RVO Health

Security Application Engineer

Remote

$160,000 – $190,000Compensation
Junior (1 to 2 years)Experience Level
Full TimeJob Type
UnknownVisa
Healthcare, Health Technology, CybersecurityIndustries

Position Overview

  • Location Type: Remote
  • Job Type: Full-Time
  • Salary: $160K - $190K

Remo is building the new standard of dementia care by fundamentally changing the care journey for individuals living with dementia and their caregivers (the Dyad). As a virtual dementia care provider, our expert clinical team designs personalized, comprehensive care to serve people with dementia and caregiver needs (instead of a one-size-fits-all approach). We empower family caregivers by connecting them with a vibrant community of other caregivers, expert content, and tools to manage the entire dementia journey – from anywhere, at any time. Our mission is simple – to provide accessible, comprehensive, quality dementia care for every person who needs it.

You’ll help us build secure-by-default systems, proactively detect and respond to threats, and guide cross-functional teams through best practices in secure development. Whether it’s tuning SAST tooling in CI, securing Next.js applications, running red-team-style tests, or designing cloud IAM policies, you’ll bring clarity, urgency, and expertise. We’re looking for someone who’s pragmatic, collaborative, and deeply technical—able to both write Terraform and explain the tradeoffs behind an auth flow. If you’re the kind of engineer who spots security debt before it becomes risk and builds trust by improving the developer experience, we want to talk.

Responsibilities

  • Continuously monitor our infrastructure and application surface area for active threats, unauthorized access, potential vulnerabilities or exposures.
  • Own and evolve our security architecture across GCP and GKE with a focus on Google Assured Workloads.
  • Review and secure Terraform-based infrastructure changes against CIS benchmarks, HIPAA, HITRUST, and other control frameworks.
  • Develop response playbooks, lead incident response efforts, and close the loop quickly when issues arise.
  • Actively respond to and mitigate security incidents in real time.
  • Run internal red-team-style exercises and simulate real-world attacks to harden our defenses before attackers test them.
  • Correlate data across logs, traces, and metrics (we use Datadog) to detect anomalies and potential compromise.
  • Perform continuous penetration testing and active scanning of our infrastructure, networks, and services.
  • Secure product-layer surfaces by implementing and enforcing security controls across our applications and APIs.
  • Integrate and monitor security tooling (SAST, IAST, SCA, secrets scanning) into GitHub workflows and CI/CD pipelines.
  • Collaborate with engineering on secure coding standards, architecture reviews, and threat modeling.
  • Maintain compliance documentation, conduct internal security audits, and ensure security measures align with business objectives.

Requirements

  • Have 8+ years of experience in cybersecurity engineering.
  • Experience working in a start-up environment or leading security initiatives in a lean environment.
  • Have strong knowledge of modern DevSecOps principles.
  • Have working knowledge of compliance frameworks such as HIPAA, SOC2, HITRUST, NIST, or ISO 27001.
  • Deep knowledge and experience configuring Datadog SIEM for active and passive security monitoring/management. Other SIEM tool experience is transferable as well.
  • Have deep hands-on experience with Terraform, GCP, Google Kubernetes Engine (GKE) and cloud security controls.
  • Are experienced with SIEM platforms, runtime threat detection, and monitoring workflows.
  • Are familiar with offensive security, red teaming, and continuous penetration testing.
  • Have a strong product-layer security mindset—proficient in securing modern web applications.
  • Secure applications from a software engineering perspective - we're looking for someone who can collaborate with our engineers on secure coding best practices and integrate security into the development process.
  • Are experienced in integrating and operationalizing SAST, IAST, SCA, and secrets scanning tools.
  • Are experienced deploying, securing, and monitoring applications.

Company Information

Remo is building the new standard of dementia care by fundamentally changing the care journey for individuals living with dementia and their caregivers (the Dyad). As a virtual dementia care provider, our expert clinical team designs personalized, comprehensive care to serve people with dementia and caregiver needs (instead of a one-size-fits-all approach). We empower family caregivers by connecting them with a vibrant community of other caregivers, expert content, and tools to manage the entire dementia journey – from anywhere, at any time. Our mission is simple – to provide accessible, comprehensive, quality dementia care for every person who needs it.

Skills

Security Engineering
Cloud Security
GCP
GKE
Terraform
IAM
Threat Detection
Incident Response
Red Team Testing
Security Architecture
CIS Benchmarks
HIPAA
HITRUST

RVO Health

Digital health platform for managing wellbeing

About RVO Health

RVO Health provides a platform that simplifies health and wellness management for nearly 100 million users each month. The company connects individuals and families with reliable health information, doctors, and hospitals, making it easier for them to navigate their healthcare options. RVO Health's digital platforms offer expert-reviewed content and personalized experiences, helping users make informed decisions about their health. Unlike many competitors, RVO Health focuses on accessibility and affordability, ensuring that users can find the right care without confusion. The company's goal is to enhance health outcomes by providing comprehensive support throughout the health journey, from finding care providers to managing overall wellbeing.

Charlotte, North CarolinaHeadquarters
2022Year Founded
VENTURE_UNKNOWNCompany Stage
Consumer Software, HealthcareIndustries
1,001-5,000Employees

Benefits

Medical, dental, & vision
Life Insurance
Short & Long-Term Disability Insurance
Flexible Spending Accounts
Paid Time Off
Holiday Pay
401(k) with match
Employee Assistance Program
Paid Parental Bonding Benefit Program

Risks

Increased competition from digital health startups may dilute RVO Health's market share.
Rapid technological advancements require RVO Health to continuously update its platforms.
Data privacy concerns could lead to regulatory scrutiny for RVO Health's digital services.

Differentiation

RVO Health offers expert-reviewed, straightforward health information to simplify healthcare decisions.
The company connects users with doctors and hospitals, enhancing healthcare accessibility.
RVO Health provides personalized health management tools, catering to individual health needs.

Upsides

RVO Health benefits from the growing telehealth adoption, expanding its digital services.
The digital health market's projected growth supports RVO Health's platform expansion.
RVO Health can leverage AI integration to enhance its digital health platforms.

Land your dream remote job 3x faster with AI