athenahealthRemote
AI Security Automation Engineer
United States
Full Time
2 weeks ago
$96,000 - $162,000 USD
H1B Sponsor Likely
Key skills
JavaScriptTypeScriptPythonAIAgenticAnalyticsAWSAzureIAMGitSDLCCI/CDOWASP
About this role
athenahealth is committed to creating a thriving ecosystem that delivers accessible, high-quality, and sustainable healthcare for all. They are seeking an Associate level AI Security Automation Engineer to integrate security into the software development lifecycle and improve DevSecOps efficiency using AI-driven analytics and automation.
Responsibilities:
- Partner with engineering, platform, and product teams to embed security into day-to-day delivery and SDLC workflows
- Support application security programs across SAST, DAST (web and API), SCA, and secrets scanning
- Strengthen software supply chain security and integrate security controls into the Harness unified pipeline and related CI/CD workflows
- Build AI-powered workflows including agentic IDE and MCP server integrations to automate triage, prioritize and enable auto remediation via standardized playbooks
- Reduce false positives and operational noise by using AI-assisted analysis to tune and maintain SAST queries/rules
- Support response to zero-day events by accelerating assessment/scanning and automating identification of affected assets (e.g., vulnerable libraries or malicious packages) using inventory sources
- Create and maintain runbooks, playbooks, and documentation for recurring findings, remediation steps, and operational processes
- Support the security exemption/exception process, including documentation, approvals, and expiry/renewal tracking
Requirements:
- Bachelor's degree in Computer Science/ Cybersecurity/ Engineering (or equivalent experience)
- Strong knowledge of web/app security fundamentals (e.g., OWASP Top 10 concepts)
- Familiarity with Git and modern development workflows (PRs, CI/CD)
- Strong proficiency in at least one programming language (Python, JavaScript/TypeScript, etc.)
- Experience with writing unit tests, producing user documentation, and informative demos
- Hands-on experience with AWS/Azure, including security fundamentals (e.g., IAM, networking, logging/monitoring) and supporting security in cloud-based environments
- Experience using agentic AI systems in engineering/security workflows, including integrating AI agents with MCP servers to enable assisted/automated remediation (or similar)
- Ability to operate effectively in a high-performing, collaborative environment, working closely with development and partner teams across the organization