Dandy

Staff Software Engineer - Security

United States

$230,000 – $257,000Compensation
Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Healthcare Technology, Dental IndustryIndustries

Position Overview

  • Location Type: Remote
  • Job Type: Full-Time
  • Salary: $230K - $257K

Dandy is a company transforming the dental industry through technology, aiming to simplify and modernize dental practice operations. Backed by leading venture capital firms, Dandy is building a global operating system for dental offices.

About the Team

Dandy is seeking a highly skilled and hands-on Staff Security Engineer to be the first dedicated security hire. This role offers the opportunity to establish the technical foundation for security, directly impacting the protection of the platform and customer data. The position involves significant autonomy in selecting, implementing, and managing security solutions, identifying and remediating vulnerabilities, and playing a key role in incident response. The focus will be on deep technical execution and strengthening the company's defenses and security posture. This role is ideal for individuals passionate about building secure systems, tackling technical challenges, and making a tangible difference in a fast-paced environment.

Responsibilities

  • Collaborate with engineering teams to design and implement secure application architectures, influencing feature development with security considerations from inception.
  • Provide expert guidance on secure coding practices, API security, authentication/authorization patterns, and data protection throughout the software development lifecycle.
  • Lead vulnerability management efforts, including identifying risks in applications and infrastructure (using automated and manual methods), prioritizing findings, and coordinating remediation with engineering teams.
  • Evaluate, select, and drive the adoption of application and infrastructure security tools (e.g., SAST, DAST, SCA, container scanning), ensuring integration into developer workflows.
  • Define and assist in implementing incident response processes and playbooks.
  • Act as a senior technical contributor during incident investigations, supporting teams in forensics, containment, and recovery.
  • Partner with the infrastructure team to establish guardrails and controls across GCP environments, including identity and access management, network security, and container hardening.
  • Champion a security-first engineering culture through practical education, mentoring, and hands-on support to development teams.

Requirements

  • 8+ years of progressive, hands-on experience in cybersecurity, with a strong emphasis on application security, secure design, and vulnerability management.
  • Deep understanding of web application and API security, including common vulnerabilities, secure software architecture, and threat modeling.
  • Experience collaborating directly with software engineering teams to guide the implementation of secure development practices and influence technical design decisions.
  • Proven ability to lead technical efforts in vulnerability identification, triage, and remediation across application code and cloud infrastructure.
  • Hands-on experience implementing and operating security tooling and basic infrastructure-level controls.
  • Demonstrated experience leading or significantly contributing to security incident response efforts, including log and forensic analysis.
  • Strong communication and collaboration skills, with the ability to influence without authority and guide teams toward secure-by-default outcomes.

Bonus Points

  • Experience securing services that handle sensitive data, such as PHI.
  • Understanding of data protection principles.
  • Proficiency in integrating security tools.

Skills

Secure coding practices
API security
Authentication
Authorization
Data protection
Vulnerability management
Security architecture
Incident response
Security solutions implementation

Dandy

Digital dental lab services and software

About Dandy

Dandy provides digital dentistry solutions to dental practices across the United States, enabling them to transition from traditional methods to modern digital techniques. Their services include digital scanning, design, and manufacturing of dental prosthetics such as dentures and implants. Dandy's proprietary Chairside software simplifies the scanning process, allowing dental professionals to perform complex procedures with greater accuracy and efficiency. Unlike competitors, Dandy offers their Chairside software for free, making it easier for practices to scan patients and submit lab cases. The company generates revenue through the manufacturing and sale of dental products based on these digital scans, along with providing clinical support and live scan feedback. Dandy's goal is to enhance patient experiences and improve operational efficiency for dental practices by facilitating the adoption of digital dentistry.

New York City, New YorkHeadquarters
2020Year Founded
$4.2MTotal Funding
SEEDCompany Stage
Enterprise Software, HealthcareIndustries
1,001-5,000Employees

Benefits

Medical, dental, & vision coverage
Parental planning
Mental health benefits
401(k) plan
PTO
Fitness reimbursements

Risks

Competition from established companies like Align Technology is increasing.
Data privacy concerns are rising with digitalization in the dental industry.
Rising raw material costs could impact Dandy's profit margins.

Differentiation

Dandy offers a unique end-to-end digital dental lab service.
Their Chairside software simplifies the scanning process for dental professionals.
Dandy provides free software, earning revenue from dental prosthetics sales.

Upsides

Growing demand for digital dental solutions aligns with Dandy's offerings.
Personalized dental care trend supports Dandy's customized prosthetics services.
AI integration in dental imaging complements Dandy's digital scanning technology.

Land your dream remote job 3x faster with AI