Staff Security Engineer (Healthtech)

TL;DR

Staff Security Engineer (Healthtech): Leading the design and implementation of security solutions across platforms and AI-powered systems with an accent on application security, threat modeling, and secure software development. Focus on driving complex security initiatives, mentoring engineering teams, and ensuring scalable security posture within a regulated healthcare environment.

Location: Remote-first, with a preference for candidates based in North America (specifically Ottawa, Toronto, Calgary, Vancouver, or Austin).

Company

hirify.global is an industry-leading health technology platform that empowers practitioners to deliver better care through clinical insights, patient analytics, and high-quality supplement access.

What you will do

• Lead the design and implementation of security solutions across applications, platforms, and AI-powered systems.
• Partner with engineering teams to embed security throughout the software development lifecycle, including architecture reviews and threat modeling.
• Drive application and product security initiatives from concept through implementation.
• Own complex security challenges, balancing technical requirements with business priorities and engineering velocity.
• Mentor engineers and security practitioners to raise the bar for secure software development.
• Influence technical strategy and security standards through hands-on engineering and cross-functional collaboration.

Requirements

• 8+ years of software engineering experience in building and operating production systems.
• 3+ years of recent experience in application security, product security, or security engineering.
• Deep understanding of secure software development, modern application architectures, APIs, and cloud-native environments.
• Proven ability to influence technical direction and drive adoption of security best practices.
• Strong hands-on experience with security tooling, automation, and vulnerability management.
• Excellent communication skills and strong technical judgment.

Nice to have

• Experience securing Ruby on Rails, Node.js, JavaScript, or GraphQL ecosystems.
• Experience with AWS cloud security controls.
• Familiarity with threat modeling methodologies like STRIDE or PASTA.
• Experience protecting healthcare, regulated, or sensitive customer data.

Culture & Benefits

• Remote-first flexibility with a focus on work-life balance.
• Competitive pay with RRSP/401k matching and stock options.
• Premium benefits package including customizable coverage and HSA.
• Continuous learning opportunities and professional growth support.
• Discounts on high-quality wellness products.