• Own the product security vision, ensuring security and trust are core to every stage of the product lifecycle. • Design and implement platform-wide security features, including Sybil resistance, bot detection, reputation systems, and anti-abuse primitives. • Lead threat modeling and security architecture reviews for new and existing product features. • Collaborate with infrastructure and product engineering to design secure APIs, data flows, and identity systems that scale. • Improve developer velocity by creating secure-by-default frameworks and tooling for internal teams. • Partner with incident response to quickly assess, contain, and remediate security events, and lead deep postmortems to improve defenses. • Stay ahead of the curve by monitoring emerging attack techniques and applying cutting-edge security research to our platform. • Mentor engineers across the company on secure coding practices, architecture trade-offs, and operational security.

• Utilizes technical expertise and industry best practices to implement physical security technology solutions that address the organization's unique security requirements. • Configures and maintains physical security software, applications, and other physical security tools, to protect the organization's assets. • Provides input on the architecture and engineering of new and existing physical security applications, including evaluating technical designs. • Develops detailed plans for implementing selected physical security solutions, including hardware, software, configuration parameters, and test plans. • Troubleshoots physical security applications and server issues, ensuring timely resolution. • Supports the integration of infrastructure with physical security solutions, ensuring requirements are met. • Resolves security incidents promptly, troubleshoots technical issues, and determines root causes. • Provides technical guidance and support to other staff and end-users on physical security-related matters. • Supports physical security device inventory, lifecycle management, and configuration standards. • Assists in facilitating the Physical Security Break/Fix Program, tracking issues and status, prioritizing urgent issues, and documenting related processes. • Supports management with physical security system administration projects and initiatives from inception to completion. • Collaborates with Legal, Compliance teams and Cyber/IT, as needed, and coordinates the physical security technology component of internal and external audits to ensure physical security programs adhere to relevant laws, regulations, standards, and policies. • Evaluates new physical security threats, technology trends, and develops effective physical security technical controls. • Stays updated on industry and regulatory trends to maintain current knowledge. • Compiles reports, dashboards, or operational metrics to measure the effectiveness of the technical security program. • Communicates complex security concepts to non-technical stakeholders and provides clear and concise reports.

• Provide guidance for security architecture, engineering and support • Mentor other team members and act as subject matter expert in the realm of Information Security • Ensure remediation of security issues reported by our systems, other personnel or 3 party security scanning vendors • Roadmap security architecture up to 3 years into future • Determine protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately • Ensure that acquired or developed system(s) and architecture(s) are consistent with organization's guidelines • Perform security reviews, identify gaps in security architecture, and develop a security risk management plan • Monitor security systems to ensure security of our systems and data, looking for signs of anomaly or breach • Maintain documentation including security policy, standards, security monitoring system configuration, standard operating procedures (SOP) and other related information • Help engineer and configure key security controls such as firewalls, IDS, WAF, and other tools • Track and monitor compliance with security policy and best practices recommendations • Assist in development of new security policies and procedures • Assist with administration of security platforms (example: firewalls, proxies, active directory, vulnerability scanner, intrusion detection system, WAF) • Assist in coordinating special projects including network and desktop related efforts • Research, evaluate and recommend hardware/software purchases • Proactive monitoring of network/internet security systems • Analyze and troubleshoot security related issues • Provide expertise during incident response or forensic investigations • Keep current and continuous learning via vendor and trade opportunities

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description We are seeking a highly motivated Application Security Engineer to join our growing security organization. This role will be instrumental in building and managing our application and cloud security capabilities from the ground up, ensuring Twin Health’s systems and products remain secure as we scale globally. You will work hands-on with a modern technology stack including AWS Security Hub, GuardDuty, Inspector, and Macie, while leading the implementation of a Cloud Security Posture Management (CSPM) solution through Wiz. You will also own our secure code scanning and vulnerability management pipeline, driving continuous improvement across SAST, DAST, and SOAR Cloud integrations. This is a highly technical and strategic role suited for someone who thrives in building systems from scratch, automating workflows, and influencing secure development practices across engineering teams. Candidates must be located in EST. Responsibilities - Design, implement, and manage application and cloud security tooling across AWS, including Security Hub, GuardDuty, Macie, Inspector, and related automation. - Lead the deployment and configuration of Wiz CSPM, collaborating with infrastructure and DevOps teams to enhance visibility and remediation workflows. - Manage secure code scanning processes, integrating SAST (Static Analysis) and DAST (Dynamic Analysis) using Sonar Cloud to identify and remediate vulnerabilities early in the SDLC. - Develop automated pipelines and playbooks for vulnerability triage, remediation tracking, and reporting of metrics. (MTTD, MTTR) - Partner with software engineering teams to embed security into CI/CD pipelines and promote secure coding practices. - Collaborate with the Security, IT, and GRC teams to ensure alignment with SOC 2, HIPAA, and SOX controls. - Contribute to threat modeling, code review, and incident response related to application vulnerabilities. - Evaluate and implement new security tools and processes to enhance the overall application security posture. - Support vendor risk assessments and penetration testing efforts related to application components. - Create and maintain security documentation, architecture diagrams, and operational runbooks. - Participate in on-call rotations as part of the broader security operations program. - Other duties as assigned. Qualifications - Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - 1-3+ years of experience in Application Security, DevSecOps, or Cloud Security Engineering roles. - Hands-on experience with AWS security services (Security Hub, GuardDuty, Inspector, Macie, IAM, KMS). - Familiarity with Wiz or similar CSPM platforms. - Proven experience integrating SAST/DAST tools (e.g., Soar Cloud, Veracode, Snyk, Checkmarx, Burp Suite, etc.) into CI/CD pipelines. - Familiarity with Docker, K8S, and microservices-based architectures. - Experience with WAF, endpoint security, and IAM. - Strong understanding of secure software development lifecycle (SSDLC) and common vulnerabilities (OWASP Top 10, CWE, CVSS). - Proficiency in at least one scripting or automation language (Python, Bash, or similar). - Proficiency in Java. - Knowledge of threat modeling, code review, and cloud infrastructure security best practices. - Excellent collaboration and communication skills with both technical and non-technical stakeholders. - Experience with compliance frameworks such as SOC 2, HIPAA, or HiTrust is a plus. - Experience working in a high-growth or regulated environment is preferred. Compensation and Benefits - The compensation range for this position is $110,000 - $120,000 annually. - A competitive compensation package in line with leading technology companies. - A remote and accomplished global team. - Opportunity for equity participation. - Unlimited vacation with manager approval. - 16 weeks of 100% paid parental leave for delivering parents; 8 weeks of 100% paid parental leave for non-delivering parents. - 100% Employer sponsored healthcare, dental, and vision for you, and 80% coverage for your family; Health Savings Account and Flexible Spending Account options. - 401k retirement savings plan.