Security Engineer II

Job description

Our mission: to eliminate every barrier to mental health.

At Spring Health, we’re on a mission to revolutionize mental healthcare by removing every barrier that prevents people from getting the help they need, when they need it. Our clinically validated technology, Precision Mental Healthcare, empowers us to deliver the right care at the right time—whether it’s therapy, coaching, medication, or beyond—tailored to each individual’s needs.

We proudly partner with over 450 companies, from startups to multinational Fortune 500 corporations, as a leading provider of mental health service, providing care for 10 million people. Our clients include brands you use and know like Microsoft, Target, and Delta Airlines, all of whom trust us to deliver best-in-class outcomes for their employees globally. With our innovative platform, we’ve been able to generate a net positive ROI for employers and we are the only company in our category to earn external validation of net savings for customers.

We have raised capital from prominent investors including Generation Investment, Kinnevik, Tiger Global, Northzone, RRE Ventures, and many more. Thanks to their partnership and our latest Series E Funding, our current valuation has reached $3.3 billion. We’re just getting started—join us on our journey to make mental healthcare accessible to everyone, everywhere.

We are looking for a Security Engineer II to be part of our Security Operations & Engineering (SecOps) team. SecOps is committed to proactively detect, respond to, simulate, and identify breach attempts and threat actors. You will work with a team who oversee overall enterprise security systems implementation, lifecycle (S-SDLC), and support. You will help improve the company’s ability to respond to threats through technology selection, internal product development and implementations with a heavy emphasis on automation of manual tasks and processes. We’re looking for security engineers that can work collaboratively with our security, product, infrastructure architecture and engineering teams to implement secure solutions. This role will report to the Manager of Security Operations and Engineering

What you’ll be doing

• Design, build, maintain, tune and enhance the effectiveness of our security controls in multiple security domains including but not limited to:

  • Cloud security
  • Endpoint detection and response (EDR)
  • Data loss prevention (DLP)
  • Security Information and Event Management (SIEM)
  • Identity and Access Management (IAM)
  • Email security and phishing defenses
  • Secure access service edge (SASE)

• Automate and optimize workflows to reduce manual effort in detection, analysis, and response.

• Refine detection and alerting rules to enable identification and remediation of potential threats with actionable, high-quality signals.

• Participate in on-call rotation, resolving most issues independently and escalating to Subject Matter Experts (SMEs) where necessary.

• Collaborate with peer teams to secure applications, business software and services, and infrastructure.

• Drive secure integrations for cloud applications and infrastructure.

• Create and maintain documentation including knowledge base articles, incident response playbooks, and project documentation.

• Lead post-incident reviews (RCAs) and contribute to lessons learned.

What success looks like in this role:

• Improved time to detect and resolve security issues
• Reduced number of vulnerabilities found in production
• Improved engagement scores between technology teams and security teams
• Security events are consistently monitored, investigated, and resolved in a timely way, with clear documentation that allows others to easily follow the lifecycle of the issue.
• Projects and initiatives are delivered on schedule, driving measurable improvements in security maturity and reducing risk across the organization.
• Security processes are proactively improved and automated to reduce manual work, increase efficiency, and strengthen detection and response capabilities.
• Documentation of systems, incidents, and projects is accurate, current, and serves as a reliable resource for the team and stakeholders.
• Communication with colleagues, stakeholders, and customers is timely, clear, and professional - ensuring that others feel informed and supported without needing to chase for updates.
• Team meetings and cross-functional sessions are opportunities to lead, share expertise, and influence outcomes - success means being an active participant and sometimes facilitator.
• Collaboration with engineering, product, infrastructure, and GRC teams results in trusted partnerships where security is seen as an enabler, not a blocker.
• You are recognized by peers and stakeholders as a dependable contributor who consistently follows through on commitments and raises the bar for security practice at Spring Health.

What we expect of you

• 2+ years of professional security engineering or operations experience, including incident response.
• Proficiency with Infrastructure as Code (Terraform, Terragrunt, CloudFormation, etc).
• Familiarity with cloud platforms (AWS, Azure, GCP) and their security features, best practices, and configurations.
• Strong scripting skills in at least one language (Python preferred) to automate tasks, analyze data, and develop security tools.
• Hands-on experience with incident response, detection engineering, security automation, and developing / automating incident response playbooks.
• Knowledge of security principles, technologies, and best practices (encryption, authentication, firewalls, IDS/IPS, etc).
• Ability to manage multiple tasks/projects simultaneously and prioritize effectively based on risk and business impact.
• Strong analytical and problem-solving skills with the ability to identify security risks and develop effective mitigation strategies.
• Excellent communication and collaboration skills; able to explain technical concepts to non-technical audiences.
• Familiarity with compliance standards such as HIPAA, GDPR, PCI-DSS, ISO 27001.

What we’d love to see as a bonus

• Experience with threat hunting.
• Security certifications (e.g., AWS Security Specialty, GCP Security Engineer, CISSP, GIAC).
• Experience leading incident postmortems or security tabletop exercises.
• Contributions to open source security tools or projects.

The target base salary range for this position is $120,000 - $150,250, and is part of a competitive total rewards package including stock options and benefits. Individual pay may vary from the target range and is determined by a number of factors including experience, location, internal pay equity, and other relevant business considerations. We review all employee pay and compensation programs annually using Radford Global Compensation Database at minimum to ensure competitive and fair pay.

Benefits provided by Spring Health:

Note: We have even more benefits than listed here and below, your recruiter will provide more in-depth information as you continue in the interview process. Benefits are subject to individual plan requirements and eligibility criteria.

• Health, Dental, Vision benefits start on your first day at Spring. You and your dependents also receive access to One Medical accounts HSA and FSA plans are also available, with Spring contributing up to $1K for HSAs, depending on your plan type.
• Employer sponsored 401(k) match of up to 2% for retirement planning
• A yearly allotment of no cost visits to the Spring Health network of therapists, coaches, and medication management providers for you and your dependents.
• We offer competitive paid time off policies including vacation, sick leave and company holidays.
• At 6 months tenure with Spring, we offer parental leave of 18 weeks for birthing parents and 16 weeks for non-birthing parents.
• Access to Noom , a weight management program—based in psychology, that’s tailored to your unique needs and goals.
• Access to fertility care support through Carrot, in addition to $4,000 reimbursement for related fertility expenses.
• Access to Wellhub,  which connects employees to the best options for fitness, mindfulness, nutrition, and sleep in one subscription
• Access to BrightHorizons, which provides sponsored child care, back-up care, and elder care
• Up to $1,000 Professional Development Reimbursement a year.
• $200 per year donation matching to support your favorite causes.

Not sure if you meet every requirement? Research shows that women and people from historically underrepresented communities often hesitate to apply for roles unless they meet every qualification compared to other similarly-qualified candidates. At Spring Health, we are committed to fostering a workplace where everyone feels valued, empowered, and supported to Thrive. If this role excites you, we encourage you to apply.

Ready to do the most impactful work of your life? Learn more about our values, what it’s like to work here, and how hypergrowth meets impact at Spring Health: Our Values

Our privacy policy: https://springhealth.com/privacy-policy/

Spring Health is proud to be an equal opportunity employer. We do not discriminate in hiring or any employment decision based on race, color, religion, national origin, age, sex, marital status, ancestry, disability, genetic information, veteran status, gender identity or expression, sexual orientation, pregnancy, or other applicable legally protected characteristic. We also consider qualified applicants regardless of criminal histories, consistent with applicable legal requirements. Spring Health is also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans. If you have a disability or special need that requires accommodation, please let us know.