Job Description

Pomelo Care is seeking an experienced cybersecurity engineer to mature our security practices and contribute to our mission to ensure that our patients, clinicians and partners trust us implicitly. As a Staff Security Engineer at Pomelo Care, you'll be a key player in shaping our security posture, safeguarding sensitive healthcare data and enabling our engineering teams to build secure and compliant products.

Responsibilities

• Lead and execute critical cybersecurity initiatives
• Develop and implement security solutions and frameworks
• Collaborate cross-functionally with engineering, product, compliance and executive teams
• Own and continuously improve secure software development lifecycle (SDLC) processes and tools
• Serve as a subject matter expert and mentor
• Participate directly in incident response activities, investigations and post-incident analysis

Requirements

• 10+ years of hands-on experience in cybersecurity with a robust software engineering foundation
• Direct hands-on expertise in at least 2-3 key security areas
• Curiosity and openness to learn new cybersecurity domains
• Direct experience working in some parts of the full technology stack including Google Cloud Platform (GCP), Kotlin, React/Next.js, Swift, Expo, XCode, Android Studio, yarn, npm, Code Build, among others
• Previous cybersecurity experience within healthcare environments and startups
• Strong technical background including full stack software development, system architecture and security fundamentals
• Proven ability to thrive in agile environments
• Strong problem-solving skills, excellent communication abilities, and a collaborative mindset
• Relevant industry certifications (e.g., CISSP, CISM, CCSP) are highly desirable
• Exceptional communication skills and the ability to convey complex security concepts to non-technical stakeholders

Benefits

• No benefits