Staff Security Engineer

Staff Security Engineer About Prealize Health Prealize Health, founded by two Stanford University thought leaders in Palo Alto, California, is an AI-powered predictive analytics company transforming healthcare from reactive to proactive.

Leveraging our proprietary MetisAI platform, we help payers and providers anticipate health events, costs, and engagement with unmatched accuracy — empowering earlier interventions, better outcomes, and reduced costs.

Learn more at  www.prealizehealth.com .

About the Role Are you a security leader passionate about protecting healthcare data and building trust in AI-powered solutions?

We are seeking a Staff Security Engineer to lead our information security program, blending strategic leadership with hands-on automation and cloud infrastructure work.

You will be instrumental in shaping our security posture from the ground up, ensuring compliance and scalability as we grow.

What You'll Do Program Leadership & Compliance Provide leadership and oversight of Prealize Health’s information security and compliance program.

Maintain and advance our compliance with HITRUST and other healthcare regulatory requirements.

Write, update, and promote s ecurity policies, procedures, and standards.

Prepare for and lead internal / external audits, including HITRUST certification cycles.

Manage and optimize security controls in AWS and Vanta , leveraging automation wherever possible.

Assist in responding to customer security questionnaires and RFPs.

Perform Vendor Security and compliance evaluations.

Perform Security Risk Assessments Technical & Automation Develop and maintain automation scripts and tools to streamline compliance evidence gathering, monitoring, and reporting.

Creation and deployment of IT solutions concerning security and compliance.

Lead the selection, implementation, and optimization of security tools and services.

Partner with engineering teams to embed security into our infrastructure and product development lifecycle.

Strategy & Collaboration Advise leadership on emerging security threats, risks, priorities, and investment opportunities.

Create and deploy Security training modules for employee education.

Assist with managing security related budget items.

Collaborate across engineering, IT, and business teams to embed a security-first mindset into everything we do.

You'll Thrive Here If You're energized by the opportunity to be both a strategic leader and a hands-on builder.

You are deeply motivated by protecting sensitive healthcare data and building trust in AI-powered solutions.

You enjoy the fast-paced, startup-like environment where your impact is visible and immediate.

You believe that compliance and security can be streamlined with elegant automation and tooling.

Qualifications Required Qualifications Bachelor’s degree in Computer Science, Information Security, or a related field. 7+ years of experience in information security, with at least 3 years in a technical leadership role.

Proven experience in healthcare IT security, including HIPAA and other regulatory frameworks.

Strong programming skills for building and maintaining automation scripts and tools.

Hands-on experience with AWS security services (e.g., IAM, GuardDuty, Security Hub, CloudTrail).

Experience drafting and enforcing IT security policies and procedures.

Strong communication skills for interacting with executives, auditors, vendors, customers, and technical teams.

Applicants must be U.S. citizens or U.S. permanent residents Preferred Qualifications Experience with HITRUST .

Familiarity with Vanta or other compliance automation platforms.

Relevant industry certifications such as CISSP , CISM , CISA , HCISPP , or AWS Certified Security – Specialty .

Pay Transparency :

• The target salary range is $155,000 to $175,000 annually.  Base pay offered may vary within the posted range based on several factors, including but not limited to education, job-related knowledge, skills, experience, and location.

Diversity, Equity & Inclusion :