About the role

Truveta provides unprecedented real-world data and real-time intelligence, powered by a dataset built with and owned by US health systems united in a mission of Saving Lives with Data. Together, we power breakthrough medical discoveries, accelerate regulatory-grade evidence, and improve patient care. Today, Truveta enables research on more than 130 million de-identified patients across the US.

Achieving Truveta’s ambitious mission requires an incredible team of talented and inspired people with a special combination of health, software and big data experience who share our company values.

Role Overview

We are looking for a Senior Security Engineer to lead data security, threat modeling, and security reviews across our applications and platforms.

This role focuses on proactively identifying design-level risks, securing sensitive data, and ensuring systems are built with strong security foundations. You will work closely with engineering teams to influence architecture and embed security early in the development lifecycle.

Key Responsibilities

Lead security design reviews for new and existing systems, identifying risks and driving secure architecture decisions.

Perform threat modeling for services and platforms, translating threats into actionable engineering requirements.

Define and implement data protection strategies, including:

Data classification and handling standards

Encryption (at rest/in transit)

Key management and secrets handling

Review application architectures and APIs for security weaknesses and design flaws.

Conduct third-party/vendor security assessments, ensuring risks are identified and mitigated.

Partner with engineering teams to remediate findings and improve system design.

Establish and evolve secure design patterns and guidelines for developers.

Integrate security into design and development workflows (shift-left).

Evaluate and secure AI/ML use cases, including risks such as data leakage and prompt injection.

Contribute to security standards, policies, and best practices across the organization.

Required Qualifications

8–12+ years of experience in security engineering or application security.

Strong expertise in threat modeling and secure system design.

Deep understanding of:

Application security principles (OWASP Top 10, API security)

Data protection and privacy concepts

Authentication and authorization mechanisms

Experience conducting architecture and design-level security reviews.

Ability to read and understand code across common languages.

Strong communication skills to influence engineering teams.

Skills & Tags
aws azure ai data design

Aplyr's read

Truveta leverages healthcare data to enhance patient outcomes and drive medical research, attracting professionals in data science, software engineering, and clinical analytics.
Synthesized from recent postings & public sources

What's promising

•Truveta's platform offers a unique opportunity to work on cutting-edge healthcare data analytics.
•The company is deeply involved in advancing medical research through data-driven insights.
•Truveta's focus on improving patient outcomes aligns with meaningful, impactful work.

What to watch

•Limited public information about Truveta's financial stability and long-term viability.
•The company operates in a highly regulated industry, potentially leading to compliance challenges.
•Rapid growth may result in evolving job roles and responsibilities.

Why Truveta

•Truveta integrates vast healthcare data to provide actionable insights for medical research.
•The company employs a diverse range of roles, from clinical terminologists to AI/ML engineers.
•Truveta's mission-driven approach focuses on tangible improvements in patient care.

Aplyr’s read is generated by AI from public sources. Was it useful?