Senior Enterprise Security Engineer

📋 Description

• • Design, deploy, and manage identity and access management (IAM) and Zero Trust access controls including SSO, MFA, authentication protocols, access lifecycle management, and identity governance across cloud and SaaS environments to ensure every identity is accounted for and every access decision is defensible.
• • Engineer and operate endpoint detection and response (EDR), device management (MDM), and endpoint compliance tooling to ensure all corporate devices—macOS, Windows, and Linux—meet security standards and are continuously monitored.
• • Build and operate programs for SaaS security posture management, shadow IT discovery, and third-party risk assessment to maintain control as the organization’s SaaS footprint expands.
• • Automate production-grade workflows for access reviews, onboarding/offboarding, policy enforcement, and security operations using scripting and infrastructure-as-code to eliminate manual processes and reduce technical debt.
• • Design and maintain secure corporate network architectures including VPN, ZTNA, network segmentation, and Wi-Fi security to protect both on-premises and remote work environments.
• • Support enterprise AI security initiatives by implementing governance frameworks, sanctioned tool inventories, and technical controls around data loss prevention and third-party AI vendor risk.
• • Partner cross-functionally with IT, People, Legal, and Compliance teams to translate regulatory and business requirements into durable, automated technical controls that enable business velocity without compromising security.
• • Translate complex technical security concepts into clear, actionable guidance for audiences ranging from engineers to executive leadership to foster a culture of security awareness and ownership.
• • Operate with a builder’s mindset to architect enterprise security controls from 0 → 1, prioritizing scalable, automated solutions that empower employees while reducing organizational risk.
• • Maintain deep expertise in securing cloud-native environments (GCP or AWS) and managing the security posture of a rapidly evolving SaaS estate with an identity-centric approach to enterprise risk.
• • Apply a pragmatic execution style to navigate ambiguity, weigh security risks against business needs, and implement solutions that balance strong protection with operational efficiency.
• • Contribute to the development of Abridge’s corporate AI security strategy by aligning technical controls with responsible AI deployment principles and regulatory expectations in healthcare.
• • Ensure all security implementations are auditable, compliant with industry standards, and aligned with Abridge’s mission to protect patient data and clinician trust in AI-generated clinical documentation.