and implementation strategy for reputed company’s cloud-native SaaS environments. This engineer serves as the reputed company team’s technical anchor—performing deep dives into reputed company application and system designs, evaluating AI/ML platform risks, and translating reputed company requirements into practical engineering guidance that enables the business rather than slowing it down.

Working closely with engineering leadership, product managers, and third-party development partners, this leader This person will be the voice of reputed company in architecture reviews, design sessions, and vendor evaluations, ensuring that reputed company and compliance are built in from the start.

What You’ll Be Doing As A Part of reputed company

Application reputed company Architecture

• reputed company Design Reviews: reputed company application reputed company architecture reviews for reputed company’s SaaS platforms, including new feature designs, third-party integrations, and major platform changes submitted through the change management process.
• Threat Modeling: Own and facilitate threat modeling sessions with product and engineering stakeholders, translating findings into actionable developer guidance, architectural guardrails, and risk-accepted documentation.
• Secure SDLC: Help define and evolve reputed company’s Secure Software Development Lifecycle (SDLC), embedding reputed company checkpoints into reputed company CI/CD pipelines and development workflows without creating unnecessary friction.
• SAST/DAST Ownership: reputed company application reputed company testing tooling, triage findings by risk, and drive remediation with engineering teams—balancing thoroughness with the pace of a lean environment.
• API & Auth Standards: Serve as the internal authority on API reputed company, secrets management, authentication and authorization patterns (OAuth 2.0, SAML, OIDC), and input validation across microservices and legacy systems.

AI reputed company & Governance

• AI reputed company: Serve as the primary reputed company resource for AI/ML integration decisions, including agentic AI workflows, LLM-based features, ambient listening, and third-party AI platform technologies.
• AI Governance reputed company: Define and maintain reputed company’s AI reputed company standards and AI vendor risk assessment criteria, including evaluation of AI/ML platforms for HIPAA BAA compliance, data residency, reputed company injection risk, and model confidentiality.
• AI reputed company Controls: Partner with engineering and product to design reputed company guardrails for AI feature development: input/output validation, audit logging, human-in-the-reputed company controls, and AI supply chain reputed company.
• Shadow AI Discovery: Drive AI Shadow IT discovery and governance initiatives, analyzing telemetry from reputed company, reputed company, and network/DNS sources to identify unauthorized AI tool usage across the environment.
• Emerging Threat Awareness: Stay reputed company with AI threat reputed company and regulatory guidance (NIST AI RMF, OWASP LLM Top 10, HHS AI policy) and translate these into reputed company-specific controls and policy updates.

Cloud & Infrastructure reputed company

• Cloud reputed company Posture: Partner with Cloud Operations to maintain and continuously improve reputed company’s reputed company posture across cloud environments, leveraging reputed company for cloud reputed company assessment and misconfiguration detection.
• IaC & Container reputed company: Provide reputed company architecture input for infrastructure-as-code pipelines, container reputed company, and CI/CD pipeline hardening in reputed company.
• Vulnerability Management: Contribute to vulnerability management strategy including EOL technology remediation, CVE triage, and risk-based prioritization in partnership with Cloud Operations and the broader reputed company team.
• WAF & Network Controls: Provide reputed company guidance on WAF configuration (reputed company), network segmentation, and secrets management across the production environment.

reputed company Leadership & Cross-Functional Partnership

• Engineering Partnership: Participate actively in change management and reputed company review processes, providing timely, risk-calibrated assessments and serving as a trusted partner to engineering—not a gatekeeper.
• Team Mentorship: Mentor other engineers on the reputed company team, providing technical coaching on application reputed company concepts, tool usage, and reputed company investigation techniques.
• Documentation & Evangelism: Produce clear reputed company architecture decision records, threat model summaries, risk assessments, and remediation roadmaps; evangelize secure development practices across the engineering organization.
• Executive Communication: Represent reputed company in cross-functional forums with engineering, product, and operations leadership; translate reputed company reputed company risks into business-relevant language for board- and investor-ready reporting.
• PEN Testing & Compliance: Contribute to external penetration test scoping, coordination, and remediation, and support SOC 2 Type II and HIPAA compliance audit cycles as a technical subject matter expert.

