All roles

Open role

[Remote] Senior Engineer, Security (AppSec)

Remote · Hong Kong Full-time

Note: The job is a remote job and is open to candidates in USA. Arcadia is dedicated to transforming healthcare through data, aiming for happier and healthier days for all. They are seeking a Senior Engineer – Security (Application Security) to protect their cloud-native healthcare platform by building and improving security controls while contributing to incident response and threat mitigation efforts.

Responsibilities

  • Design, implement, and maintain application security controls across Arcadia’s cloud-native SaaS platform
  • Partner with Product and Engineering teams to embed security into system design, development workflows, and CI/CD pipelines
  • Conduct threat modeling, architecture reviews, and secure design assessments for new and existing services
  • Own and improve vulnerability management processes, including identification, prioritization, and remediation tracking
  • Implement and maintain security tooling such as SAST, DAST, dependency scanning, container scanning, and secrets detection
  • Participate in security incident response activities including detection, investigation, containment, and remediation
  • Monitor and analyze logs, alerts, and security events to identify suspicious activity and emerging threats
  • Contribute to detection engineering by tuning alerts, improving signal quality, and reducing noise
  • Support threat intelligence analysis and apply insights to improve preventive and detective controls
  • Perform post-incident analysis and recommend technical and process improvements
  • Build security-as-code solutions to automate control enforcement, validation, and remediation
  • Use scripting and automation to reduce manual effort and improve consistency
  • Support secure AWS architecture using services such as EKS, ECS, Lambda, IAM, and VPC
  • Contribute to identity and access management best practices across AWS, Okta/Auth0, and SaaS platforms
  • Translate compliance requirements (e.g., SOC 2, ISO 27001, HITRUST, HIPAA) into practical technical controls
  • Partner with Security Assurance to support audits, evidence collection, and continuous control monitoring
  • Help identify and remediate security risks discovered through assessments, audits, or incidents

Skills

  • 6+ years of experience in application security, cloud security, or security engineering roles
  • Strong hands-on experience securing cloud-native, SaaS-based environments (AWS required)
  • Solid understanding of application security principles and common vulnerabilities (OWASP Top 10)
  • Solid understanding of secure software development practices and CI/CD integration
  • Solid understanding of cloud security architecture and IAM
  • Solid understanding of incident detection and response fundamentals
  • Experience with security tools such as SIEM, SAST/DAST, EDR, vulnerability scanners, and cloud security platforms
  • Ability to script and automate security workflows using Python, Bash, or similar languages
  • Strong analytical skills and the ability to clearly communicate security risks and recommendations
  • Experience in healthcare or other regulated industries
  • Familiarity with Kubernetes, container security, and modern DevSecOps tooling
  • Experience contributing to detection engineering or threat analysis efforts
  • Relevant certifications such as AWS Security Specialty, CISSP, CCSP, or GIAC certifications

Benefits

  • Employee driven programs and initiatives for personal and professional development

Company Overview

  • Healthcare data analytics platform It was founded in 2007, and is headquartered in Boston, Massachusetts, USA, with a workforce of 201-500 employees. Its website is https://arcadia.io.
  • Company H1B Sponsorship

  • Arcadia has a track record of offering H1B sponsorships, with 1 in 2026, 1 in 2023, 1 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Director of Quality Assurance & Training, Early Phase Clinical Trials

    Work from home Full-time role

    [Remote] Business Development Manager

    Work from home Full-time role

    [Remote] SW Engineering Manager

    Work from home Full-time role

    [Remote] Intern - Machine Learning

    Work from home Full-time role

    [Remote] Principal Data Scientist

    Work from home Full-time role

    School Social Worker Opportunity - Illinois Remote

    Work from home Full-time role

    Channel Marketing Director - Architectural Products (Outdoor)

    Work from home Full-time role

    Art Director (Remote)

    Work from home Full-time role

    Chief of Staff (Founding Operator) ($100k-$140k + Equity) at Dealflowagent.com

    Work from home Full-time role

    Senior Payments Processing Specialist

    Work from home Full-time role

    Tableau Developer - eviCORE United States Work at Home

    Work from home Full-time role

    Solar EPC Project Manager or Senior Project Manager - Grid Power

    Work from home Full-time role

    Remote Live Chat Support Specialist – Real‑Time Customer Engagement for careerzynith Creator Platform

    Work from home Full-time role

    REMOTE AI Support Operations Engineer

    Work from home Full-time role

    Remote Pet Pharmacy Customer Service Representative – Exceptional Customer Support Specialist (Kentucky Resident Required)

    Work from home Full-time role

    Broker-Dealer Supervision Principal (HYBRID or REMOTE)

    Work from home Full-time role

    Utilization Management Nurse (RN) – Acute / Post-Acute

    Work from home Full-time role

    REGISTERED DIETITIAN (WORK FROM HOME - MNT, W2, FULL TIME)

    Work from home Full-time role

    Enterprise Sales Development Representative, SDR (Remote)

    Work from home Full-time role

    Assistant Manager – Category Management Amazon & Away From Home (AFH)

    Work from home Full-time role

    Senior Systems Engineer (AWS Cloud Application)

    Work from home Full-time role