Skip to content

Security Engineer

Are you interested in working to secure apps and data that are already improving the lives of people with diabetes and want to help bring it to many more? As a Security Engineer, you will be responsible for helping Tidepool customers (internal and external) maintain the security of our platform and help drive innovation and performance within the company around DevSecOps practices. This role reports to Tapani Otala, VP of Engineering.

Candidates must be geographically located within the United States, and eligible to work.

Essential Duties and Responsibilities:

  • Collaborate with the Tidepool Security Lead and other Tidepool Engineers to establish, focus, and triage priorities and operational security needs.
  • Work across all areas of Tidepool to support and deliver a secure platform and end-user experience.
  • Design and implement new security controls and augment existing ones in multiple environments.
  • Maintain day-to-day security operations, including access requests, security reviews, and internal product implementation.
  • Ensure a HIPAA-compliant security environment.
  • Assess and implement new services and architectures.
  • Participate in SOC-2 Type II maintenance and audit processes.
  • Identify and remediate vulnerabilities through automation, manual assessment, tools, and Tidepool's security disclosure program.
  • Respond to RFIs and questionnaires from clinics and external organizations regarding Tidepool's Security Program.
  • Maintain defenses and implement defense-in-depth security across Tidepool's applications and supporting services, including git repositories, email, dns, and critical collaboration tools.

Qualifications

Required:

  • 2+ years of experience in executing or supporting security functions.
  • Strong experience with cloud service providers (AWS preferred).
  • Familiarity with security frameworks such as NIST, OWASP, CSA, ISO.
  • Knowledge of network ports and services, TLS/SSL infrastructure and protocols.
  • Experience with scripting and configuration languages, including YAML.
  • Familiarity with logging services, assessment, and alerting.
  • Strong understanding of operating system security (Linux and MacOS preferred).

Preferred:

  • CISSP, CCSP, or similar certification.
  • SANS certification (GCIH, GCIA, etc.).
  • Experience with cloud-native services (Docker, Kubernetes, Go).
  • Experience with IDP's, SSO/SAML, and OAuth.
  • Experience with automated testing and continuous integration tools.
  • Experience with security testing tools (Snyk, Dependabot, Burp Suite).
  • Experience with data pipelines, data lakehouse.
  • Experience with MDM.
  • Experience with Mobile Security and Mobile App Sec tools.

Additional Information

Compensation: The compensation range for this role is $88,400 - $169,761. To learn more about Tidepool's compensation philosophy please see Tidepool's Employee Handbook.

Time Zones and Locations: You can work from anywhere in the United States. You will be required to overlap specific business hours.

Our Benefits package includes:

  • Excellent Medical, Dental, and Vision health insurance.
  • Health and Dependent Care FSA with a dollar-for-dollar match up to the IRS limit.
  • Flexible PTO with a recommended minimum of at least three weeks per year.
  • Eight weeks of paid new parent leave.
  • Wellness and Productivity Stipend.
  • Continuing Education Reimbursement that encourages team members to spend time on professional development.
  • A flexible work schedule.

Other Information:

At Tidepool, personal experience with diabetes is valued and not required. We seek team members who are empathetic towards chronic conditions and eager to learn about the diabetes experience. For more insights into our work culture, including our commitment to inclusion and diversity, please refer to this blog post about working at Tidepool.

Tidepool is an Equal Opportunity Employer. The company supports diversity and inclusion in its core values and does not discriminate against qualified employees or applicants because of race, color, religion, gender identity, sex, sexual preference, sexual identity, pregnancy, national origin, ancestry, citizenship, age, marital status, physical disability, mental disability, medical condition, military status, or any other characteristic protected by U.S. federal or state law or local ordinance. When necessary, the company will reasonably accommodate employees and applicants with disabilities if the person is otherwise qualified to safely perform all of the essential functions of the position.