Tech Stack

Description

You will lead Merge's security programs, managing compliance automation, security controls, and bug bounty programs, ensuring security is embedded in all engineering practices while working with a team to protect data for Fortune 500 clients.

Requirements

• 4-6+ years of security engineering experience
• Ownership or leadership in security at previous organizations
• Ability to manage security programs
• Experience with and desire to code in at least one major programming language
• Thorough understanding of networking and infrastructure (VPNs, Zero Trust, HTTPS, DNS)

Responsibilities

• Create and drive the security roadmap
• Manage compliance automation programs (SOC 2, ISO 27001, HIPAA) using Drata
• Implement security controls across infrastructure and CI
• Manage Bug Bounty Program
• Assist with security reviews, threat modeling, and code reviews