Abridge was founded in 2018 with the mission of powering deeper understanding in healthcare. Our AI-powered platform was purpose-built for medical conversations, improving clinical documentation efficiencies while enabling clinicians to focus on what matters mosttheir patients.
Our enterprise-grade technology transforms patientclinician conversations into structured clinical notes in realtime, with deep EMR integrations. Powered by Linked Evidence and our purposebuilt, auditable AI, we are the only company that maps AI-generated summaries to ground truth, helping providers quickly trust and verify the output. As pioneers in generative AI for healthcare, we are setting the industry standards for the responsible deployment of AI across health systems.
We are a growing team of practicing MDs, AI scientists, PhDs, creatives, technologists, and engineers working together to empower people and make care make more sense. We have offices located in the Mission District in SanFrancisco, the SoHo neighborhood of NewYork, and East Liberty in Pittsburgh.
The Director of Product Security will be responsible for defining and driving the overall Product Security strategy, focusing on security assurance, proactive risk reduction, secure AI innovation, and maintaining a worldclass security posture across all product offerings and our multicloud infrastructure. You will lead and scale highimpact programs, manage teams of talented security professionals, and serve as a strategic partner to the CISO and executive leadership.
You will report directly to the Chief Information Security Officer (CISO).
1. Strategic Leadership & Security as a Business
Product Security Strategy: Define and continuously evolve the longterm Product Security strategy, ensuring alignment with Abridge.ai's business goals and technological advancements.
Security Roadmap Ownership: Own the creation and execution of the Product Security roadmap, including security features, SDLC enhancements, threat modeling initiatives, and overall risk reduction milestones.
Financial Oversight: Manage the Product Security budget, including forecasting security tool expenditures, vendor contracts, and personnel resource allocation.
MetricDriven Management: Define, track, and report on key performance indicators (KPIs) and security metrics to measure the effectiveness of all security programs and provide datadriven insights to leadership.
Impact Analysis: Conduct regular impact analysis (ROI) of security investments and lead time/costreduction efforts. Translate complex security risks into clear business risk terms to justify strategic initiatives.
2. People & Program Leadership
Lead and Mentor: Serve as a motivating people leader for a growing team of Security Engineers and Analysts, providing career development, mentorship, and regular performance feedback.
Strategy and Scaling: Define and execute on goals in a hypergrowth AI company, focusing on enabling secure AI development and deployment globally.
Security Industry Engagement: Actively participate in and be a thought leader for the security industry by giving talks at conferences, publishing papers, hosting forums, etc.
3. Cloud Security (CloudSec) and Infrastructure
MultiCloud Strategy: Define the security architecture and strategy for our cloud environments (GCP, AWS, Azure, etc.).
Containerization Security: Lead the implementation of security controls for containerized applications, with a deep focus on securing Kubernetes clusters, including network policies and secrets management.
IaC Security: Implement security guardrails within Infrastructure as Code (e.g., Terraform) to ensure all cloud resources are provisioned securely.
4. Application Security (AppSec) & Secure SDLC
Integrate Security: Partner with Engineering and Product leadership to embed security processes into the Software Development Lifecycle (SDLC).
Security Practices: Develop and oversee secure coding practices, security architecture reviews, and static/dynamic code analysis practices across all applications.
Vulnerability Management: Direct the vulnerability management and penetration testing programs, ensuring comprehensive coverage and rapid, prioritized remediation of findings.
5. Data Security, AI/ML Model Security, & Cryptography
Data Protection: Lead the data security program, focusing on the protection, encryption, and access controls for highly sensitive patient data (PII, PHI, AI models, etc.).
AI/ML Security: Establish security engineering practices for our AI/ML models and pipeline, including model integrity, adversarial attack prevention, model redteaming, securing agentic AI, etc.
Experience: 10+ years of progressive experience in security, with a minimum of 10 years leading security teams, programs, or largescale initiatives in a senior leadership capacity.
Business Acumen: Demonstrated experience running security as a business unit, including budget management, strategic forecasting, and translating technical risk into business impact (ROI).
