Arcadia28mo ago

USD 140000–175000/yr

Senior Engineer, Security (AppSec)

Remote (usa) · (usa)RemoteFull-time Remotesenior

SecurityOtherEngineer

0 views0 saves0 applied

Apply Now

Quick Summary

Requirements Summary

App

Technical Tools

SecurityOtherEngineer

Arcadia is dedicated to happier, healthier days for all. We believe that there is a better healthcare world – one powered by data. Our platform transforms complex, diverse data into a unified foundation for health, helping organizations deliver better care, boost revenue, and lower costs.

We’re a team of fiercely driven individuals committed to making healthcare more sustainable—and we’re looking for passionate people to help us get there.

For more information, visit arcadia.io.

Why This Role Is Important to Arcadia

Arcadia is seeking a Senior Engineer – Security (Application Security) to play a key hands-on role in protecting our cloud-native healthcare platform and the sensitive data entrusted to us. This role focuses on building, operating, and continuously improving application and cloud security controls while actively contributing to detection, incident response, and threat mitigation efforts.

This is a senior individual contributor role for a highly technical security engineer who thrives in execution-heavy environments. You will collaborate closely with peers across the organization to embed security into the development lifecycle, strengthen detection and response capabilities, and reduce risk across Arcadia’s SaaS platform in a highly regulated healthcare environment.

What Success Looks Like

In 3 months

- Gain a deep understanding of Arcadia’s application architecture, cloud environment, and security tooling

- Begin contributing to application security reviews, threat modeling, and vulnerability remediation

- Participate in active incident response and detection activities

- Build strong working relationships with Engineering, Infrastructure, and Security Assurance teams

In 6 months

- Independently own key application security controls and tooling

- Improve vulnerability detection, remediation workflows, and secure-by-default engineering patterns

- Contribute meaningfully to incident investigations, root cause analysis, and post-incident improvements

- Help mature security automation and security-as-code practices

In 12 months

- Be a trusted senior technical voice for application and cloud security

- Demonstrate measurable improvements in application security posture, detection coverage, and response effectiveness

- Help reduce security risk through improved design, automation, and operational discipline

Application & Cloud Security Engineering

Design, implement, and maintain application security controls across Arcadia’s cloud-native SaaS platform

Partner with Product and Engineering teams to embed security into system design, development workflows, and CI/CD pipelines

Conduct threat modeling, architecture reviews, and secure design assessments for new and existing services

Own and improve vulnerability management processes, including identification, prioritization, and remediation tracking

Implement and maintain security tooling such as SAST, DAST, dependency scanning, container scanning, and secrets detection

Detection, Response & Threat Analysis

Participate in security incident response activities including detection, investigation, containment, and remediation

Monitor and analyze logs, alerts, and security events to identify suspicious activity and emerging threats

Contribute to detection engineering by tuning alerts, improving signal quality, and reducing noise

Support threat intelligence analysis and apply insights to improve preventive and detective controls

Perform post-incident analysis and recommend technical and process improvements

Security Automation & Engineering Excellence

Build security-as-code solutions to automate control enforcement, validation, and remediation

Use scripting and automation to reduce manual effort and improve consistency

Support secure AWS architecture using services such as EKS, ECS, Lambda, IAM, and VPC

Contribute to identity and access management best practices across AWS, Okta/Auth0, and SaaS platforms

Compliance & Risk Enablement

Translate compliance requirements (e.g., SOC 2, ISO 27001, HITRUST, HIPAA) into practical technical controls

Partner with Security Assurance to support audits, evidence collection, and continuous control monitoring

Help identify and remediate security risks discovered through assessments, audits, or incidents

6+ years of experience in application security, cloud security, or security engineering roles

Strong hands-on experience securing cloud-native, SaaS-based environments (AWS required)

Solid understanding of:

Application security principles and common vulnerabilities (OWASP Top 10)

Secure software development practices and CI/CD integration

Cloud security architecture and IAM

Incident detection and response fundamentals

Experience with security tools such as SIEM, SAST/DAST, EDR, vulnerability scanners, and cloud security platforms

Ability to script and automate security workflows using Python, Bash, or similar languages

Strong analytical skills and the ability to clearly communicate security risks and recommendations

Experience in healthcare or other regulated industries

Familiarity with Kubernetes, container security, and modern DevSecOps tooling

Experience contributing to detection engineering or threat analysis efforts

Relevant certifications such as AWS Security Specialty, CISSP, CCSP, or GIAC certifications

A senior, high-impact security engineering role in a mission-driven healthcare company

The opportunity to work deeply hands-on with modern cloud and application security challenges

Be a part of a mission driven company that is transforming the healthcare industry by changing the way patients receive care 

A flexible, remote friendly company with personality and heart 

Employee driven programs and initiatives for personal and professional development  

Become a member of the talented, energized, diverse and purpose-driven Arcadian Community

Listing Details

Posted: December 13, 2023
First seen: March 26, 2026
Last seen: April 24, 2026

Posting Health

Days active: 28
Repost count: 0
Trust Level: 51%
Scored at: April 24, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust

Apply for this position

Arcadia

lever

Arcadia is a healthcare technology company that transforms data into actionable insights to accelerate healthcare transformation for providers, payers, and life sciences organizations.

Employees

350

Founded

2002

Jobs

View 15 jobs

View company profile

Salary

USD 140000–175000

per year

Apply now

External application · ~5 min on Arcadia's site