Senior Security Operation Engineer

The Gist

Vim is one of the fastest-growing healthtech companies, building the technology that connects every part of the healthcare ecosystem. We're solving one of the toughest problems in healthcare: how to make systems, apps, and data truly interoperable.

Our platform enables real-time collaboration between care teams and innovators, with secure data exchange and workflow integrations that happen directly inside clinical and administrative systems. In simple terms: we help healthcare work better. By streamlining workflows and reducing complexity, we help organizations focus on what really matters - delivering better care for patients.

The Role

We are seeking a Security Operations Engineer to join our Security team, reporting to the CIO. This is a hands-on role where you will design and operate security infrastructure, lead cloud security initiatives, and rethink our security architecture. You'll build AI-powered solutions to automate security triage and response, while partnering cross-functionally with DevOps, IT, and Engineering teams to drive security outcomes across the organization.

What you will do

Design, implement, and operate security monitoring capabilities using a SIEM platform to detect, analyze, and respond to threats in real time. Deploy and manage EDR, DLP, CSPM, and other security controls across the environment.
Build and maintain cloud security architectures, ensuring strong IAM, network segmentation, encryption, and a zero-trust approach across all cloud deployments.
Continuously evaluate and evolve the security architecture and defense in depth strategy. Integrate tools and systems across the stack to enable unified telemetry, seamless data flow, and automated response actions.
Develop AI powered agentic solutions and operational automations using n8n. Use Infrastructure as Code to automate deployment, configuration management, and ongoing lifecycle operations for security infrastructure.
Create and tune detection rules, build log ingestion pipelines, and conduct proactive threat hunting. Lead monitoring, investigation, and remediation efforts using structured DFIR methodologies.
Embed security into CI/CD pipelines and broader DevSecOps workflows. Partner with DevOps, IT, and Engineering teams to integrate security into day to day operations and technical decision making.
Implement and maintain controls aligned with HIPAA, HITRUST, and SOC 2 requirements. Perform security assessments for vendors, SaaS platforms, and internal applications.

Who we are looking for

5+ years of hands-on experience in security operations, incident response, or security engineering.
Strong background with SIEM platforms for monitoring, threat detection, and alert tuning.
Proven experience deploying and managing core security technologies, including EDR, DLP, and vulnerability management solutions.
Solid cloud security expertise across AWS, Azure, and GCP, with a strong understanding of cloud-native controls and architectures.
Scripting/automation proficiency (Python, Bash, PowerShell) for security automation
Hands-on experience with workflow automation platforms such as n8n or similar
Strong understanding of security architecture principles, defense in depth, and modern attacker techniques.
Familiarity with DevSecOps practices and integrating security into modern SDLC pipelines.
Highly independent: You take ownership of security challenges and you thrive in ambiguity; you carefully research and recommend solutions and drive execution autonomously
A great communicator: You're a people person, and you thrive in a fast-paced team environment with high-performance standards
Capable of working under pressure and delivering quickly
Flexible: You can see the big picture while staying detail-oriented; you can zoom in and out with ease
Driven: You bring a strong desire and drive to tackle complex security problems

What is Nice to Have

Experience building AI/ML-powered security solutions or SOAR platforms
Background in detection engineering and high-fidelity alert creation
Container/Kubernetes security expertise
Security certifications (CISSP, GIAC, cloud security certifications)

Vim's Culture

Our employees are go-getters and bring "Vim and Vigor" to their everyday work life; they are expected to ask bold questions and work as a team towards the success of the company. We prioritize employee satisfaction through a comprehensive range of benefits designed to enhance work-life integration and foster a positive culture.

We believe in investing in our team's future, offering an enticing option plan that aligns their success with the company's growth
We embrace the hybrid work model, and offer the flexibility of working several days from home, ensuring comfort and productivity
Our dog-friendly policy recognizes the importance of furry companions in our lives.
Regular happy hours provide opportunities for socializing and team bonding, while company-wide breakfasts encourage camaraderie and collaboration
At Vim we also provide flexible days off, our employees can manage their schedules according to personal needs, promoting overall well-being.
We embrace a growth mindset, and encourage continuous learning and development, empowering employees to reach their full potential both personally and professionally

By inputting your information and clicking "Submit Application", you acknowledge that you have read and agree to Vim's Candidate Privacy Notice.