About Us:

Ambience Healthcare is the leading AI platform for documentation, coding, and clinical workflow, built to reduce administrative burden and protect revenue integrity at the point of care. Trusted by top health systems across North America, Ambience’s platform is live across outpatient, emergency, and inpatient settings, supporting more than 100 specialties with real-time, coding-aware documentation. The platform integrates directly with Epic, Oracle Cerner, athenahealth, and other major EHRs. Founded in 2020 by Mike Ng and Nikhil Buduma, Ambience is headquartered in San Francisco and backed by Oak HC/FT, Andreessen Horowitz (a16z), OpenAI Startup Fund, Kleiner Perkins, and other leading investors.

Join us in the endeavor of accelerating the path to safe & useful clinical super intelligence by becoming part of our community of problem solvers, technologists, clinicians, and innovators.

The Role:

Ambience runs real-time clinical workflows inside the most security-sensitive health systems in the country. That means security can’t be bolted on, it has to be engineered into the product.

As a Staff Security Engineer, you’ll own the systems that protect our platform at scale: application security, cloud security, detection and response, and the security primitives other teams build on. You’ll design guardrails that make the secure path the default, harden our infrastructure against real threats, and partner with engineering to eliminate entire classes of risk.

This is a builder role. You’ll write code, design systems, and lead cross-cutting security initiatives that directly enable enterprise trust and customer expansion.

What You’ll Own:

Application & Platform Security — Design and implement secure-by-default patterns across our backend and infrastructure. Identify and remediate vulnerabilities in application logic, APIs, and data flows.

Cloud & Infrastructure Security — Own security posture across our cloud environment: IAM, network boundaries, secrets management, and secure service-to-service communication.

Detection & Incident Response — Build and operate detection pipelines, alerts, and runbooks. Lead investigations, root cause analysis, and systemic fixes — not just one-off patches.

Security Tooling & Automation — Extend and integrate security tools through code. Automate controls, evidence collection, and remediation to reduce manual work and scale coverage.

Security Architecture & Leadership — Set technical direction for security across teams. Threat model new products, influence designs early, and raise the security bar company-wide.

Who You Are:

Experience & Impact: You have 7+ years (Staff) to 12+ years (Principal) of hands-on security engineering experience. You don’t just find bugs; you design systems that prevent entire classes of vulnerabilities.

Scalable Scope:

• At the Staff level, you have led cross-cutting security initiatives and influenced architecture for major product areas.

• At the Principal level, you have a track record of defining company-wide security North Stars, mentoring other senior engineers, and shifting the security culture of an entire organization.

Engineering Roots: Strong software engineering fundamentals are a must. You are comfortable reading, writing, and modifying production code in Python, Go, or TypeScript. You view security as an engineering problem, not a compliance checklist.

Proven experience in security architecture and systems hardening across applications, infrastructure, and cloud environments

Hands-on with vulnerability management and penetration testing: identifying, prioritizing, and driving remediation of real risks

Experience selecting and extending modern security tools for detection, incident response, automation, and threat monitoring

Strong cloud security background (AWS and/or GCP), including IAM, networking, and secure service design

Collaborative and pragmatic: able to partner with engineers, influence designs early, and explain security tradeoffs clearly

Why Here:

At most companies, security is reactive. At Ambience, it’s a product enabler. The systems you build determine whether we can earn — and keep — the trust of the largest health systems in the country.

You’ll have real ownership, direct access to leadership, and the chance to shape how security engineering is done at a company where it truly matters. Small team, high trust, and problems that are both technically deep and mission-critical.

Pay Transparency
We offer a base compensation range of approximately $250,000–$325,000 per year, along with meaningful equity. This intentionally broad range provides flexibility for candidates to tailor their cash and equity mix based on individual preferences. Our compensation philosophy prioritizes meaningful equity grants, enabling team members to share directly in the impact they help create. If your expectations fall outside of this range, we still encourage you to apply—our approach to compensation considers a range of factors to ensure alignment with each candidate's unique needs and preferences.

Being at Ambience:

• An opportunity to work with cutting edge AI technology, on a product that dramatically improves the quality of life for healthcare providers and the quality of care they can provide to their patients

• Work alongside a world-class, diverse team that is deeply mission aligned

• Ownership over your success and the ability to significantly impact the growth of our company

• Competitive salary and equity compensation with benefits including health, dental, and vision coverage, quarterly retreats, unlimited PTO, and a 401(k) plan with matching

Ambience is committed to supporting every candidate’s ability to fully participate in our hiring process. If you need any accommodations during your application or interviews, please reach out to our Recruiting team at accommodations@ambiencehealthcare.com. We’ll handle your request confidentially and work with you to ensure an accessible and equitable experience for all candidates.

Ambience Healthcare has become aware of scams targeting jobseekers with fake jobs and even interviewing people. Our emails will always come from @ambiencehealthcare.com. We would never our ask candidates to download apps or make any form of payment(s). If you are contacted through WhatsApp, Telegram, similar but fake email domains, or asked to make a payment, these contacts are not legitimate. Report the issue immediately to LinkedIn and the FBI.