Engineering Proficiency: Must be proficient, at an engineering level, in at least one or more generalpurpose programming languages. Experience with Python and/or NextJS is a significant plus.
Cloud Expertise: Deep technical expertise in securing at least one major cloud platform (GCP, AWS, or Azure) and demonstrable experience with modern cloud security principles and tools.
Containerization: Mandatory expertise in securing container orchestration technologies, specifically Kubernetes.
Industry Knowledge: Proven experience securing products (enterprise SaaS, cloud environments) handling highly sensitive data, such as Protected Health Information (PHI), with specific knowledge of NIST 80053 / 800171, FedRAMP, HIPAA, NIS2 and other relevant security and privacy regulations and frameworks.
Communication: Exceptional communication and presentation skills, with the ability to convey complex security issues and technical risks to both technical and nontechnical audiences, including executives, customers, government agencies, and board members.
At Abridge, were transforming healthcare delivery experiences with generative AI, enabling clinicians and patients to connect in deeper, more meaningful ways. Our mission is clear: to power deeper understanding in healthcare. Were driving real, lasting change, with millions of medical conversations processed each month.
Joining Abridge means stepping into a fastpaced, highgrowth startup where your contributions truly make a difference. Our culture requires extreme ownershipevery employee has the ability to (and is expected to) make an impact on our customers and our business.
Beyond individual impact, you will have the opportunity to work alongside a team of curious, highachieving people in a supportive environment where success is shared, growth is constant, and feedback fuels progress. At Abridge, its not just what we doits how we do it. Every decision is rooted in empathy, always prioritizing the needs of clinicians and patients.
Were committed to supporting your growth, both professionally and personally. Whether it's flexible work hours, an inclusive culture, or ongoing learning opportunities, we are here to help you thrive and do the best work of your life.
If you are ready to make a meaningful impact alongside passionate people who care deeply about what they do, Abridge is the place for you.
Generous Time Off : 14 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees
Comprehensive Health Plans : Medical, Dental, and Vision coverage for all fulltime employees and their families.
Generous HSA Contribution : If you choose a High Deductible Health Plan, Abridge makes monthly contributions to your HSA.
Paid Parental Leave : Generous paid parental leave for all fulltime employees.
Family Forming Benefits: Resources and financial support to help you build your family.
401(k) Matching : Contribution matching to help invest in your future.
Personal Device Allowance : Tax free funds for personal device usage.
Pretax Benefits : Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Lifestyle Wallet : Monthly contributions for fitness, professional development, coworking, and more.
Mental Health Support : Dedicated access to therapy and coaching to help you reach your goals.
Sabbatical Leave : Paid Sabbatical Leave after 5 years of employment.
Compensation and Equity : Competitive compensation and equity grants for full time employees.
... and much more!
Abridge is an equal opportunity employer and considers all qualified applicants equally without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, or disability.
...Mandarin Document Reviewer Contact Review - Washington, DC Location: Remote Start Date: Negotiable Experience & Qualifications Familiarity with document... ...highquality, highaccountability, barred attorneys specifically tailored to the needs of our project...
Join to apply for the Pay Per Click (PPC) Account Manager role at Lifted Logic5 months ago Be among the first 25 applicantsJoin to apply for the Pay... ...years of experience in PPC campaign management, digital marketing, or account managementStrong knowledge of Google Ads,...
...Job Description Description: POSITION SUMMARY The Contracts & Compliance Manager oversees the full lifecycle of federal, state, and commercial... ...and risk management, and serves as a key liaison between project teams, clients, subcontractors, and regulatory agencies....
...Job Description Title Help Desk Analyst HDA2 A4 SC3 Location: Harrisburg, PA 17120 Duration: 12+ months Rate: $18/hr. W2 Interview... ...Years Assist senior technical staff as requested with lower level job tasks such as acquiring data and running reports Required 3...
...Job Overview: Clean Harbors is seeking a Fleet and Safety Trainer to lead training programs focused on driver safety, regulatory compliance, and accident prevention. This role is responsible for educating employees on safe driving practices, company policies, and industry...