Staff Security Engineer

Staff Security Engineer

Garner’s mission is to transform the healthcare economy, delivering high-quality and affordable care for all.

We are fundamentally reimagining how healthcare works in the U.S. by partnering with employers to redesign healthcare benefits using clear incentives and powerful, data-driven insights. Our approach guides employees to higher-quality, lower-cost care, creating a system that works better for everyone. Patients achieve better health outcomes, employers spend healthcare dollars more effectively, and physicians are rewarded for delivering exceptional care rather than performing more procedures.

Garner is one of the fastest-growing healthcare technology companies in the country. Our products are trusted by the most sophisticated employers and providers in the industry, and we are building a team of talented, mission-driven individuals who are motivated to make a meaningful impact on healthcare at scale.

About the role

We are seeking an exceptional Staff Security Engineer to serve as a technical anchor for our security function. This role is critical for leading technical design reviews and ensuring our security posture scales alongside our rapid customer growth. You will be responsible for defining the security standards that protect sensitive healthcare data, ensuring our systems are resilient against evolving threats while maintaining high engineering velocity.

Where you will work

Garner is headquartered in NYC, but this position is available for individuals who are comfortable with remote work and occasional travel to HQ.

What you will do

• Lead technical security design: Own the technical design and review process for security-critical systems, ensuring all new features meet Garner's high standards for data protection and resilience
• Master complex domains: Maintain and apply a mastery of one or more technical security domains (e.g., Cloud Security, AppSec, or Data) to solve the most complex business and technical challenges
• Course-correct technical direction: Identify when technical paths are inefficient or insufficient and proactively redirect efforts to capture higher ROI for the firm
• Architect automated defenses: Create and implement advanced tools and automation that increase the efficacy of security monitoring and incident response
• Translate ambiguity into execution: Take broad, complex security objectives and break them down into well-defined deliverables and architectural requirements