Tech Stack

Description

You will own Counterpart's security posture, lead SOC 2 and HIPAA compliance programs, and secure platform infrastructure as a hands-on member of the DevOps team. This role involves rethinking security for an agentic stack, including AI-specific threats like prompt injection and data poisoning, while managing IT operations end-to-end.

Requirements

• 10+ years in DevSecOps, security engineering, or combined DevOps/security/IT roles
• Hands-on experience with AWS cloud infrastructure and security
• Experience owning SOC 2 and HIPAA compliance programs
• Experience managing IT operations including device management and identity/access management
• Strong understanding of AI agent risks (prompt injection, data poisoning) and proactive security mindset

Responsibilities

• Own the organization's security posture and implement controls for human and agentic interactions
• Own SOC 2 Type 2 and HIPAA compliance programs, automate audits, and maintain evidence
• Stay ahead of emerging threats including AI-specific vectors and regulatory changes
• Own IT operations end-to-end: device procurement, access controls, identity management
• Build and maintain sandbox architecture for safe experimentation and secure AI agent workloads