IT Security Operations Engineer

About AKASA

At AKASA, our mission is to build the future of healthcare with AI. As the leading provider of generative AI solutions for the healthcare revenue cycle, we help health systems comprehensively capture and communicate the full patient clinical journey. By empowering health systems to streamline their operations, they can focus on what matters most - delivering quality patient care. We have raised over $205M in funding from investors such as Andreessen Horowitz, BOND, and Costanoa Ventures.

This is the most exciting time to join AKASA. Revenue bookings for our new AI-native product suite have grown over 20x since launching in 2024. In this time, we have broken our record for the largest deal in company history three times consecutively. This growth is driven by the massive improvement we are generating for our customers across clinical quality and documentation accuracy, both top priority areas for health system leaders.

Our deployments have been recognized nationally as "one of the most comprehensive real-world uses of GenAI in healthcare finance to date" (link). Our customer base represents more than $120B+ in net patient revenue and includes the most innovative health systems in the country, like Cleveland Clinic, Duke, Stanford, and Johns Hopkins.

Some of our recent recognitions include being named one of America's Top Startup Employers 2026 by Forbes, #1 most promising healthcare RCM startup of 2025 by Black Book Market Research, and one of the fastest-growing GenAI startups to watch by AIM Research. Our CEO was ranked among the “Top 50 Healthcare Technology CEOs” by the Healthcare Technology Report, and we have been certified as a “Great Place to Work” for the past 6 years in a row.

We’re building on this momentum to redefine what’s possible in healthcare. We’re looking for exceptional people to help us accelerate that reality.

We’re looking for a resourceful, automation-minded IT Security Operations Engineer to help build, support, and grow an innovative technology experience for all AKASAns. This role is ideal for someone who thrives in startup environments and wants to join a small but mighty team and have immediate impact. The ideal candidate can context-switch with ease, build scalable solutions from scratch, and genuinely enjoys empowering their colleagues through technology and mentorship. You’ll own the security configurations that keep AKASA securely running day to day while continuously finding ways to automate, document, and improve. AKASA is a fast-paced startup environment, and we look for people who are agile, organized, and have an ownership mindset.

This is an on-site position that requires 2+ days a week in our South San Francisco HQ.

• Implement and tune PHI Data Loss Prevention. Deploy and tune DLP policies across our SaaS estate (Google Workspace, Slack, GitHub, Jira/Confluence) and manage Mac endpoints. Build detections that catch real PHI exposure with minimal false positives, and partner with stakeholders to remediate findings.

• Operate AI-powered email security. Stand up and tune an AI email security layer on top of Google Workspace covering phishing, BEC, payload analysis, and vendor impersonation. Run investigations end-to-end.

• Configure MDR/EDR for endpoint posture. Tune detection coverage, response automation, and alert routing across the Mac fleet to maximize endpoint security posture, and integrate findings into our incident response workflow.

• Harden Okta and Google Workspace. Maintain Okta (OIE policies, MFA, device trust, geo controls, lifecycle, SCIM/group push) and Google Workspace (context-aware access, DLP, alert center, drive sharing, admin hygiene) against documented baselines. Codify in Terraform where practical.

• Automate security testing, reporting, and training. Automate phishing simulations, access reviews, configuration drift checks, and vulnerability rescans. Build reporting that produces the metrics leadership and auditors actually need, and run role-based security awareness training.

• Lead incident response. Maintain runbooks, join the on-call rotation, and lead investigations involving SaaS account compromise and PHI exposure.

• Support compliance at the source. Automate HITRUST, HIPAA, and SOC 2 evidence collection at the tool level rather than collecting screenshots after the fact.

• Maintain living documentation. Keep configurations, runbooks, and procedures current so a teammate can operate the system without you.

• 4+ years in security operations, IT security, or a closely related role

• Production experience reviewing and configuring security settings in Okta (or an equivalent IdP) and Google Workspace at meaningful scale

• Hands-on experience deploying or operating a DLP product across SaaS and endpoints

• Experience with AI/ML-driven email security tooling or modern SEGs (Abnormal, Material, Sublime, Proofpoint, Mimecast)

• Comfort writing scripts and small services (Python, Go, or TypeScript) to automate repetitive work and integrate APIs

• Working knowledge of at least one compliance framework relevant to our environment: HIPAA, HITRUST, SOC 2, or ISO 27001

• Strong written communication. You can document a system clearly enough that a teammate can operate it without you

• Ownership mindset. You see something broken and fix it. You don't wait for a ticket to act on a problem you can solve, and you take a project from "idea" to "in production" without needing to be project-managed through it.

• Prior experience in healthcare or another regulated industry handling sensitive data

• Familiarity with Terraform, especially for identity and SaaS configuration

• Experience with Mac fleet management (Kandji, Jamf) and modern device trust (Okta Device Trust, SecureW2, EAP-TLS)

• Background running phishing simulation and security awareness programs (KnowBe4, Hoxhunt, Living Security)

• Experience integrating LLM or AI tooling into a security workflow (triage, summarization, evidence collection)

• Incident response experience, including investigations involving SaaS account compromise

• Flexible paid time off (PTO)Expansive coverage for health, dental, and vision

• Employer contribution to Health Savings Accounts (HSA)

• Generous parental leave policy

• Full employee coverage for life insurance

• Home office stipend

• Cell phone/internet reimbursement

• Commuting benefits

• Company-paid holidays

• 401(K) plan

• Based on geo, market data, and other factors, the salary range for this position is $175,000 - $215,000 + Equity. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description.

We’re committed to doing the best work of our lives, together. Come see if we're the right team for you.

AKASA is a proud equal opportunity employer and we believe that a diverse and inclusive workforce is an imperative. We welcome people of different backgrounds, genders, races, ethnicities, abilities, sexual orientations, and perspectives, just to name a few. We do not discriminate based upon any protected class and we encourage candidates of all identities and backgrounds to apply. AKASA considers qualified applicants regardless of criminal histories in accordance with the San Francisco Fair Chance Ordinance.

AKASA is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at [email protected].