About Abridge
Abridge was founded in 2018 with the mission of powering deeper understanding in healthcare. Our AI-powered platform was purpose-built for medical conversations, improving clinical documentation efficiencies while enabling clinicians to focus on what matters most—their patients.
Our enterprise-grade technology transforms patient-clinician conversations into structured clinical notes in real-time, with deep EMR integrations. Powered by Linked Evidence and our purpose-built, auditable AI, we are the only company that maps AI-generated summaries to ground truth, helping providers quickly trust and verify the output. As pioneers in generative AI for healthcare, we are setting the industry standards for the responsible deployment of AI across health systems.
We are a growing team of practicing MDs, AI scientists, PhDs, creatives, technologists, and engineers working together to empower people and make care make more sense. We have offices located in the Mission District in San Francisco, the SoHo neighborhood of New York, and East Liberty in Pittsburgh.
The Role
The Director of Security Operations is a critical leadership position responsible for defining, executing, and maturing the organization's 24/7 operational security posture. You'll lead a multidisciplinary set of teams focused on preventing, detecting, analyzing, and responding to security threats across the entire enterprise—from corporate infrastructure to production environments. This role requires exceptional strategic leadership, deep technical understanding, and a commitment to operational excellence, security automation, and threat intelligence integration.
You will report directly to the Chief Information Security Officer (CISO).
What You’ll Do
1. Strategic Leadership & Operational Excellence
Security Strategy: Define and continuously evolve the strategy, vision, and roadmap for the Security Operations function, ensuring alignment with overall business objectives and risk tolerance.
Financial Oversight: Manage the Security Operations budget, including forecasting expenditures for security tools, managed service providers, and personnel resource allocation.
Metric-Driven Management: Define, track, and report on key performance indicators (KPIs) and security metrics such as Mean Time to Detect (MTTD), Mean Time to Respond (MTTR), overall program effectiveness, and operational efficiency metrics such as tracking of true positives, total security events, security investigations, and alert fidelity.
People & Program Leadership: Serve as a motivating people leader for a growing, globally-distributed team, providing career development, mentorship, and regular performance feedback.
2. Core Security Operations Functions
Threat Response: Develop a team to lead and manage the 24/7 threat detection and response function, overseeing incident triage, escalation, and coordination for all security events and incidents.
Investigations and Forensics: Develop a team that takes point on technical investigations and digital forensics. Establish and maintain digital forensics capabilities and chain-of-custody procedures.
Threat Detection Engineering: Oversee the lifecycle of all detection-as-code, security alerts, rules, and logic. Drive the development and implementation of advanced threat detection content (e.g., SIEM correlation rules, EDR signatures) based on the MITRE ATT&CK framework.
Threat Intelligence: Establish a formal Threat Intelligence program, including collection, analysis, enrichment, and dissemination of relevant threat information to inform detection and response strategies.
3. Security Infrastructure & Engineering
Security Infrastructure Engineering: Develop a team to lead and define the architecture, deployment, and optimization of core security infrastructure, including the Security Information and Event Management (SIEM) system and Security Orchestration, Automation, and Response (SOAR) platform.
Security Services Automation: Drive the development and implementation of security automation across the organization to reduce manual effort, increase operational speed, and enforce security policy compliance at scale.
Data Engineering: Oversee security data engineering efforts, focusing on building and maintaining robust data pipelines, data lakes, and lakehouses to ensure high-quality, normalized security event data is available for threat detection and forensic analysis.
4. Offensive Security & Enterprise Security
Offensive Security: Own the management of the Red Team and Purple Team programs. Oversee and coordinate internal and external penetration testing engagements, translating findings into actionable remediation plans.
Enterprise Security: Develop a team to lead the security architecture, engineering, and operations of the corporate IT infrastructure, including: securing the SaaS ecosystem (leveraging SSPM), defining the authentication/authorization architecture, overseeing the Third-Party Risk Management (TPRM) program (supplier / supply-chain security), Identity and Access Management (IAM), endpoint security (EDR/XDR), email security, and network security controls (network monitoring, firewalls, zero-trust components).
