Kodiak SolutionsRemote
Senior Security Engineer
United States of America
Full Time
4 hours ago
H1B Sponsor Likely
Key skills
Secure Software DevelopmentApplication ArchitectureIncident ResponseSecurity OperationsThreat ModelingSecurity Risk AssessmentCloud PlatformsIdentity ManagementDevOps PracticesRegulated EnvironmentsSecurity FrameworksSecurity MonitoringLoggingAlerting PlatformsSDLCLeadership
About this role
Kodiak Solutions is dedicated to transforming the healthcare industry through cutting-edge, technology-driven solutions. The Senior Security Engineer will provide leadership across product development initiatives, guiding teams through secure SDLC practices and ensuring security requirements are embedded throughout the technology lifecycle.
Responsibilities:
- Partner with Software Developers and Architects to ensure security requirements and secure design principles are incorporated into applications, platforms, and services
- Validate security controls during design, development, and implementation phases
- Perform application and platform threat assessments alongside the other members of the team
- Act as the technical lead for Security Incident Response, managing containment, investigation, and remediation activities
- Coordinate technical response efforts across engineering, infrastructure, and third‑party partners during security incidents
- Support ongoing security operations activities including monitoring, vulnerability management, and tooling improvements
- Assist with security investigations, root cause analysis, and post‑incident documentation
- Contribute to the development and improvement of security standards, procedures, and operational playbooks
Requirements:
- 6+ Years of Experience and a strong understanding of secure software development practices and application architecture
- BS or MS degree in Information Security, Computer Science or equivalent
- Hands‑on experience with incident response and security operations in a production environment
- Experience performing threat modeling or security risk assessments
- Familiarity with cloud platforms, identity management, and modern DevOps practices
- Ability to communicate technical security concepts clearly to engineering and non‑technical stakeholders
- Experience working in regulated or compliance‑driven environments
- Knowledge of common security frameworks and standards
- Experience with security monitoring, logging, and alerting platforms
- Relevant security certifications are a plus