Senior Application Security Engineer
3 days ago
Headway’s mission is a big one – to build a new mental health care system everyone can access. We’ve built technology that helps people find great therapists with the first software-enabled national network of providers accepting insurance.
1 in 4 people in the US have a treatable mental health condition, but the majority of providers don’t accept insurance, making therapy too expensive for most people. Headway is building a new mental healthcare system that everyone can access by making it easy for therapists to accept insurance and scale their practice.
Headway was founded in 2019. Since then, we’ve grown into a diverse, national network of over 34,000 mental healthcare providers across all 50 states who run their practice on our software. We’re a Series D company with over $325m in funding from a16z (Andreessen Horowitz), Accel, GV (formerly Google Ventures), Spark Capital, Thrive Capital, Forerunner Ventures and Health Care Service Corporation.
We want your time here to be the most meaningful experience of your career. Join us, and help change mental healthcare for the better.
About the roleThe Trust team at Headway is focused on security and privacy for all of Headway’s customers - therapists, patients, and payers (ex: insurance companies and health systems). As an early member on the team, you’ll have the unique opportunity to be the builder and driver of our dedicated, in-house product and application security engineering efforts. In this role, you will partner closely with our product and engineering teams to ensure that our application is designed and developed securely so that we can maintain and grow customers’ trust in Headway.
What you’ll do at Headway:- Partner with Product and Engineering: Headway has many new product launches on the horizon that will transform the industry and have a rich data component. You will be a partner at both the design and development stage to ensure that we implement new features securely, including (but not limited to):
- Participating in the implementation efforts
- Doing security reviews
- Helping with product design decisions
- Auditing and surfacing vulnerabilities in our current products
- Develop and Improve our Automated Tooling: Further enhance our automated tooling to scale our application security capabilities and find potential code problems both before and after we deploy.
- Make the safe way, the easy way: Work on defining and building application guardrails so that developers can build securely by default. You also will work to instill a culture of secure development across engineering.
- Assist in ongoing security operations: You will be part of the security and privacy team and have responsibilities to assist in incident response, vulnerability management, penetration testing, security reviews, and other operational tasks to ensure that our security program is operating at a world-class level.
- Languages: Python 3, TypeScript
- Libraries: FastAPI, SQLAlchemy, React
- Infrastructure: AWS (Fargate, ECS, S3, and more), Spark and Kafka
- Version Control: Github
- Vulnerability Management: Snyk, Semgrep
- Have 0 → 1 security experience: You have 5+ years experience in security and/or software engineering roles with a demonstrated history of working on security-related projects or with responsibilities as a security generalist.
- Strong cross-functional experience: You love partnering with other teams to help both teams achieve their goals.
- Strong technical depth and breadth: You have technical experience with building secure platforms and products at a deep level. You are excited to perform security design and code reviews. You want to understand security systems and improve their efficiency and scalability.
- Thrive in ambiguity: You love tackling ambiguous problems in a fast-paced environment with an optimistic and energizing attitude.
- Innovation at Scale: You seek opportunities to lead the industry in implementing the latest security and privacy technologies.
- Results driven: You care deeply about creating impact and driving results for Headway’s business.
- Mission driven: You are motivated by Headway’s mission, increasing access to high quality mental health care.
- The starting salary for an Application Security Engineer is $188,000 and increases to $230,000 based on industry tenure and experience.
Benefits offered include:
- Equity Compensation
- Medical, Dental, and Vision coverage
- HSA / FSA
- 401K
- Work-from-Home Stipend
- Therapy Reimbursement
- 16-week parental leave for eligible employees
- Carrot Fertility annual reimbursement and membership
- 13 paid holidays each year as well as a Holiday Break during the week between December 25th and December 31st
- Flexible PTO
- Employee Assistance Program (EAP)
- Training and professional development
We believe a team‘s strength is in its people, and we cannot achieve this mission without a team that reflects the diversity of this problem – across race, ethnicity, gender, sexuality, age, national origin, religion, family status, disability, military status, and experience.
Headway is committed to the full inclusion of all qualified individuals. As part of this commitment, Headway will ensure that persons with disabilities are provided with reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or receive other benefits and privileges of employment, please contact talent@findheadway.com.
Headway employees work remotely across the US, with the option to work from offices in New York City and San Francisco. Headway participates in E-Verify.
Apply for this job#J-18808-Ljbffr-
Senior Application Security Engineer
1 month ago
New York, United States Emergent365 Full timeSenior Application Security Engineer*This position is highly technical. As a Senior Application Security Engineer, your role involves close collaboration with software development teams to ensure the safety of our customers during the development of innovative services. On any given day, your tasks may include code inspections to identify security issues,...
-
Senior Application Security Engineer
4 weeks ago
new york city, United States Emergent365 Full timeSenior Application Security Engineer*This position is highly technical. As a Senior Application Security Engineer, your role involves close collaboration with software development teams to ensure the safety of our customers during the development of innovative services. On any given day, your tasks may include code inspections to identify security issues,...
-
Senior Application Security Engineer
1 month ago
new york city, United States Emergent365 Full timeSenior Application Security Engineer*This position is highly technical. As a Senior Application Security Engineer, your role involves close collaboration with software development teams to ensure the safety of our customers during the development of innovative services. On any given day, your tasks may include code inspections to identify security issues,...
