Solace is a healthcare advocacy marketplace that connects patients and families to experts who help them understand and take charge of their personal health.
🔥 About Solace
By harnessing the power of human connection through technology, Solace is transforming healthcare in the U.S.
Healthcare in the U.S. is fundamentally broken. The system is so complex that 88% of U.S. adults do not have the health literacy necessary to navigate the system without help. By helping people work with professional health advocates, Solace serves as an integral, personal support layer for health issues in a way that the health system can’t. Using proprietary technology to match patients with experienced advocates, Solace cuts through the red tape of healthcare and helps individuals and families make informed decisions that result in better outcomes.
Solace is a Series B startup founded in 2022 and backed by Inspired Capital, Craft Ventures, Torch Capital, Menlo Ventures and Signalfire. We have a lean, fully-remote U.S. team distributed coast-to-coast.
Check out our recent funding announcement in the WSJ here.
🧑💻 About the Role
We’re looking for a Web Security Engineer to join our team and lead the charge in securing our patient-facing and internal web applications. You’ll be responsible for protecting sensitive health data, staying ahead of evolving threats, and shaping the security posture of a platform that directly impacts patients' lives.
This role is a critical hire as we continue to scale—balancing agility and speed with robust, scalable security practices.
Own web application security across all our products and services (React, Node.js, PostgreSQL, Heroku).
Promote a security-first culture within the organization by enforcing secure coding practices.
Analyze new and existing features for potential security risks.
Conduct regular threat modeling, vulnerability assessments, and penetration testing (both automated and manual).
Work cross-functionally with engineering, DevOps, and compliance teams to ensure HIPAA, SOC 2, and general data privacy adherence.
Monitor, detect, and respond to potential threats in real-time.
Lead investigations of security incidents and breaches and perform root cause analysis and support post-incident remediation and reporting.
Stay current on web vulnerabilities (e.g., OWASP Top 10) and mitigate them proactively.
Help foster a security-first culture through training, documentation, and mentorship providing guidance and training to engineering and product teams on secure development practices.
Experience working in a start-up environment.
5+ years of experience in web application security or related engineering roles.
Proficiency with secure web development and auditing practices (e.g., input validation, authentication/authorization mechanisms, encryption in transit and at rest).
Experience with threat modeling, vulnerability scanning tools, and manual security testing.
Familiarity with regulatory/compliance frameworks.
Experience in healthcare or other regulated industries and knowledge of implementing HIPAA compliant software.
Up for the Challenge?
We look forward to meeting you.
Fraudulent Recruitment Advisory: Solace Health will NEVER request bank details or offer employment without an interview. All legitimate communications come from official @solace.health emails only. Report suspicious activity to hiring@solace.health.
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
Are you ready to make a tangible impact in the healthcare sector? Join Solace as an Application Security Engineer and become a vital part of our mission to transform how individuals navigate health challenges. At Solace, we understand that the U.S. healthcare system can be overwhelming, and we’re here to bridge that gap. You will take charge of securing our web applications, ensuring that sensitive patient data stays protected against evolving threats. Your expertise in web security will help us enforce secure coding practices across our products, making sure that everyone—from our engineers to our product teams—understands the importance of a security-first culture. You’ll be conducting regular threat assessments and penetration tests, all while collaborating across functions to maintain compliance with HIPAA and SOC 2 standards. With your robust experience in web application security, you'll have the opportunity to shape our security posture and lead investigations into security incidents when they arise. If you're excited about working in a start-up environment and have a passion for helping people, Solace could be the perfect fit for you. Join us remotely and help reimagine healthcare while developing cutting-edge solutions in web security. Ready for the challenge? We’re thrilled to meet you!
Join Solace as a Technical Recruiter to drive the recruitment of engineering talent for a mission-driven healthcare advocacy startup.
We are looking for a seasoned Senior Architect to spearhead innovative architecture solutions that align with our business capabilities at enGen.
GE Grid Solutions is seeking a Lead OT Cyber Security Engineer to enhance security protocols in high voltage systems for renewable energy projects.
Join Capgemini as a Semi Senior Application Support Analyst and contribute to advancing applications for one of the largest insurance carriers in the U.S.
Join CyberArk as an IT Business Solution Specialist to drive the enhancement of finance applications and systems.
Join Arthrex as a Sr SAP PP/QM Business Systems Analyst and contribute to process improvements in a dynamic manufacturing environment.
Indiana Wesleyan University is on the lookout for an inspiring VP and CIO to advance their mission through innovative technology leadership.
GDIT seeks a seasoned Acquisition Security Analyst to enhance the security of advanced technology programs through innovative risk management strategies.
Join IBM as an SAP SCM (MM) Lead, leveraging your expertise to drive successful project outcomes while initially working remotely.
Solace makes hardware and software message routers that efficiently move real-time information between distributed applications, devices and users over all kinds of local and global networks. Solace technology unifies many kinds of data movement s...
13 jobsSubscribe to Rise newsletter