Job Description

Maven Clinic is seeking a Staff Security Engineer to design, implement, and maintain security infrastructure and automation, ensuring compliance with industry standards like HIPAA and SOC 2. The role involves leading threat modeling, embedding secure design patterns, and collaborating cross-functionally to enhance the company's security posture.

Responsibilities

• Design and implement scalable infrastructure for compliance
• Build and maintain identity and access management systems
• Implement observability and anomaly detection
• Establish Zero Trust principles
• Develop compliance dashboards and automated evidence collection
• Create self-service security tools
• Automate security processes
• Integrate software-supply-chain security
• Lead threat modeling and security architecture reviews
• Partner with product and data teams for secure design
• Ensure data encryption and secure handling
• Act as technical authority for security engineering
• Mentor peers and promote secure practices
• Partner cross-functionally on security strategy

Requirements

• 8+ years of software engineering experience (3+ in security)
• Proven ability to design large-scale systems
• Strong coding skills in Python, TypeScript, Go, or Rust
• Deep understanding of cloud security (GCP preferred)
• Experience with Kubernetes, containers, and Terraform
• Familiarity with security testing frameworks
• Excellent communication and documentation skills

Benefits

• No benefits