Senior Security Engineer, Logging and Automation

San Francisco, CA

About Us

One Medical is a primary care platform challenging the industry status quo by making quality care more affordable, accessible and enjoyable. But this isn’t your average doctor’s office. We’re on a mission to radically transform healthcare, which means tackling the frustrations of everyone involved — from patients and providers to employers and health networks. 

Across the country, our members enjoy seamless access to comprehensive care at more than 90 locations across thirteen cities (and counting!) as well as 24/7 access to virtual care powered by intelligent uses of technology. In addition to a direct-to-consumer membership model, we work with more than 7,000 companies to provide One Medical health benefits to their employees.

On January 31, 2020 we marked a milestone with our public listing on Nasdaq, but our work is far from over. As we continue to grow and broaden our impact, we’re building a diverse, driven and empathetic team, while working hard to cultivate an environment where everyone can thrive.

The Opportunity

If you like to automate everything to do with clouds, systems, networks, and you know what it takes to secure them, this role is for you.

As a Senior Security Engineer, Logging and Automation you will work on a Security Team that identifies threats and risks, vulnerabilities and attack vectors, analyzes large datasets, engineers detection and response solutions, and works with engineering teams to develop ways to mitigate and prevent attacks. We believe modern day security cannot be done well without automation and tooling. This hands-on role gives you the opportunity to design and implement solutions to advance the security of our company. This position will constantly challenge you to learn new skills and apply yourself in different ways towards our mission of advancing security in the healthcare industry.

As a member of the One Medical Security team you will be joining a team of highly technical people focusing on having a meaningful impact on the company and the greater healthcare industry. We operate with a ‘team first’ mentality focusing on collaboration to move the security needle forward. Our drive for team success is tied closely with our commitment to personal growth; every team member is empowered to pursue research and contribute to projects that are not strictly defined by their role.

Whether you’re new to the industry or have decades of experience, we want to talk to you!

What you'll work on:

  • Design, implement, and maintain security specific automation and tooling (think logging pipelines, data analysis, detection engineering, monitoring, automated response actions, security infrastructure management)
  • Work on CI/CD, AWS, Terraform, Ansible, Demisto, Splunk, Containers, Git
  • Provide DevOps guidance, security guidance, architecture oversight, & security standards development to teams outside of the Security team
  • Security partnership with production and enterprise engineering teams
  • Security research, presentations, publications, and security industry collaboration

You’ll be set up for success if you have:

  • 3+ years of security engineering specific experience
  • 2+ years of experience with any scripting language (python, javascript, bash, go, ruby, etc)
  • Experience working on AWS cloud and cloud automation
  • Experience with security permissions/roles in AWS, AWS security models
  • Detection and Response experience
  • Familiarity with modern infrastructure technologies such as: Unix/Linux, Windows, Elasticsearch, Kafka, Hadoop, Kubernetes, Docker, MySQL, PostgreSQL, Mongo, Redis

Nice to haves:

  • Practical knowledge of normalizing multiple log types
  • More than whiteboard knowledge of IDS, Segmentation, Auth, Logging, FIM, PKI, HSMs, LBs
  • Familiarity with network security products from standard vendors like Palo Alto Networks, Juniper, Cisco, FireEye
  • Penetration testing experience (such as OSCP style)
  • Working knowledge of OSQuery, OSSEC, Bromium

Benefits designed to aid your health and wellness:

Taking care of you today

  • Paid sabbatical after 5 and 10 years
  • Employee Assistance Program - Free confidential advice for team members who need help with stress, anxiety, financial planning, and legal issues
  • Competitive Medical, Dental and Vision plans
  • Free One Medical memberships for yourself, your friends and family
  • Pre-Tax commuter benefits
  • PTO cash outs - Option to cash out up to 40 accrued hours per year

Protecting your future for you and your family

  • 401K match
  • Opportunity to participate in company equity programs
  • Credit towards emergency childcare
  • Company paid maternity and paternity leave
  • Paid Life Insurance - One Medical pays 100% of the cost of Basic Life Insurance
  • Disability insurance - One Medical pays 100% of the cost of Short Term and Long Term Disability Insurance

This is a full-time role based in either San Francisco, CA or Austin, TX.

One Medical is an equal opportunity employer, and we encourage qualified applicants of every background, ability, and life experience to contact us about appropriate employment opportunities.