← all jobs

[Remote] Staff Software Engineer - Product Security New York, NY; Remote, US (Hub cities)

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Maven is the world's largest virtual clinic for women and families, dedicated to making healthcare accessible for all. They are seeking a Staff Software Engineer specializing in Product Security to design and implement security infrastructure, ensure compliance, and lead security initiatives across the organization.

Responsibilities

  • Design and implement scalable infrastructure supporting HIPAA, SOC 2, and ISO 27001 compliance
  • Build and maintain systems for identity, authentication, and access management (Okta / GCP IAM / Auth0/ OPA)
  • Implement observability and anomaly detection across microservices, data stores, and SaaS platforms
  • Establish Zero Trust principles and enforce least-privilege access company-wide
  • Develop compliance observability dashboards and automated evidence collection
  • Create self-service security tools that integrate with developer workflows (GitLab CI/CD, Terraform)
  • Automate onboarding/offboarding, access reviews, and approvals
  • Integrate software-supply-chain security (SBOM, dependency scanning)
  • Develop or adopt AI-assisted security tooling to proactively identify risks
  • Automate policy enforcement, SAST/DAST scans, and compliance verification
  • Lead threat modeling and security architecture reviews for new products and services
  • Partner with product and data teams to embed secure-by-default design patterns
  • Ensure encryption, access tracking, and secure data handling across PHI workflows
  • Contribute to incident response, post-mortems, and continual improvement of security posture
  • Act as Maven’s technical authority for security engineering
  • Mentor peers and promote secure coding and architecture practices
  • Partner cross-functionally (Engineering, Compliance, Clinical, Legal) to align on security strategy
  • Champion an engineering culture of transparency, accountability, and continuous improvement

Skills

  • 8+ years of software engineering experience, including 3+ in security infrastructure or application security
  • Proven ability to design and implement large-scale, distributed, cloud-native systems
  • Strong coding proficiency in Python, TypeScript, Go and/or Rust
  • Deep understanding of cloud security (GCP preferred; AWS/Azure welcome)
  • Experience with Kubernetes, containers, and infrastructure-as-code (Terraform)
  • Familiarity with security testing frameworks and secure SDLC principles
  • Excellent communication and documentation skills
  • Expertise in Zero Trust architectures, authentication/authorization frameworks, and data-loss prevention
  • Experience with security compliance automation (SOC 2, ISO 27001, PCI-DSS, NIST)
  • Background in data security telemetry and threat detection
  • Familiarity with AI/ML security and AI-assisted analysis tools
  • Exposure to supply-chain security and CI/CD pipeline hardening
  • Certifications (CISSP, GCP Professional Cloud Security Engineer, OSCP) a plus

Benefits

  • Access to the full platform and specialists, including care for mental health, reproductive health, family planning and pediatrics.
  • Whole-self care through wellness partnerships
  • Hybrid work, in office meals, and work together days
  • 16 weeks 100% paid parental leave and new parent stipend (for Mavens who've been with us for 1 year+)
  • Annual professional development stipend and access to a personal career coach through Maven for Mavens
  • 401K matching for US-based employees, with immediate vesting

Company Overview

  • Naytal is the home of healthcare for women. It was founded in 2021, and is headquartered in London, England, GBR, with a workforce of 2-10 employees. Its website is https://naytal.uk/.
  • Company H1B Sponsorship

  • Naytal has a track record of offering H1B sponsorships, with 2 in 2026, 5 in 2025, 5 in 2024, 8 in 2023, 2 in 2022. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Compliance / School Administration Systems Analyst - Los Angeles Unified School District

    Work from home Full-time role

    [Remote] People Project Manager

    Work from home Full-time role

    [Remote] Data Analytics & Engineering - Data Analyst IV

    Work from home Full-time role

    [Remote] Product Manager

    Work from home Full-time role

    [Remote] Senior Manager, Sales Engineering

    Work from home Full-time role

    College and Career Consultant

    Work from home Full-time role

    Site Reliability Engineer (USA Only - 100% Remote)

    Work from home Full-time role

    Live Chat Specialist – Entry-Level Customer Support Representative for Digital Healthcare Communications

    Work from home Full-time role

    Lead Test Engineer (Healthcare)

    Work from home Full-time role

    Experienced Customer Support Agent – APAC Region at careerzynith

    Work from home Full-time role

    [Remote] Debt Management Account Processor

    Work from home Full-time role

    Technical Product Manager, Impact Analytics

    Work from home Full-time role

    Spanish Interpreter

    Work from home Full-time role

    Paid Media Lead (Remote US)

    Work from home Full-time role

    QMHP-C (1099 Contractor) – Community-Based Youth & Family Services

    Work from home Full-time role

    Loan Officer - Remote Sales Professional (Virginia)

    Work from home Full-time role

    Customer Analytics & Insights Specialist

    Work from home Full-time role

    ABA Scheduling Coordinator

    Work from home Full-time role

    Remote Data Entry Specialist – High‑Accuracy Data Management & Virtual Team Collaboration at careerzynith

    Work from home Full-time role

    [Remote] Senior Survey Project Manager - Remote

    Work from home Full-time role

    Director of Sales – Data Center Construction (Labor Solutions | Remote)

    Work from home Full-time role