Shape the foundation of Security Engineering at Boulevard by driving the security of systems at scale, influencing security strategy across engineering, and partnering with leaders to align security with business outcomes. Integrate security into our SDLC and take a shift-left first approach that makes it easy for engineers to Do The Right Thing. Define what ' secure by default' looks like for a modern, cloud-native SaaS platform.
The Director, Information Security will provide both strategic input and hands-on technical acumen across all areas of Suzyโs security program โ including endpoint protection, identity and access management, data loss prevention, cloud security, and compliance implementation. This role requires a hybrid mindset: someone who can architect and manage enterprise security infrastructure while also mentoring a growing team of engineers and analysts to operationalize best practices.
Operate security controls, drive evidence collection and continuously monitor, and partner with product, engineering, and business teams to reduce risk while enabling speed. Lead SOC 2 Type II audit cycle endโtoโend, including auditor coordination, population requests, and walkthroughs. Roll out a vendor risk management workflow integrated with procurement and Legal.
Design and implement automation, dashboards, and integrations that power Governance, Risk, and Compliance (GRC) operations. Partner with the Senior Manager of GRC to build automation that scales security and privacy commitments โ from audit readiness and policy enforcement to customer trust workflows. Operationalize the newly selected GRC platform, integrating it with internal systems, and ensuring it supports automated, scalable assurance processes across the organization.
๐๏ธ US
๐ถ12w maternity๐จโ๐ง4w paternity
Weโre looking for a Senior Security Engineer to help us scale and strengthen our security posture across infrastructure, product, and operations. Youโll work cross-functionally with engineering, product, legal, and compliance teams to ensure our systems meet the highest standards, particularly around frameworks like SOC 2. Youโll also play a hands-on role in proactively identifying vulnerabilities, improving our internal and cloud security processes, and occasionally assisting with customer-facing security conversations.
As a Security Engineer youโll play a key role in safeguarding Overstoryโs systems and ensuring trust with our partners and customers. Together with their Director of Information Security and Compliance you will maintain our compliance platform, strengthen our vulnerability management process, support end-users with IT needs, and help us prepare for audits and security reviews.
We're looking for a Senior Security Engineer to join our security team as our second security hire to play a foundational role in building and scaling our corporate security program, security operations, and governance functions. This high-impact role allows ownership of critical security and compliance initiatives, working directly with IT, HR, Legal, and leadership to build robust security controls and drive awareness.
The Senior Information Security Engineer plays a key role in safeguarding the companyโs cloud-based healthcare SaaS platforms, infrastructure, and customer data. This position is responsible for designing, implementing, and managing enterprise-grade security solutions that align with regulatory frameworks such as HIPAA, HITRUST, SOC 2, and NIST 800-53. The ideal candidate is a hands-on technologist with deep knowledge of cloud security (AWS/Azure).