Manage the company's technology infrastructure, including cloud services, networking, and internal application stack.
Develop and execute the long-term IT roadmap to support Zócalo Health’s rapid growth and scalability.
Own and lead the HITRUST certification program, including control implementation, documentation, and audit readiness.
Zócalo Health is a tech-enabled, community-oriented primary care organization serving people who have historically been underserved by the healthcare system. Founded in 2021, Zócalo Health is backed by leading healthcare and mission-aligned investors and is scaling rapidly across states and populations.
Lead security governance, risk management, and compliance efforts.
Oversee security operations and incident response.
Partner with IT, Clinical Operations, Privacy, and Compliance to ensure regulatory requirements and industry frameworks.
Tuesday Health is a value-based palliative care provider group dedicated to transforming serious illness and end-of-life care. Through their leading-edge care model, Tuesday Health is shaping the future of community-based palliative care nationwide.
Design and implement cloud security guardrails across AWS and GCP
Embed policy enforcement and compliance checks directly into Terraform modules
Conduct architecture reviews and continuously harden multi-cloud environments
Beast Industries is a multifaceted media and entertainment company founded by Jimmy Donaldson, popularly known as MrBeast. We are known for revolutionizing digital content creation, encompassing ventures that extend far beyond YouTube.
Engineer a great experience for developers working in web-based environments through automation and virtualization.
Advocate for and adhere to lean-agile engineering principles, such as simple design and automated testing.
Protect sensitive data by applying security and privacy best practices and conducting security audits.
Skylight is a digital consultancy using design and technology to help government agencies deliver better public services. They are at the forefront of a civic movement to reinvent how all levels of government serve families in today's digital world.
Champion the teams to become best-in-class in cloud-based software development while promoting approaches that greatly improve customer experience.
Leverage an obsession for the customer to lead and maintain a world-class SaaS, PaaS, IaaS, Cloud Infrastructure.
Own the build & deploy lifecycle; drastically reduce build, deploy & rollback times while simultaneously reducing risk and exposure.
CentralReach is a leading provider of autism and IDD care software for Applied Behavior Analysis (ABA), multidisciplinary therapy, and special education. Recognized as one of the best places to work over 10 times, CentralReach's culture is centered around impact, inclusion, and flexibility.
You will review, challenge, and strengthen our systems, act as the security authority within engineering, define guardrails, and drive remediation when risks arise.
Operating independently, you’ll build the structure and standards needed as we scale.
Your mission is to own the company wide security strategy and architecture, ensure CIRO and SOC 2 alignment, and embed strong security practices across infrastructure, applications, and internal systems, while enabling engineering velocity.
Newton is changing how Canadians trade crypto, with the goal to make financial freedom something everyone can achieve by giving customers the tools and knowledge they need to navigate the crypto world. At Newton, you'll work with a remote team spread across Canada.
Partner with engineering to drive technical implementation of controls throughout the product and infrastructure
Design, implement, and continuously improve security controls across AWS infrastructure and application architecture
Enhance and tune monitoring and detection capabilities in support of customer security and incident response capabilities
AlertMedia helps organizations protect their people and businesses through all phases of an emergency. Their award-winning threat intelligence, emergency communication, and travel risk management solutions help companies of all sizes identify, respond to, and recover from critical events faster and more confidently. They support essential communication for thousands of leading businesses in more than 150 countries.
Ensure high availability, fault tolerance, and scalability of cloud services.
Optimize performance and cost efficiency across AWS environments.
Implement security best practices and SOC 2 compliance monitoring.
BlastPoint is a B2B data analytics startup located in Pittsburgh. They empower companies to engage with customers more effectively by discovering the humans in their data and understanding customer journeys; they are a tight-knit, forward-thinking team.
Design, implement, and manage application and cloud security tooling across AWS.
Lead the deployment and configuration of Wiz CSPM, collaborating with infrastructure and DevOps teams.
Manage secure code scanning processes, integrating SAST and DAST to identify and remediate vulnerabilities early in the SDLC.
Twin Health aims to empower people to improve and prevent chronic metabolic diseases with AI Digital Twin technology. It is recognized for innovation and culture, with recent funding to scale rapidly across the U.S. and globally.
Execution and monitoring of SOC 2, HIPAA, and HITRUST compliance (using Vanta)
9amHealth is a specialized cardiometabolic care company that provides custom care plans, prescription medications, and expert guidance to help members live healthier. Backed by 7Wire Ventures, Human Capital, Founders Fund, and others, with a total funding of 25 million dollars, they are on a growth trajectory to achieve a more connected care approach for cardiometabolic health.
