โ† Back to Jobs
Bioscope AI logo

IT Security Engineer

Bioscope AI
Software Engineering
Bloomington, IN
1 week ago
๐Ÿค– AI-First๐Ÿ› ๏ธ Cursor-friendly๐Ÿš€ Startup๐Ÿ’ป Open Source
Apply โ†’

Explicitly requires vibe coding skills for automation within security and DevSecOps workflows.

About the Role

IT Security Engineer responsible for day-to-day IT support and owning security across the platform and CI/CD pipeline at a HIPAA-compliant healthcare AI startup. The role combines endpoint and identity management, security engineering, vulnerability management, and automation to scale secure operations and support compliance.

Job Description

Role

The IT Security Engineer will provide corporate IT support while owning and improving the companyโ€™s security posture across cloud infrastructure, SaaS platform, and CI/CD pipelines. The role supports HIPAA compliance and builds security practices and automation at a healthcare startup.

Key Responsibilities

IT Support & Infrastructure

  • Manage and support corporate IT infrastructure including endpoint devices, networking, and productivity tools (Google Workspace, Slack).
  • Provide technical support and troubleshooting for hardware and software issues.
  • Administer IAM systems, user provisioning, and access reviews.
  • Manage MDM solutions and the Rippling platform for device security, compliance, and automation.
  • Document IT processes and maintain an internal knowledge base.

Security Engineering

  • Design, implement, and maintain security controls across cloud infrastructure and the SaaS platform.
  • Integrate security tooling into CI/CD pipelines (SAST, DAST, dependency scanning, container security).
  • Conduct security assessments and vulnerability scans; coordinate remediation with engineering teams.
  • Manage and monitor EDR (SentinelOne) and investigate/respond to security alerts.
  • Develop and enforce security policies, standards, and best practices.
  • Support HIPAA compliance efforts including risk assessments, audit preparation, and security documentation.

DevSecOps & Automation

  • Build and maintain IaC with embedded security best practices.
  • Automate security testing and compliance checks within development workflows.
  • Implement secrets management and secure configuration practices.
  • Promote security awareness through training and code reviews.

Requirements

Required

  • 3+ years experience in IT support, systems administration, or security engineering.
  • Hands-on experience with cloud platforms (AWS, GCP, or Azure) and their security services.
  • Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins) and integrating security into pipelines.
  • Understanding of security frameworks and standards such as SOC 2, NIST, CIS Benchmarks.
  • Experience with vulnerability management, SIEM tools, and security monitoring.
  • Vibe coding expertise for automation.
  • Strong communication skills and ability to work cross-functionally.

Nice to Have

  • Experience in healthcare with HIPAA compliance.
  • Experience with Rippling and SentinelOne.
  • Background in penetration testing or application security.
  • Familiarity with healthcare data standards (HL7, FHIR).

Tech Stack

Google WorkspaceSlackRipplingSentinelOneGitHub ActionsGitLab CIJenkinsAWSGCPAzureSASTDASTdependency scanningcontainer securitySIEMEDRSOC 2NISTCIS BenchmarksHL7FHIR

Skills

IT SupportSystems AdministrationSecurity EngineeringIdentity and Access ManagementEndpoint ManagementTroubleshootingDocumentationSecurity AssessmentsVulnerability ManagementSecurity MonitoringSIEMEDRDevSecOpsInfrastructure-as-CodeAutomationSecrets ManagementSecurity Policy DevelopmentCompliance (HIPAA/SOC 2/NIST/CIS)Security Awareness & TrainingCI/CD IntegrationCommunicationVibe coding

Experience Level

Mid

Employment Type

Full-time