Skip to content
SecRoles

Staff, Security Engineer

FullscriptRemote (Ottawa, ON, Canada, Toronto, ON, Canada, Calgary, AB, Canada, Vancouver, BC, Canada, Austin, TX, US)June 10, 2026
Remote
Full-time
Security Engineering
Staff · 8+ yrs

About Fullscript

We’re an industry-leading health technology company on a mission to help people get better. We started in 2011 with one simple idea. Make it easier for practitioners to access the products they trust so they can deliver better care.

That simple idea grew into a platform that powers every part of care. Today, more than 125,000 practitioners use Fullscript for clinical insights, lab interpretations, patient analytics, education, and access to high-quality supplements. Over 10 million patients rely on Fullscript to stay connected to their care plans and follow through on treatment.

We build tools that make care smarter and more human. Tools that save time, simplify decisions, and help practitioners stay closely connected to the people they care for. When everything they need is in one place, they can focus on what matters most: helping people get better.

This is your invitation.

Bring your ideas, your grit, and your care for people.
Join us and shape the future of care.

The Opportunity

We're looking for a Staff Security Engineer to join Fullscript's Security Engineering team as a senior technical leader and hands-on builder. This role is ideal for someone who started their career in software engineering and developed deep expertise in security engineering, application security, or product security.

You'll work closely with engineering teams to design and implement security solutions that scale across Fullscript's products and platforms. As a Staff-level engineer, you'll own complex technical initiatives, help shape security strategy, and influence how security is built into the software development lifecycle. You'll be expected to balance hands-on execution with technical leadership, mentoring engineers and helping teams solve security challenges in a way that supports both business objectives and engineering velocity.

We're looking for someone who has owned systems end-to-end; from application development and infrastructure decisions through security design and implementation; Understands how to build secure, scalable solutions in production environments. The ideal candidate is deeply technical, highly collaborative, and energized by solving difficult problems that span multiple teams, systems, and domains.

What you'll do

  • Lead the design and implementation of security solutions across Fullscript's applications, platforms, and AI-powered systems.
  • Partner with engineering teams to embed security throughout the software development lifecycle, including architecture reviews, threat modeling, secure coding practices, and design reviews.
  • Drive application security, product security, and vulnerability management initiatives from concept through implementation.
  • Own complex security challenges that span multiple teams, balancing technical requirements, business priorities, and engineering constraints to deliver scalable solutions.
  • Mentor engineers and security practitioners, raising the bar for secure software development and helping teams make sound security decisions.
  • Influence technical strategy and security standards through hands-on engineering, technical leadership, and cross-functional collaboration.
  • Stay ahead of emerging threats, security technologies, and AI-specific risks to help shape Fullscript's long-term security posture.

What you bring to the table

  • 8+ years of software engineering experience designing, building, and operating production systems.
  • 3+ years of recent experience in application security, product security, security engineering, or a related security discipline.
  • Deep understanding of secure software development, modern application architectures, APIs, and cloud-native environments.
  • Experience owning complex technical initiatives from problem definition through delivery, including working across multiple teams and stakeholders.
  • Proven ability to influence technical direction, mentor engineers, and drive adoption of security best practices.
  • Strong hands-on experience with security tooling, automation, vulnerability management, and security assessments.
  • Excellent communication skills, strong technical judgment, and a continuous learning mindset.

Bonus if you have

  • Experience securing Ruby on Rails, Node.js, JavaScript, GraphQL, or similar application ecosystems.
  • Experience with AWS cloud security and cloud-native security controls.
  • Experience with threat modeling methodologies such as STRIDE, PASTA, or similar frameworks.
  • Experience with vulnerability management, application security posture management, or developer security tooling.
  • Familiarity with GitHub, GitLab, Wiz, static analysis tools, secret scanning, or related security platforms.
  • Experience conducting penetration testing, security research, or ethical hacking activities.
  • Experience protecting healthcare, regulated, or sensitive customer data.

What we can offer you

  • Remote-first flexibility to work where you work best, with North America (Ottawa, Toronto, or Calgary) preferred for this role.
  • Flexible PTO and competitive pay, because work-life balance matters
  • RRSP/401k match and stock options to invest in your future
  • Premium benefits package with customizable coverage, paramedical services, and an HSA.
  • Fullscript discounts to save on high-quality wellness products
  • Continuous learning opportunities to grow your skills and career

Fullscript shares salary ranges to support transparency and help candidates make informed decisions. The range shown reflects base salary only and does not include stock options, wellness stipends, or other benefits that are part of Fullscript’s total rewards package.

Final compensation depends on experience, skills, and location. We review pay regularly to stay aligned with market data and internal equity. Benefits and total rewards may vary by region.

Why Fullscript

Great work happens when people feel supported, trusted, and inspired. At Fullscript, we stay curious and keep finding smarter ways to make care better. We grow together, take on new challenges, and focus on impact. We put people first, work as a team, and leave egos at the door.

What to Know Before You Apply

We’re grateful for the interest in joining Fullscript. To make sure your application reaches our hiring team, please apply directly through our careers page.

A quick note: Due to the high volume of applications, we’re not able to respond to phone or email inquiries about application status. If there’s a match, our team will reach out directly.

Fullscript is an equal opportunity employer committed to creating an inclusive workplace. Accommodations are available upon request at accommodations@fullscript.com.

All offers are contingent on successful background checks conducted in compliance with federal, state, and provincial laws.

We use AI tools to support parts of the hiring process, including screening and reviewing responses. Final hiring decisions are always made by people and follow all applicable privacy and employment laws in Canada and the U.S.

Learn More

www.fullscript.com

@fullscriptHQ on instagram

@fullscript on YouTube

FullScript on LinkedIn

Job Details

Experience

Staff · 8+ yrs

Tools & Tech

AWS
GitHub
GitLab
JavaScript
Node.js
Ruby
Wiz
Apply