Senior Application Security Engineer

Posted Apr 29

Alma is seeking a mission-driven Security Engineer to join our team. We are dedicated to building secure and compliant tools and services which help providers more easily manage and grow their practice. In this role, you will help validate that our services, applications and web technologies are designed and implemented in a way that meets Alma’s security standards. You will help analyze, discover and address security issues across our technical platform.

On this scaling team, you will have a strong hand in defining how Alma's engineering team approaches application security in the software development process. The ideal person for this role loves to work with other teams to design and build amazing security controls and automation.  

What you’ll do:

  • Develop, execute and track the performance of security measures to protect Alma’s data, applications, and systems.
  • Gain a deep understanding of Alma’s systems and architecture and the software development processes used to develop it.
  • Collaborate with teammates, PMs, and peers to design, develop and implement engineering’s technical security strategy and architecture.
  • Collaborate with the Platform Infrastructure team to configure, troubleshoot, and maintain a security infrastructure that monitors and protects against security breaches and intrusions.
  • Continually research current and emerging security threats and technologies, proposing changes and guidance that are most impactful.
  • Develop appropriate technical solutions along with the latest security tools that help mitigate security vulnerabilities and also help automate repeatable activities.
  • Provide high-quality documentation and training to engineers to set them up for success.
  • Educate and train Alma engineering on information system security best practices.

Who you are:

  • You have 4+ years of experience working with web technologies and information security.
  • You strongly understand the security best practices for the development lifecycle (SDLC).
  • You have experience identifying security issues through threat modeling and code reviews.
  • You have experience building and maintaining security systems that can scale, with high levels of automation.
  • You strongly understand AWS security.
  • You have familiarity with common security libraries and tools.
  • You have strong communication skills and can convey complex technical topics to non-technical stakeholders clearly and concisely.
  • You enjoy user-centered software development and actively work closely with a team of engineers, designers, and product managers.

Benefits:

  • We’re a remote-first company 
  • Health insurance plans through Cigna (medical and dental) and MetLife (vision), including FSA & HSA plans
  • 401k plan (Roth and traditional)
  • Free Alma platform access 
  • Monthly therapy and wellness stipends
  • Monthly co-working space membership stipend
  • Monthly work-from-home stipend to power your wifi, lunches, coffee, etc 
  • Pet discount program through United Pet Care 
  • Financial perks and rewards through BenefitHub
  • Free EAP access through LifeWorks 
  • One-time home office stipend to set up your home office
  • Comprehensive parental leave plans 
  • 9 paid holidays, 1 Alma Mental Health Day, and 1 Alma Volunteering Day
  • Unlimited PTO

Salary Band: $160,000 - $200,000

Alma’s compensation philosophy is driven by our company value of building equity. To best ensure pay equity, we typically bring in new hires near the middle of our listed salary bands and we do not negotiate our compensation (i.e. all people hired at the same level & role are brought in at the same salary, equity, and benefits). The recruiter you work with can provide more details on our philosophy. 

All Alma jobs are listed on our careers page. We do not use outside applications or automated text messaging in our recruiting process. We will not ask for any sensitive financial or identification information throughout the recruiting process. Any communication during the recruitment process, including interview requests or job offers, will come directly from a recruiting team member with a helloalma.com email address.