Head of Security Engineering

The Role You will be the first dedicated security leader at Candid Health. You won’t just be managing a checklist; you will be building the team and systems that protect our customers and their patients. You will partner closely with our Engineering and Product leadership to ensure that we move fast without breaking our promise of data integrity. What You’ll Do Scale and Lead a Security Engineering Organization: Interview, hire, and manage a team of top flight security engineers that will expansively own Risk, Compliance, Threat Management, Product and Application Security. Build and Own the Security Roadmap: Lead the transition from foundational security posture to one defined by a best in class, enterprise-grade security organization. Drive Security Prioritization at a Leadership Level: Act as the subject matter expert and voice in the room that is setting the prioritization of security initiatives and stack ranking the risks as well as advising Candid’s strategy to mitigate them in direct partnership with our executive leadership team. Lead Trust & Transparency Efforts: Understand, oversee, and drive the rituals associated with HIPAA, SOC2, SOC1, PCI and HITRUST; this role will entail not just audits, but living processes. You will often be the technical voice in the room with our largest enterprise customers. Act as a Security Evangelist and Culture Carrier: Educate and empower our 200 employees. From engineering practice to legal contracts, you will collaborate with virtually every team at Candid Health to promote the ethos that we are a security first, compliant organization. Manage Third-party Relationships: Coordinate with vendors for penetration testing and other security services, ensuring that our platforms undergo regular scrutiny and remain fortified, review vendor security prior to integration. Who You Are You have 10+ years of experience in security engineering, with a proven track record of building and leading teams that own complex matrices of technical surface area in startup and scaled environments. Your expertise isn't just theoretical. You’ve had the hard conversations and driven the outcomes at an organizational scope, especially when it comes to the rituals and routines of security compliance. With strong knowledge of HIPAA, you're no stranger to the delicate information we handle. You are adaptable and flexible, always ready to engage with security challenges at both enterprise and customer levels. You know when to get your hands dirty and when to delegate. You possess the ability to read, understand, and audit systems, networks, and IT setups to ensure airtight security. That, combined with a keen sense for when to handoff ownership to someone with depth in the spaces that your breadth doesn’t cover makes you an effective engineering leader. Our values We spend at least as much time with our coworkers as we do with our closest friends + family - if we intend to do the most important + challenging work of our lives, it’s important that these folks energize us, support us, inspire us, and push us to do our best work. This is what you can expect of your teammates at Candid (in no particular order): We put our customers first We take care of each other and ourselves We anchor on outcomes and work relentlessly and creatively to achieve them We collectively prioritize building a diverse and inclusive workspace We believe humility is our greatest strength We are candid, kind, and committed We strive to be the most prepared person in the room We are truth seekers Pay Transparency The estimated starting annual salary range for this position is $240,000 - $310,000 USD. The listed range is a guideline from Pave data, and the actual base salary may be modified based on factors including job-related skills, experience/qualifications, interview performance, market data, etc. Total compensation for this position may also include equity, sales incentives (for sales roles), and employee benefits. Given Candid Health’s funding and size, we heavily value the potential upside from equity in our compensation package. Further note that Candid Health has minimal hierarchy and titles, but has broad ranges of experience represented within roles. #J-18808-Ljbffr