echo
echo4d ago
New

Security Engineer

United StatesUnited States·San Franciscofull-timemid
EngineeringSecurity Engineer
1 views0 saves0 applied

Quick Summary

Key Responsibilities

Lead security across our portfolio of devices, including establishing security review processes for all new products and features. Architect Security Posture: Establish a balanced,

Requirements Summary

Prototype security requirements and educate the broader engineering team on secure coding best practices. Collaborate Cross-Functionally: Work cross-functionally with internal software, hardware,

Technical Tools
EngineeringSecurity Engineer

Echo Neurotechnologies is an exciting new startup in the Brain-Computer Interface (BCI) space, driving innovation through advanced hardware engineering and AI solutions. Our mission is to deliver cutting-edge technologies that restore autonomy to people living with disabilities and improve their quality of life.

Join a small, dedicated team of knowledgeable and motivated professionals. Our early-stage environment offers the opportunity to take ownership of broad decisions with significant and long-lasting impact. We emphasize continuous learning and growth, fostering cross-functional collaboration where your contributions are vital to our success.

We are seeking an experienced Security Engineer to lead security architecture, implementation, and maintenance of our cloud-based data platform, applications and medical devices. In this role, you will act as the primary technical expert working alongside our internal quality stakeholders and external security vendors. Your mission is to identify, implement, automate and monitor the various security aspects of our systems in a highly regulated environment. You will ensure our platform, application, and devices are secure and strictly adhere to our corporate standards and government regulations.

Responsibilities

~1 min read
  • Own Overall Portfolio Security: Lead security across our portfolio of devices, including establishing security review processes for all new products and features.

  • Architect Security Posture: Establish a balanced, pragmatic approach to security architecture and overall defense posture.

  • Drive Product Lifecycle Security: Guide security features through the complete product lifecycle, from developing requirements and threat modeling to managing cybersecurity documentation, vulnerability tracking, and continuous monitoring.

  • Prototype & Educate: Prototype security requirements and educate the broader engineering team on secure coding best practices.

  • Collaborate Cross-Functionally: Work cross-functionally with internal software, hardware, quality, and regulatory teams. Own and manage relationships with external security vendors (e.g., penetration testing partners).

Requirements

~2 min read
  • Security Architecture: Strong foundations in secure architecture across cloud environments (AWS, Azure, GCP), API layers, and client-side applications (mobile/desktop) utilizing modern IAM, RBAC/ABAC, secret management and industry security best practices.

  • Device Security: Proven experience designing security controls for local device connections (BLE, Wi-Fi, USB) and executing device-level access controls, utilizing PKI for secure device provisioning and identity management.

  • Network & Data: Deep understanding of secure transport protocols (HTTPS/TLS) and data cryptography algorithms (e.g., ECDH, ECDSA, AES-GCM) for data at-rest and in-transit. Knowledge of memory operation safety in C and C++.

  • Lifecycle Risk & Threat Modeling: Hands-on experience executing threat modeling (STRIDE, Attack Trees), assessing vulnerability severity via CVSS, and monitoring threat databases (NIST NVD, CISA KEV) to mitigate risks.

  • Security Automation: Proficient in programming (e.g., Python, Bash, or PowerShell) to identify and address security gaps, automate security workflows and build custom tooling.

  • Cross-Functional Leadership & Education: Proven ability to lead cross-functional engineering teams, mentor developers, and communicate technical designs, risks, and mitigations clearly to stakeholders.

  • Experience working with PHI / PII

  • Prior experience securing connected physical devices or embedded systems

  • Hands-on experience with security controls in the Azure ecosystem.

  • Experience working within a formal Quality Management System (QMS) and following strict procedures for traceabilities, design inputs, and risk documentation.

  • Familiarity with medical device cybersecurity frameworks, risk management standards, and regulations (e.g., FDA Section 524B, ISO 14971, FIPS-3)

What We Offer

~1 min read
An opportunity to work on exciting, cutting-edge projects to transform patients’ lives in a highly collaborative work environment.
Competitive compensation, including stock options.
Comprehensive benefits package.
401(k) program with matching contributions.

Echo Neurotechnologies is an Equal Opportunity Employer (EOE). We celebrate diversity and are committed to creating an inclusive environment for all employees.

All applications will be treated confidentially. Applicants may be asked to sign an NDA after the initial stages of the interview process.

Location & Eligibility

Where is the job
San Francisco, United States
Hybrid — some on-site time required
Who can apply
US

Listing Details

Posted
July 7, 2026
First seen
July 8, 2026
Last seen
July 10, 2026

Posting Health

Days active
0
Repost count
0
Trust Level
54%
Scored at
July 8, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust
Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

echoSecurity Engineer