β Back to Jobs
IT Security Engineer
Bioscope AI
Software EngineeringBloomington, IN
5 months ago
π Startupπ» Open SourceExplicitly requires vibe coding skills for automation within security and DevSecOps workflows.
About the Role
IT Security Engineer responsible for day-to-day IT support and owning security across the platform and CI/CD pipeline at a HIPAA-compliant healthcare AI startup. The role combines endpoint and identity management, security engineering, vulnerability management, and automation to scale secure operations and support compliance.
Job Description
Role
The IT Security Engineer will provide corporate IT support while owning and improving the companyβs security posture across cloud infrastructure, SaaS platform, and CI/CD pipelines. The role supports HIPAA compliance and builds security practices and automation at a healthcare startup.
Key Responsibilities
IT Support & Infrastructure
- Manage and support corporate IT infrastructure including endpoint devices, networking, and productivity tools (Google Workspace, Slack).
- Provide technical support and troubleshooting for hardware and software issues.
- Administer IAM systems, user provisioning, and access reviews.
- Manage MDM solutions and the Rippling platform for device security, compliance, and automation.
- Document IT processes and maintain an internal knowledge base.
Security Engineering
- Design, implement, and maintain security controls across cloud infrastructure and the SaaS platform.
- Integrate security tooling into CI/CD pipelines (SAST, DAST, dependency scanning, container security).
- Conduct security assessments and vulnerability scans; coordinate remediation with engineering teams.
- Manage and monitor EDR (SentinelOne) and investigate/respond to security alerts.
- Develop and enforce security policies, standards, and best practices.
- Support HIPAA compliance efforts including risk assessments, audit preparation, and security documentation.
DevSecOps & Automation
- Build and maintain IaC with embedded security best practices.
- Automate security testing and compliance checks within development workflows.
- Implement secrets management and secure configuration practices.
- Promote security awareness through training and code reviews.
Requirements
Required
- 3+ years experience in IT support, systems administration, or security engineering.
- Hands-on experience with cloud platforms (AWS, GCP, or Azure) and their security services.
- Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins) and integrating security into pipelines.
- Understanding of security frameworks and standards such as SOC 2, NIST, CIS Benchmarks.
- Experience with vulnerability management, SIEM tools, and security monitoring.
- Vibe coding expertise for automation.
- Strong communication skills and ability to work cross-functionally.
Nice to Have
- Experience in healthcare with HIPAA compliance.
- Experience with Rippling and SentinelOne.
- Background in penetration testing or application security.
- Familiarity with healthcare data standards (HL7, FHIR).