-
Senior Security Engineer
4 weeks ago
New York, New York, United States Bitcoin Devs Company Full timeJob Title: Senior Security EngineerJob Description:The Senior Security Engineer plays a vital role in ensuring the security and integrity of Bitcoin Devs Company’s platform, systems, and applications. This position is crucial in protecting the organization from potential security threats and vulnerabilities, as well as implementing and maintaining best...
-
Senior Application Security Engineer New
2 weeks ago
New York, United States Tbwa ChiatDay Inc Full timeHeadway’s mission is a big one – to build a new mental health care system everyone can access. We’ve built technology that helps people find great therapists with the first software-enabled national network of providers accepting insurance.1 in 4 people in the US have a treatable mental health condition, but the majority of providers don’t accept...
-
Application Security Engineer
2 days ago
New York, United States Alloy Full timeAlloy is where you belong! Alloy solves the identity risk problem for companies that offer financial products by enabling them to outpace fraud and confidently serve more people around the world. Banks and Fintechs turn to Alloy to take control of fraud, credit, and compliance risk, and grow with the clearest picture of their customers. Through our values:...
-
Application Security Engineer
1 month ago
New York, New York, United States Sirius XM Radio Inc Full timeJob Summary:The Application Security Engineer will play a crucial role in supporting SiriusXM technology objectives by providing tools, guidance, and continuous support to ensure the security success of our software and applications.Key Responsibilities:Build and document security features to enable developers to write secure code.Facilitate the...
-
Application Security Engineer
4 months ago
New York, United States Sirius XM Radio Inc Full timeWho We Are: SiriusXM and its brands (Pandora, SiriusXM Media, AdsWizz, Simplecast, and SiriusXM Connect) are leading a new era of audio entertainment and services by delivering the most compelling subscription and ad-supported audio entertainment experience for listeners -- in the car, at home, and anywhere on the go with connected devices. Our vision is to...
-
Senior Security Engineer
1 week ago
New York, United States HRUCKUS Full timeVeteran Firm Seeking Senior Security Engineer for an Onsite Role in New York, NYMy name is Stephen Hrutka. I lead a Veteran-owned consulting firm in Washington, DC, focused on strategic sourcing, supply chain management, and IT Staffing.We seek to fill a Senior Security Engineer role for the New York City Office of Technology and Innovation (NYC OTI). The...
-
Senior Security Engineer
2 months ago
New York, United States MDS (Micro-Data Systems) Full timeSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Manhattan, NY, Brooklyn, NY, or Trenton, NJTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...
-
Senior Security Engineer
1 week ago
New York, United States MDS (Micro-Data Systems) Full time*****NO C2C OR THIRD PARTY INQUIRIES*****Senior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Brooklyn, NYTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next...
-
New York, United States Amazon.com Services LLC Full timeAs a member of the Application Security Testing Automation team, you will help provide automated security testing solutions for all of Amazon. Our team’s goal is to empower both development and security teams with accurate security detections at the highest standards of quality in order to identify and eliminate risk across Amazon’s application...
-
Senior Security Engineer
1 month ago
new york city, United States MDS (Micro-Data Systems) Full timeSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Manhattan, NY, Brooklyn, NY, or Trenton, NJTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...
-
Senior Security Engineer
1 month ago
new york city, United States MDS (Micro-Data Systems) Full timeSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Manhattan, NY, Brooklyn, NY, or Trenton, NJTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...
-
Senior Software Engineer
2 weeks ago
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionJob Description for Job Posting About the RoleAbnormal Security is looking for a Senior Software Engineer to join the Detection Team. The Detection Division is focused on building the world's most advanced technology for identifying and stopping email and cloud-based attacks that were previously undetectable and help make...
-
Senior Security Engineer
4 weeks ago
New York, United States Mizuho Bank Ltd Full timeJoin the Mizuho team as a Senior Security Engineer! This role will be focused on and around the regular administration/maintenance of security tools including performing upgrades/troubleshooting and maintaining system documentation. They may be required to help write or shape policies/procedures/run books/processes, etc. They will be expected to maintain...
-
Senior Security Systems Engineer
1 month ago
New York, New York, United States Acquired Data Solutions Full timeJob Title: Senior Security Systems EngineerWe are seeking a highly skilled Senior Security Systems Engineer to join our team at Acquired Data Solutions, Inc. in Egg Harbor, NJ.Job Summary:The successful candidate will be responsible for performing in-depth engineering analysis of security-related systems to determine their potential for further development,...
-
Senior Software Engineer
3 weeks ago
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout the RoleAbnormal Security is looking for a Senior ML Infra Engineer to join the Detection Team. The Detection Division is focused on building the world's most advanced technology for identifying and stopping email and cloud-based attacks that were previously undetectable and help make the world a safer place. As an ML...
-
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout The RoleAbnormal Security is seeking a Senior Software Engineer to join the Inbound Email Products - Systems (IEPS) team. The MSP IEPS team is responsible for Abnormal's core Inbound Email Security product backend systems, including Remediation and Threat Log (data processing and storage). Our objective is to make...
-
Software Engineer II
3 weeks ago
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout the RoleAbnormal Security is hiring a Software Engineer to join the Threat Response Engine team, an essential part of our mission to protect global enterprises from diverse and evolving email threats. At Abnormal, we've taken a novel approach to email security, utilizing behavioral AI to identify and counter complex...
