Senior Security Specialist
Fabric
Remote
Posted on Jul 31, 2025
Senior Security Specialist
Remote
Infrastructure & Security
Remote
Full-time
Fabric Health is a leading healthcare technology startup revolutionizing how patients access and experience care. Our innovative platform reimagines how patients connect to care—delivering personalized guidance, tailored engagement, and intuitive experiences throughout their healthcare journey. We are a passionate, mission-driven team committed to improving healthcare outcomes and expanding patient access to high-quality, personalized care.
Some of Fabric’s customers include Luminis Health, OSF HealthCare, MUSC Health, and Intermountain. Fabric is backed by Thrive Capital, GV (Google Ventures), Salesforce Ventures,Vast Ventures, BoxGroup, and Atento Capital.
About the Role
As a vital member of our team, you will partner closely with the Chief Information Security Officer (CISO) and the Product and Engineering Team to integrate security and business needs into technical designs, as well as configure and validate the security of our information systems. Your expertise will be crucial in maintaining a robust security posture and ensuring compliance with industry standards.
As a Senior Security Specialist, you will:
- Establish, implement, and continuously monitor security and privacy controls to safeguard our systems and Develop and recommend solutions for information security requirements and lead the remediation of identified issues.
- Serve as a subject matter expert (SME) for clients and partners on Fabric's privacy and security protocols.
- Spearhead external audits of Fabric's systems, ensuring compliance with frameworks such as HITRUST, SOC 2, HIPAA, and PCI-DSS.
- Conduct thorough audits of third-party suppliers and vendors, providing valuable insights and recommendations to leadership on associated risks.
- Develop and maintain comprehensive security documentation, including policies, standards, procedures, and guidelines, reflecting industry best practices.
Requirements
- Minimum of 5 years of experience in healthcare security and compliance.
- Bachelor’s degree or equivalent work experience.
- Experience with HIPAA Compliance regulations.
- Experience with HITRUST CSF.
- Experience with AWS and cloud security.
- Knowledgeable of software engineering best practices around SDLC (software development Life Cycle). How engineering teams ship software, utilizing peer reviews and automated tested, that is well tested and secure.
- Adept at professional communication, you can research, prepare, and deliver high-quality communications, clearly articulating security issues and resolutions to both technical and non-technical audiences.
- Demonstrated expertise and a strong track record of ensuring compliance with relevant security and privacy frameworks.
- Proven ability to manage time effectively and excel in a dynamic, remote work environment.
- Exceptional attention to detail and the capacity to manage multiple priorities effectively.
- Relevant certifications such as CISA, CISM, or CISSP are advantageous but not mandatory.
- Experience with SaaS environments is advantageous but not mandatory.
Learn more about Fabric
At Fabric, we believe that a diverse workforce is essential to our success. We are an equal opportunity employer and are committed to creating an inclusive environment for all employees. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, veteran status, or any other legally protected characteristic. We actively encourage individuals from all backgrounds to apply.
#LI-Remote
First name *
Last name *
Email *
LinkedIn URL *
Phone number *
Location *
Resume *
Click to upload or drag and drop here
Cover letter
Click to upload or drag and drop here
How did you hear about this job? *
If you selected 'Other,' please specify where you heard about us. If you selected 'Employee Referral,' please provide the referring person's full name.
Are you authorized to work in The United States for any employer? *
Do you now or will you in the future require employer-sponsored visa authorization to work in the United States (e.g., H-1B, TN, etc., including after the expiration of a student visa's work authorization)? *
Which state are you currently based in? *
What specifically about Fabric Health's mission, approach, or products resonates with you, and how do you envision your skills and experience contributing to our vision? *
Voluntary Self-Identification
To comply with government reporting requirements, we invite candidates to participate in the self-identification survey below. Your completion of this form is entirely optional, and your decision will neither influence the hiring process nor any subsequent stages. Any information you choose to share will be kept confidential and stored in a secure file. As outlined in our Equal Employment Opportunity policy, we uphold a commitment to non-discrimination based on any protected group status specified in applicable laws.
Gender
Race
Race and ethnicity descriptions
Voluntary Self-Identification of Veteran Status
VEVRAA requires Government contractors to take affirmative action to employ and advance in employment protected veterans. To help us measure the effectiveness of our outreach and recruitment efforts of veterans, we are asking you to tell us if you are a veteran covered by VEVRAA. If you believe that you belong to any of the following categories of protected veterans, please indicate by making the appropriate selection.
Veteran status descriptions
Disabled veteran
A veteran who served on active duty in the U.S. military and is entitled to disability compensation (or who but for the receipt of military retired pay would be entitled to disability compensation) under laws administered by the Secretary of Veterans Affairs, or was discharged or released from active duty because of a service-connected disabilityRecently separated veteran
A veteran separated during the three-year period beginning on the date of the veteran's discharge or release from active duty in the U.S military, ground, naval, or air serviceActive duty wartime or campaign badge veteran
A veteran who served on active duty in the U.S. military during a war, or in a campaign or expedition for which a campaign badge was authorized under the laws administered by the Department of DefenseArmed Forces service medal veteran
A veteran who, while serving on active duty in the U.S. military ground, naval, or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985 (61 Fed. Reg. 1209).Veteran status
PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.
By applying you agree to Gem's terms and privacy policy.
Save your info to apply to other roles faster & help employers reach you.
Req ID: 213