Apply now »

Principal Security Engineer

About Providence

Providence, one of the US’s largest not-for-profit healthcare systems, is committed to high quality, compassionate healthcare for all. Driven by the belief that health is a human right and the vision, ‘Health for a better world’, Providence and its 121,000 caregivers strive to provide everyone access to affordable quality care and services.

Providence has a network of 51 hospitals, 1,000+ care clinics, senior services, supportive housing, and other health and educational services in the US.

Providence India is bringing to fruition the transformational shift of the healthcare ecosystem to Health 2.0. The India center will have focused efforts around healthcare technology and innovation, and play a vital role in driving digital transformation of health systems for improved patient outcomes and experiences, caregiver efficiency, and running the business of Providence at scale.


Why Us?

  • Best In-class Benefits
  • Inclusive Leadership
  • Reimagining Healthcare
  • Competitive Pay
  • Supportive Reporting Relation

 

 

What will you be responsible for?

  • Embed security automation across build, test, and deployment workflows.
  • Develop and maintain secure CI/CD pipelines.
  • Conduct vulnerability scanning, triage, and risk assessment.
  • Work with developers to ensure secure coding and remediation best practices.Maintain cloud security including IAM, network policies, secrets, and encryption.Implement container security, image scanning, and runtime protections.Build dashboards for security metrics, alerts, and compliance tracking.
  • Support incident response and root cause analysis.Stay updated on emerging threats and security technologies. 

What would your day look like?

  • Take on technical security leadership for application/solution implementation and transformation projects in applicable domains.
  • Identify, develop, and enforce technical security standards, and secure architecture and design patterns for applicable domains.
  • Develop security architecture, design, and blueprints for the target state, and ensure their effective elaboration, validation, and communication within the projects and stakeholders.
  • Guide application team on Secure Code Review, Penetration Testing, and security issue remediation.
  • Perform security readiness audits and support internal and external security auditing on applications/solutions. Report on application/solution security status for applicable domains.
  • Identify major application/solution deficiencies and define/craft pragmatic approaches on how to remediate them at scale.
  • Advise and work with application/solution owners and vendors to design and configure systems that meet security requirements, while balancing security and user experience.
  • Drive implementation of security controls, including security hardening.
  • Drive new technology/product evaluations through Proof of Concept (PoC) with other architects/engineers.
  • Review technology objectives for programs and services and make recommendations for their security requirements.
  • Evangelize and promote IT Security culture across the organization.
  • Drive accountable areas for results. Take ownership of the environment, teams, operations, initiatives, and projects within areas of accountability, sometimes in ambiguous circumstances.

 

Who are we looking for?

  • Bachelor’s degree in Computer Science, Engineering, Information Security, or equivalent experience.
  • 4–10 years of experience in DevSecOps, Application Security, or Cloud Security roles.
  • Strong experience with CI/CD, cloud platforms, and security automation tools.
  • Certifications are a plus (AZ-500, AWS Security Specialty, CISSP, CKA, CEH).
  • CI/CD Tools: Azure DevOps, GitHub Actions, GitLab CI, Jenkins.
  • Security Tools: SAST (SonarQube, Checkmarx), DAST (OWASP ZAP), SCA (OWASP Dependency Check, Snyk), Container Security (Trivy, Aqua).
  • Cloud Security: IAM, Secrets Management, Key Vault, KMS, Security Groups, WAF.
  • IaC & Automation: Terraform, Helm, Ansible, ARM, CloudFormation.
  • Containerization & Orchestration: Docker, Kubernetes, AKS/EKS/GKE.
  • Monitoring: Prometheus, Grafana, ELK, SIEM tools.
  •  

 

Providence’s vision to create ‘Health for a Better World’ aids us to provide a fair and equitable workplace for all in our employment, whether temporary, part-time or full time, and to promote individuality and diversity of thought and background, and acknowledge its role in the organization’s success. This makes us committed towards equal employment opportunities, regardless of race, religion or belief, color, ancestry, disability, marital status, gender, sexual orientation, age, nationality, ethnic origin, pregnancy, or related needs, mental or sensory disability, HIV Status, or any other category protected by applicable law. In furtherance to our mission in building a more inclusive and equitable environment, we shall, from time to time, undertake programs to assist, uplift and empower underrepresented groups including but not limited to Women, PWD (Persons with Disabilities), LGTBQ+ (Lesbian, Gay, Transgender, Bisexual or Queer), Veterans and others. We strive to address all forms of discrimination or harassment and provide a safe and confidential process to report any misconduct.

Contact our Integrity hotline also, read our Code of Conduct.

Apply now »