Senior Security Engineer

Senior Security Engineer

Position Summary

PatientNow is seeking a Senior Cybersecurity Engineer to lead and strengthen the security of our AWS based healthcare SaaS platform. This role is responsible for securing cloud infrastructure, driving PCI DSS implementation, and maintaining HIPAA and SOC 2 compliance.

This is a high ownership role within a growth stage organization where the candidate will wear multiple hats, serving as cloud security architect, incident response lead, compliance partner, vulnerability management owner, and team mentor, while mentoring two Junior Security Engineers.

Essential Duties and Responsibilities

• Lead Cloud Security Posture Management (CSPM) across AWS
• Architect and harden AWS infrastructure including IAM, VPC, S3, WAF, encryption, and segmentation
• Monitor and respond to security events using AWS security services including GuardDuty, Security Hub, CloudTrail, AWS Config, IAM Access Analyzer, WAF, and Inspector
• Administer and optimize security tooling including CrowdStrike EDR, Tenable vulnerability management, and Aikido Security for code and application security posture management
• Develop and maintain incident response processes and lead forensic investigations
• Own the vulnerability management lifecycle including scanning, prioritization, remediation tracking, and reporting
• Drive PCI DSS implementation and support HIPAA and SOC 2 audit readiness
• Conduct risk assessments and implement mitigation controls
• Support Business Continuity and Disaster Recovery (BC/DR) security initiatives
• Partner cross functionally to embed security into SDLC, DevOps, SRE, and CI/CD workflows

Supervisory Responsibilities

• Provide oversight, mentorship, and task prioritization for two Junior Security Engineers
• Review security configurations, remediation efforts, and compliance deliverables including PCI DSS controls
• Lead team coordination for SOC2, HIPAA and PCI audits, evidence collection, and remediation tracking
• Support performance feedback and professional development
• Foster a culture of accountability, technical excellence, and regulatory compliance

Competencies

• Adaptability - Demonstrates persistence and overcomes obstacles. Measures self against standard of excellence. Recognizes and acts on opportunities. Sets and achieves challenging goals. Takes calculated risks to accomplish