Senior Security Engineer

OUR  MISSION

Imagine building a better healthcare journey for patients with cancer, where individuals and their loved ones feel seen, supported, and heard by their care team – both in and out of the clinic. Where fast access to high-quality care is the norm, not the exception. Where patients have access to a care navigator to guide them through their diagnosis and trusted support all along the way.

At Thyme Care, we share a passion for transforming the cancer care experience – not just for patients but also for their caregivers and loved ones, as well as those delivering and paying for their care. Today, Thyme Care is known predominantly as a cancer care navigation company enabling value-based cancer care; in the next few years, we will become a nationally recognized technology-driven and provider-centric care delivery model, reshaping the landscape of cancer care access, delivery, and experience. Our commitment runs deep—we're not satisfied with the status quo but determined to redefine it.

To make this happen, we’re building a diverse team of problem solvers and critical thinkers to drive innovation and shape the future of healthcare. If you share our vision and want to be part of something truly meaningful, we want to hear from you. Together, we can revolutionize cancer care and make a difference that lasts a lifetime.

WHAT YOU’LL DO

As a Senior Security Engineer, you strengthen Thyme Care’s security posture across our platform and infrastructure. You work closely with our Platform engineering team, IT, and virtual CISO to identify risks, harden our architecture, and embed security by design across engineering. You balance hands-on technical execution with coaching engineers to build secure practices by default.

• Proactively identify and close gaps in cloud, network, and application security architecture
• Lead security reviews of code and infrastructure, conduct threat modeling and partner with Eng squads on secure-by-default design
• Configure, tune, and monitor key security tools (e.g., Nightfall, GuardDuty, endpoint agents) to surface actionable alerts
• Triage and approve incoming security-related requests (applications, packages, Chrome extensions)
• Own technical response during a live security incident – from triage and log analysis to containment – in partnership with CISO, Engineering, and IT
• Build additional and low-friction security automation into CI/CD pipelines (dependency checks, SAST/DAST, IaC scanning)
• Partner with engineers to establish best practices and elevate secure coding practices without slowing delivery

WHAT YOU’VE DONE

• Experience in application and infrastructure security, ideally in a healthcare or regulated environment
• Expertise with cloud security (AWS), IAM, CI/CD pipelines, and core security tools
• Background in securing public-facing APIs, web apps, and data platforms
• Knowledge of security monitoring, alerting, and incident response practices
• Ability to triage and operationalize security requests with pragmatism and rigor
• Comfortability working in fast-paced, scaling environments where priorities shift quickly

WHAT LEADS TO SUCCESS

Act with our members in mind. You protect sensitive health data with urgency and care.
Move with purpose. You take initiative, surface risks, and close them.
Seek diverse perspectives. You collaborate with engineers, IT, and leadership, and know when to pull in external expertise.
Technical ability. You bring confidence and depth to lead reviews and guide secure outcomes.
Clear communication. You translate complex security concepts for technical and non-technical audiences.
Calm under pressure. You take ownership during incidents and drive resolution.

OUR VALUES

At Thyme Care, our core values guide us in everything we do: Act with our members in mind, Move with purpose, and Seek diverse perspectives. They anchor our business decisions, including how we grow, the products we make, and the paths we choose—or don’t choose.

Our salary ranges are based on paying competitively for our size and industry, and are one part of the total compensation package that also includes equity, benefits, and other opportunities at Thyme Care. Individual pay decisions are based on several factors, including qualifications, experience level, skillset, and balancing internal equity relative to other Thyme Care employees. The base salary for this role is $175,500 to $195,000. The salary range could be lower or higher than this if the role is hired at another level. 

We recognize a history of inequality in healthcare. We’re here to challenge the status quo and create a culture of inclusion through the care we give and the company we build. We embrace and celebrate a diversity of perspectives in reflection of our members and the members we serve. We are an equal-opportunity employer.

Be cautious of recruitment fraud, and always confirm that communications are coming from an official Thyme Care email.