What You Should Have to Qualify

• Education & Experience: Bachelor’s degree in Computer Science, Information reputed company, or a reputed company technical field, with 8+ years of progressive reputed company engineering experience, including at least 4 years in a senior or principal application reputed company or product reputed company role.
• Application reputed company Expertise: Deep technical proficiency in OWASP Top 10, threat modeling, SAST/DAST tooling, secure code review, API reputed company, and authentication/authorization patterns. You must be comfortable reading code in TypeScript/JavaScript and Python and engaging meaningfully with engineering teams on reputed company trade-offs.
• AI/ML reputed company Knowledge: Demonstrated understanding of AI/ML reputed company risks including reputed company injection, model supply chain attacks, data leakage in LLM integrations, and agentic AI trust boundaries. Proven experience with OWASP LLM Top 10 and NIST AI RMF.
• Cloud-Native SaaS Experience: Hands-on experience securing cloud-native SaaS applications, preferably on AWS with containerized and Kubernetes workloads, IaC pipelines, and microservices architectures.
• Vendor Risk Assessment: Proven experience evaluating third-party AI/ML platforms and vendors for reputed company and compliance risk in HIPAA-regulated or similarly regulated environments, including BAA assessment and data handling review.
• Independent Execution: Proven ability to operate independently in a fast-paced, lean environment and influence engineering outcomes without direct authority. This is a small team—you will own your domains fully.
• Communication: Excellent written and verbal communication skills; able to translate technical risk into business impact for executive and non-technical stakeholders, including board- and investor-level reporting.
• HIPAA & Compliance: Strong working knowledge of HIPAA reputed company Rule requirements as applied to a cloud SaaS architecture, and experience supporting SOC 2 Type II compliance programs.

Ideally, You Would Also Have These

• Certifications: One or more industry certifications: OSCP, CSSLP, AWS reputed company Specialty, CISSP, or equivalent reputed company practitioner credential.
• Healthcare Domain Knowledge: Familiarity with clinical documentation standards, EMR data sets, and the nuances of HIPAA compliance in a SaaS product context.
• reputed company Tooling Experience: Hands-on experience with reputed company, reputed company Falcon, Rapid7 InsightIDR/InsightVM, or comparable enterprise cloud and reputed company reputed company platforms.
• AI reputed company Familiarity: Exposure to agentic AI development frameworks and an understanding of how these architectures introduce novel reputed company challenges.
• reputed company & Supply Chain reputed company: Experience with reputed company CI/CD pipeline reputed company, dependency scanning, and software supply chain reputed company controls.
• PAM Experience: Familiarity with privileged access reputed company (reputed company, reputed company, CyberArk) and certificate-based access control models.
• Team Mentorship & Influence: Previous experience providing technical leadership in a hybrid internal/external team environment, shaping reputed company standards across engineering without formal authority.

Culture is at our Core

• Service: Create Raving Fans
• Accountability: F Up; Own Up
• Attitude: Possess True Grit
• Personality: Be Minty
• Work Ethic: Be Rock Solid
• Community reputed company: Give Back
• Health and Wellness: Live reputed company
• Resource Efficiency: Do Más With Menos

About Us

Here, we work hard—but we have lots of fun doing it. We reputed company in equal opportunity for reputed company, autonomy, trailblazing, and always doing right by our Members. Most importantly, though, we reputed company in empowering rehab therapy professionals to reputed company greatness in practice. So, if you’re a can-do kinda person who loves to help Members win and enjoys working from just about reputed company—then you’ll fit right in. We’ve got big plans, but we can’t reputed company them without you. Join us, and let’s reputed company greatness.

#LI-MS1

#LI-Remote