Principal Security & Compliance Engineer

Updated on 11/30/2023

1-10 employees

Comprehensive at-home and virtual healthcare for low-income patients

Company Overview

Accompany Health stands out for its comprehensive and personalized approach to healthcare, providing a blend of medical, mental, and social care to low-income patients with complex needs. The company's unique model includes at-home and virtual care, 24/7 support, and a dedicated team that accompanies patients throughout their healthcare journey, ensuring continuity and familiarity. With a strong commitment to correcting health disparities and improving patient outcomes, Accompany Health collaborates with various community-based organizations, local providers, and health plans, demonstrating industry leadership in providing accessible and high-quality care.

Social Impact

Company Stage

Series A

Total Funding

$7.3M

Founded

2022

Headquarters

Bethesda, Maryland

Growth & Insights

Headcount

6 month growth

↓ -88%

1 year growth

↓ -71%

2 year growth

↑ 100%

Locations

United States

Experience Level

Entry

Junior

Mid

Senior

Expert

Desired Skills

AWS

Development Operations (DevOps)

Google Cloud Platform

Linux/Unix

Management

Microsoft Azure

CategoriesNew

IT & Security

DevOps & Infrastructure

Software Engineering

Responsibilities

Design, build, and deploy new and existing security solutions
Select and manage applications related to data protection, network security, and threat monitoring
Build, implement, and test automation for operational processes
Integrate security tools with other security services
Develop documentation and runbooks for security tools
Design and build security metric-focused dashboards and reports
Mentor and share security best practices with other parts of the organization
Serve as SME on all topics related to security operations and engineering
Remain current with trends, technologies, security threats, and healthcare technologies

Desired Qualifications

Proven work experience (7+) as a security engineer
Experience securing cloud infrastructures (e.g., AWS, Azure, GCP)
Experience securing IT infrastructure (Linux, Windows, Networks, etc.)
Experience building and managing security tools (e.g., SIEM, DLP, EDR, WAF, SSO, certificate & key management, identity & access management)
Solid logic and problem-solving skills
Familiar with network protocols and their weaknesses
Ability to work under pressure
Desire to automate existing processes using a modern scripting language or automation tools
Incident response & security investigation experience
Familiarity with vulnerability assessment tools and securing web applications
Strong communicator, both written and verbal
BS or MS degree in Computer Science or a related technical field
Preferred security certification (e.g., CISSP, GIAC, CCSP, etc.)
Preferred prior working experience with HIPAA/HITRUST/PCI/NIST/ISO requirements and standards
Familiar with threat models for large, distributed systems and cloud-based infrastructure
Project Management Experience
Pen-testing, red team, blue team, and CTF experience
Experience with SIEM, WAF, SASE, Antimalware, and Identity Management tools

Accompany Health is on a mission to give low-income patients with complex needs the dignified, high-quality care they deserve but rarely receive. A primary, behavioral, and social care provider, Accompany Health walks alongside patients for their entire care journey, offering at-home and virtual care, as well as 24/7 support. Partnering with innovative payors, Accompany Health is powered by remarkable care teams, elegant technology, and a commitment to evidence-based practice.

We build long-term relationships with our patients so they know, without question, that our team is here for them day or night, year after year. We focus on the health outcomes most important to our patients to make it clear that they lead the way.

To achieve our mission, we collaborate with community-based organizations, local providers, and health plans. Led by our empathetic care teams, guided by proven care models, and powered by our own technology, we deliver a level of service that our communities rightfully deserve but rarely receive.

While our headquarters is in Bethesda, MD, our teams are distributed across the country. If you’re eager to make a tangible difference in people’s lives, to help correct long-standing disparities in health care, join us.

About the role:

As a Principal Security Engineer for Accompany Health, you will be:

-A mission-critical, early part of our growing team (and company)

-Partner with DevOps to set the technology foundation for our infrastructure: You will define our architecture and ensure that our technology approach meets short-term agility needs and sets us up to scale and evolve long-term.

-Collaborate with Engineering, IT to design, build, test, and implement security practices, technologies and processes.

Responsibilities will include:

Design, build, and deploy new and existing security solutions
Select and manage applications related to data protection, network security, and threat monitoring
Build, implement, and test automation for operational processes
Integrate security tools with other security services
Develop documentation and runbooks for security tools
Design and build security metric-focused dashboards and reports
Mentor and share security best practices with other parts of the organization
Serve as SME on all topics related to security operations and engineering
Remain current with trends, technologies, security threats, and healthcare technologies

Desired skills and experience:

Required
Proven work experience (7+) as a security engineer
Experience securing cloud infrastructures (e.g., AWS, Azure, GCP)
Experience securing IT infrastructure (Linux, Windows, Networks, etc.)
Experience building and managing security tools (e.g., SIEM, DLP, EDR, WAF, SSO, certificate & key management, identity & access management)
Solid logic and problem-solving skills
Familiar with network protocols and their weaknesses
Ability to work under pressure
Desire to automate existing processes using a modern scripting language or automation tools
Incident response & security investigation experience
Familiarity with vulnerability assessment tools and securing web applications
Strong communicator, both written and verbal
BS or MS degree in Computer Science or a related technical field
Preferred security certification (e.g., CISSP, GIAC, CCSP, etc.)

Preferred
Prior working experience with HIPAA/HITRUST/PCI/NIST/ISO requirements and standards
Familiar with threat models for large, distributed systems and cloud-based infrastructure
Project Management Experience
Pen-testing, red team, blue team, and CTF experience
Experience with SIEM, WAF, SASE, Antimalware, and Identity Management tools

#LI-LB1

#LI-Remote

For Patient Facing Roles

To keep our patients, communities and each other safe, you’ll be required to comply with Accompany Health’s medical clearance requirements, including completing a TB screen and providing proof of immunity or vaccination for certain conditions. You will also be required to be vaccinated and up-to-date on your COVID-19 vaccinations, including boosters. This is a condition of employment, and we make exceptions as required by law. Accommodation for religious and medical beliefs will be provided on a case by case basis.

For Non-Patient Facing Roles

To keep our patients, communities and each other safe, you’ll be required to comply with Accompany Health’s medical clearance requirements, including receiving the COVID-19 vaccine. This is a condition of employment, and we make exceptions as required by law. Accommodation for religious and medical beliefs will be provided on a case by case basis.

We embrace diversity and believe it creates a healthier atmosphere: Accompany Health is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.