Senior Engineer, IT Security

Senior Security Engineer – Identity & DevSecOps

About Chartis

The challenges facing US healthcare are longstanding and all too familiar. We are Chartis, and we believe in better. We work with more than 1,900 organizations annually to develop and activate transformative strategies, operating models, and organizational enterprises that make US healthcare more affordable, accessible, safe, and human. With more than 1,450 professionals, we help providers, payers, technology innovators, retail companies, and investors create and embrace solutions that tangibly and materially reshape healthcare for the better. Our family of brands—Chartis, Jarrard, Greeley, and HealthScape Advisors—is 100% focused on healthcare and each has a longstanding commitment to helping transform healthcare in big and small ways. Believe in better.

Chartis has offices in Boston, Chicago, New York, Washington D.C., and Nashville.

Remote work is allowed.

Role Overview

We are seeking a hands-on Senior Security Engineer to support and scale security across cloud-native and AI-driven engineering teams. This role reports into Chartis IT Security and works closely with our development teams to ensure security is effectively integrated into application development, cloud platforms, and delivery pipelines.

This role focuses on identity, automation, and platform security—enabling engineering teams to build and deploy securely without introducing unnecessary friction.

This is a hands-on engineering role, not a review or audit function.

Responsibilities

• Partner with engineering teams to design secure architectures and solutions

• Integrate security controls into CI/CD pipelines, platform tooling, and application onboarding processes

• Provide technical guidance and reusable patterns for secure development

• Own and improve the application onboarding and identity integration process

• Translate security requirements into practical, scalable, and automated controls

• Collaborate closely with developers while maintaining clear ownership within the Security team

Qualifications and Desired Skills

• 5–8+ years of hands-on experience in security engineering with a direct focus on IAM and DevSecOps practices (no purely advisory or oversight roles)

• Proven, hands-on administration and engineering experience with Okta, including:

  • Okta Identity Cloud (OIC)

  • Okta Identity Governance (OIG)

  • Okta Workflows

  • Application onboarding, lifecycle management, and policy enforcement

• Strong, hands-on cloud administration experience in Microsoft Azure (required), including identity, access control, and resource governance

• Working knowledge of AWS and Google Cloud Platform in multi-cloud environments

• Hands-on experience with Kubernetes (K8s), including workload identity, access controls, and platform security considerations

• Working knowledge of Splunk Cloud, including building alerts, dashboards, and detection logic for security-relevant events

• Strong understanding of modern authentication and authorization standards, including OAuth2, OIDC, and SAML

• Proficiency in Python scripting for automation, integration, and operational tooling

• Demonstrated experience integrating security into CI/CD pipelines and infrastructure-as-code workflows

• Experience designing and implementing RBAC/ABAC models across cloud and SaaS platforms

• Demonstrated experience performing threat modeling (e.g., STRIDE, attack trees) and translating findings into actionable engineering controls

Preferred Qualifications

• Okta certifications (e.g., Okta Certified Administrator, Okta Certified Professional, or equivalent advanced certification)

• Experience supporting AI/ML platforms or AI-enabled application ecosystems

• Experience with secrets management and zero trust architecture patterns

• Experience with tools like LangSmith and other AI related tools

Salary range: $121,000-$163,000, plus may be eligible for an annual discretionary bonus. The salary range for this role takes into account the wide range of factors that are considered in making compensation decisions including, but not limited to, skills, experience, training, licensure and certifications, practice area, and other business and organizational needs. In addition, Chartis offers several benefits including medical, dental, vision, HSA, FSA, disability insurance, life insurance, 401(k) match, paid time off, wellness stipend, and additional voluntary benefits.

At Chartis, we pride ourselves on having a diverse workforce. We value and celebrate the uniqueness of individuals and the different perspectives they provide. We offer equal opportunity employment regardless of race, color, religion, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, marital status, or protected veteran status.