Design, automate, and maintain Knox’s cloud infrastructure and CI/CD pipelines across AWS, Azure, and GCP.
Ensure secure, compliant, and repeatable deployments that support Knox’s FedRAMP-authorized, multi-tenant cloud environments.
Implement Infrastructure as Code (IaC), observability, and security-by-design principles.
Knox runs the largest Federal managed cloud and builds and operates secure cloud and AI environments. They support critical U.S. government missions and require speed, rigor, and trust, impacting sensitive government environments at a federal scale.
Actively partner on the Cloud Security strategy and implementation.
Evolve and expand our current Cloud Security posture across multiple platforms.
Recommend and validate Security controls and improvements across our infrastructure stack
Circle is a global financial technology firm building the foundation for a more open financial system through digital assets, payment applications, and blockchain infrastructure. They value their employees and foster a culture of collaboration and excellence, with a flexible work enviornment.
Perform infrastructure security reviews across cloud services, network design, IAM, and platform components.
Design and build internal security services, APIs, and tools that automate infrastructure vulnerability detection, triage, reporting, and remediation.
Develop security automation that integrates with CI/CD, cloud control planes, and developer workflows to shift detection and remediation earlier in the lifecycle.
Webflow is building the world’s leading AI-native Digital Experience Platform as a remote-first company. They empower teams to design, launch, and optimize for the web without barriers, from entrepreneurs to global enterprises, and believe the future of the web, and work, is more open, more creative, and more equitable.
Xapo Bank is a fully distributed team of over 130 Xapiens that work remotely from 30+ countries around the world. They aim to provide economic freedom and wealth protection, searching the world for the best people and inspiring each other to learn and grow.
Develop and maintain automated security tools and processes to identify vulnerabilities and conduct security testing.
Design and implement secure cloud infrastructure, network architecture, and deployment processes.
Implement security monitoring tools and processes to proactively identify and respond to security events and anomalies.
Deel is an all-in-one payroll and HR platform for global teams, aiming to unlock global opportunity for every person, team, and business. They are among the largest globally distributed companies with a team of 7,000 spanning more than 100 countries, fostering a connected and dynamic culture.
Conducting a comprehensive threat model of our application and infrastructure layers.
Hardening our AWS infrastructure while keeping developer workflows frictionless.
Integrating security tooling into our CI/CD pipeline.
Loancrate simplifies home-buying for lenders and borrowers by building AI-native tooling to automate mortgage workflows. Since 2020, their remote team has enabled customers to power >$85 billion in new home loans and they value collaboration and open communication.
Own enterprise security, cloud, and application security, and corporate IT.
Lead security engineering, security operations, and corporate IT.
Partner closely with Engineering, Platform, and Operations to embed security and reliability into how Redox builds and runs software.
Redox aims to accelerate healthcare’s transformation with useful data. Redox Engine connects and powers real-time healthcare data exchange across a network of 12,000+ systems and organizations.
Lead Application Security testing projects and drive remediation of identified vulnerabilities.
Design and run adversarial testing campaigns across the full Buildkite environment.
Build automation for both AppSec and adversarial testing workflows.
Buildkite's mission is to unblock every developer on the planet with their CI/CD platform. They are a remote-first company since 2013 with a small team, high standards, and real ownership distributed across 60+ cities, built around async communication and genuine autonomy.
Drive adoption of a Secure Software Development Lifecycle (SSDLC) across engineering teams.
Implement and integrate application security tooling into CI/CD pipelines, improving vulnerability detection and remediation.
Establish consistent threat modelling and secure design practices across new features and products.
Neko Health's mission is to deliver proactive healthcare for all, empowering members to take control of their health via technology and compassionate care. They have nearly 100 full-time engineers working across Berlin, Chamonix, Hamburg, Lisbon, Marseille, Vilnius, and Stockholm and they support a flexible workplace that prioritizes work-life balance.
Own end-to-end operational delivery for Keeper’s U.S. Federal deployments.
Serve as a hands-on technical lead for federal platform operations.
Lead cross-functional execution to align Engineering, Security, Product, QA, and Customer Success.
Keeper Security transforms cybersecurity for organizations globally with zero-trust privileged access management. Keeper’s intuitive solutions are built with end-to-end encryption and trusted by federal agencies including the Departments of Justice and Energy.