As a member of Headway’s founding Security Engineering team, you’ll have the unique opportunity to be the builder and driver of our dedicated, in-house Security engineering efforts. In this role, you will partner with our Lead Security Engineer and Head of Infrastructure to design our next-generation security program, touching all aspects of Headway’s business and systems. You will both technically and organizationally execute security projects ranging from practice changes to technical architecture to security infrastructure development to penetration testing. We're looking for security-focused engineers with software engineering experience who are excited to tackle security challenges in partnership with our core product teams.
Tools we use: Cloud security: Lacework Languages: Python 3, TypeScript Libraries: FastAPI, SQLAlchemy, React Datastores: Postgres, Redis Infrastructure: AWS (Fargate, ECS, S3, and more), Spark and Kafka Monitoring: Datadog, PagerDuty Version control: Github Vulnerability Management: Snyk, Semgrep Projects we’re working on:There is a lot that we're building at Headway, but here are a few projects to give you an idea of the problems we're tackling in security.
Infrastructure security: Building and implementing tools that monitor the security posture of our infrastructure and provide for more secure access in a scalable manner as we grow. Application security: Building systems that provide guardrails and enable developers to do security Data security: Building systems and tools that monitor our data flows and access. Privacy: In collaboration with our Privacy Platform team, contribute to a secure, scaleable platform and leading projects across our engineering org to ensure patient privacy and compliance as we grow. Who you are: You have technical experience with building secure platforms and products at a deep level. You are excited to perform security design and code reviews. You want to understand security systems and improve their efficiency and scalability. You enjoy tackling deep technical problems, sometimes operating as a leader of new security or engineering initiatives. You want to instill a culture of secure development across engineering and partner across teams to embrace security as a part of normal development. Experience we’re seeking: 5+ years experience in security and/or software engineering roles with a demonstrated history of working on security-related projects or with responsibilities as a security generalist Experience across multiple (if not all) domains, such as infrastructure security, product security, application security, and/or data security Strong cross-functional experiences, building relationships and driving impactful projects The ability and drive to continuously educate yourself and others You’ll love this role if you want to: Change the trajectory of a startup striving to redefine access to mental health in America Work on a highly collaborative, cross-functional engineering team in order to build the best and most secure products for therapists, patients, physician and payer partners, and/or your teammates at Headway Help establish and engrain best practices throughout our organization Contribute to our engineering culture, processes, and documentation with the same thought and care that we do our software (one of our engineering cultural principles is “Everything is a Product”) Our interview processAfter you apply to Headway, here are some details of what to expect during the interview process.
Initial screen: You’ll connect with someone in recruiting so you can learn more about the team, Headway’s mission and exciting growth, and we can get a better idea of your background. First round: You'll meet with our Lead Security Engineer for introductions and an architecture interview. Final rounds: You’ll meet several more team members for technical and non-technical interviews, including our Head of Infrastructure who this role reports to, and leave with a fuller picture of what it’s like to work at Headway. References and the Offer: Our favorite part of the process! We'll send over all of the details, including specifics on employee equity, and congratulatory messages from excited future team members!Compensation and Benefits:
Salary information is based on a single salary target per role: The starting salary for Security Engineers is $152,000 and increases to $230,000 based on industry tenure and experience. Benefits offered include: Medical, Dental, and Vision coverage HSA / FSA 401K Work-from-Home Stipend Therapy Reimbursement 16-week parental leave for eligible employees Carrot Fertility annual reimbursement and membership 13 paid holidays each year as well as a Holiday Break during the week between December 25th and December 31st Flexible PTO Employee Assistance Program (EAP) Training and professional development#LI-CA1