Senior Security Engineer
@ Health Gorilla

Hybrid

$170,000

Hybrid

Full Time

Posted 22 days ago

Your Application Journey

Interview

Email Hiring Manager

XXXXXXXX XXXXXXXXX XXXXXXXXXX***** @healthgorilla.com

Recommended after applying

Job Details

About the Role

As a Senior Security Engineer at Health Gorilla, you will help secure platforms that power nationwide health data exchange, protect patient privacy, and ensure compliance in a cloud-native, high-scale environment.

Key Responsibilities

Define and refine information security systems management policies.
Conduct vendor and 3rd party audits and complete security questionnaires.
Perform risk assessments and remediate identified vulnerabilities.
Create AWS Cloud Formation templates, Ansible scripts, and automate processes with AWS Systems Manager.
Utilize AWS-native security services (GuardDuty, Security Hub, Macie, Inspector, IAM, KMS, CloudTrail, Config) to design, monitor, and enforce security controls.
Implement identity and access management best practices for HIPAA compliance.
Architect and operationalize security guardrails with AWS Config, SCPs, Lambda functions, and EventBridge.
Monitor incidents using GuardDuty, CloudWatch, and CloudTrail integrated with SIEM/SOAR platforms.
Deploy and manage CrowdStrike Falcon EDR for endpoint visibility and threat response.
Conduct threat hunting and investigation using CrowdStrike tools.
Serve as the central contact for 3rd party audits (SOC2, ISO, HIPAA, HITRUST) and GRC functions.

Required Skills and Experience

Expertise with Linux and AWS ecosystems.
Proven experience in regulated environments (HIPAA, HITRUST, SOC 2).
7+ years in security engineering with enterprise or cloud focus.
3+ years working with intrusion detection, VPN, vulnerability tools, and configuration management systems.
Strong knowledge of SIEM, SOAR, Incident Response, and Threat Intelligence.
Relevant certifications such as AWS Security, CISSP, or CCSP.
Bachelor's degree in Computer Science or equivalent work experience.

What Health Gorilla Offers

Competitive base salary and stock options.
401(k) plan with annual matching.
Medical, dental, and vision insurance.
Short and long-term disability, life insurance, and wellness support.
Unlimited PTO plus 12 holidays.
Paid parental leave and monthly stipends for phone, internet, and home office equipment.

Key skills/competency

Security Engineering
AWS
Compliance
Risk Assessment
Cloud Security
Incident Response
Linux
Threat Hunting
Automation
Cryptography

Apply without a personalized resume

How to Get Hired at Health Gorilla

🎯 Tips for Getting Hired

Tailor your resume: Highlight AWS and security expertise.
Research Health Gorilla: Understand their cloud and compliance focus.
Prepare examples: Showcase past risk assessments successes.
Practice technical questions: Focus on AWS and incident response.

📝 Interview Preparation Advice

Technical Preparation

Review AWS security services documentation.

Set up a lab for Linux hardening.

Practice AWS automation scripts on test environment.

Study SIEM and incident response case studies.

Behavioral Questions

Describe a complex security challenge solved.

Explain risk assessment decision-making process.

Share an experience managing team conflicts.

Detail a time you improved compliance processes.

Ready to optimize your application for Health Gorilla?

Our Al will adapt your resume for Health Gorilla's hiring patterns and similar Senior Security Engineer roles.

Frequently Asked Questions

What technical skills are essential for a Senior Security Engineer at Health Gorilla?

How does Health Gorilla incorporate cloud security standards in this role?

What are the key compliance requirements for a Senior Security Engineer at Health Gorilla?

How important is experience with incident response for this role at Health Gorilla?

What kind of audit experience should candidates have for Health Gorilla?