Job Overview
Location
San Francisco
Job Type
Full-time
Category
Software Engineering
Date Posted
June 26, 2026
Full Job Description
đź“‹ Description
- • Implement and tune Data Loss Prevention (DLP) policies across SaaS platforms including Google Workspace, Slack, GitHub, and Jira/Confluence, as well as managed Mac endpoints to prevent PHI exposure with minimal false positives.
- • Deploy and operate AI-powered email security solutions on Google Workspace to detect and investigate phishing, business email compromise (BEC), payload analysis, and vendor impersonation threats end-to-end.
- • Configure and tune MDR/EDR tools for endpoint security posture across the Mac fleet, automating detection coverage, response workflows, and alert routing to integrate with incident response processes.
- • Harden identity and access management systems by maintaining Okta configurations including OIE policies, MFA, device trust, geo controls, lifecycle management, SCIM/group push, and Google Workspace settings such as context-aware access, DLP, alert center, drive sharing, and admin hygiene.
- • Codify security configurations into Terraform where feasible to ensure infrastructure-as-code practices for identity and SaaS environments.
- • Automate security testing, reporting, and training initiatives including phishing simulations, access reviews, configuration drift checks, and vulnerability rescans to reduce manual effort and improve compliance readiness.
- • Build actionable security metrics and reporting dashboards that meet the needs of leadership and auditors, ensuring transparency and alignment with compliance requirements.
- • Deliver role-based security awareness training programs to enhance organizational security culture and reduce human risk factors.
- • Lead incident response activities by maintaining updated runbooks, participating in on-call rotation, and directing investigations related to SaaS account compromise and PHI exposure incidents.
- • Automate evidence collection for compliance frameworks including HIPAA, HITRUST, and SOC 2 at the tool level to eliminate manual screenshot collection and ensure continuous readiness.
- • Maintain comprehensive, living documentation for all security configurations, runbooks, and operational procedures to ensure system operability by any team member without dependency on individual knowledge.
- • Collaborate cross-functionally with stakeholders to remediate security findings and improve overall security posture across the organization’s technology estate.
- • Operate in a hybrid environment requiring 2+ days per week at the South San Francisco headquarters to support team collaboration and operational continuity.
🎯 Requirements
- • 4+ years in security operations, IT security, or a closely related role
- • Production experience reviewing and configuring security settings in Okta (or an equivalent IdP) and Google Workspace at meaningful scale
- • Hands-on experience deploying or operating a DLP product across SaaS and endpoints
- • Experience with AI/ML-driven email security tooling or modern SEGs (Abnormal, Material, Sublime, Proofpoint, Mimecast)
- • Comfort writing scripts and small services (Python, Go, or TypeScript) to automate repetitive work and integrate APIs
- • Working knowledge of at least one compliance framework relevant to our environment: HIPAA, HITRUST, SOC 2, or ISO 27001
🏖️ Benefits
- • Flexible paid time off (PTO)
- • Expansive coverage for health, dental, and vision
- • Employer contribution to Health Savings Accounts (HSA)
- • Generous parental leave policy
- • Full employee coverage for life insurance
- • Home office stipend
Skills & Technologies
See exactly how your profile matches this role — strengths, skill gaps, and what to do about them.
About AKASA Inc.
AKASA Inc. is a San Francisco-based healthcare automation company that provides AI-driven revenue cycle management software for hospitals and health systems. Its Unified Automation platform uses machine learning to streamline prior authorization, claims processing, payment posting and denial management, integrating with existing electronic health record and billing systems. Founded in 2018, the company helps providers reduce administrative costs, accelerate reimbursements and improve financial outcomes while enabling clinical staff to focus on patient care.
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
Similar Opportunities
Vanta, Inc.
3 months ago
Keyrock NV
3 months ago
Cloudera, Inc.
3 months ago
OpenAI, Inc.
3 months ago