5. Physical Security / Life Safety
Physical Security: Develop a team to lead and manage the physical security / life safety program for all corporate offices, including access control systems, video surveillance, and alarm monitoring.
Life Safety Compliance: Partner with Facilities/Real Estate and Ops teams to ensure all physical security measures align with local life safety codes and regulations.
International Travel Program: Partner with HR, Legal, and other departments to develop a travel policy and program that tracks and manages international travel, provides for security protections when appropriate, and manages risk accordingly.
6. Crisis Management
Cross-Functional Leadership: Lead the overall security response during major incidents and crises, serving as the senior-most security leader in cross-functional crisis management exercises and real-world events.
Communications and Coordination: Assist in developing and leading the strategy and execution for internal communication (e.g., executive status updates) and external communication (e.g., working with PR/Legal) during high-severity security incidents.
Coordination & Information Sharing: Establish and maintain relationships for effective coordination with external entities, including regulatory bodies, law enforcement, and government to private sector information sharing groups.
What You’ll Bring
Experience: 10+ years of senior leadership experience in security, with a minimum of 7+ years specifically in Security Operations, leading security teams, programs, or large-scale initiatives with a focus on threat detection engineering and incident response for a global SaaS company.
Business Acumen: Demonstrated experience running security as a business unit, including budget management, strategic forecasting, and translating technical risk into clear business impact (ROI) for executive leadership and the board.
Technical Depth: Deep technical expertise in operating and securing enterprise environments, including hands-on familiarity with SIEM/SOAR technologies and cloud security principles (GCP, AWS, or Azure).
Regulatory Knowledge: Proven experience operating in highly regulated industries, with strong knowledge of relevant security and privacy frameworks (e.g., NIST 800-53 / 800-171, FedRAMP, HIPAA, NIS2, etc.).
Communication: Exceptional communication and presentation skills, with the ability to convey complex security issues and operational risks to both highly technical teams and non-technical audiences, including executives, boards, customers, and government agencies.
Why Work at Abridge?
At Abridge, we’re transforming healthcare delivery experiences with generative AI, enabling clinicians and patients to connect in deeper, more meaningful ways. Our mission is clear: to power deeper understanding in healthcare. We’re driving real, lasting change, with millions of medical conversations processed each month.
Joining Abridge means stepping into a fast-paced, high-growth startup where your contributions truly make a difference. Our culture requires extreme ownership—every employee has the ability to (and is expected to) make an impact on our customers and our business.
Beyond individual impact, you will have the opportunity to work alongside a team of curious, high-achieving people in a supportive environment where success is shared, growth is constant, and feedback fuels progress. At Abridge, it’s not just what we do—it’s how we do it. Every decision is rooted in empathy, always prioritizing the needs of clinicians and patients.
We’re committed to supporting your growth, both professionally and personally. Whether it's flexible work hours, an inclusive culture, or ongoing learning opportunities, we are here to help you thrive and do the best work of your life.
If you are ready to make a meaningful impact alongside passionate people who care deeply about what they do, Abridge is the place for you.
How we take care of Abridgers:
Generous Time Off: 14 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees
Comprehensive Health Plans: Medical, Dental, and Vision coverage for all full-time employees and their families.
Generous HSA Contribution: If you choose a High Deductible Health Plan, Abridge makes monthly contributions to your HSA.
Paid Parental Leave: Generous paid parental leave for all full-time employees.
Family Forming Benefits: Resources and financial support to help you build your family.
401(k) Matching: Contribution matching to help invest in your future.
Personal Device Allowance: Tax free funds for personal device usage.
Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits.
Lifestyle Wallet: Monthly contributions for fitness, professional development, coworking, and more.
Mental Health Support: Dedicated access to therapy and coaching to help you reach your goals.
Sabbatical Leave: Paid Sabbatical Leave after 5 years of employment.
Compensation and Equity: Competitive compensation and equity grants for full time employees.
... and much more!
Equal Opportunity Employer
Abridge is an equal opportunity employer and considers all qualified applicants equally without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, or disability.
Staying safe - Protect yourself from recruitment fraud
We are aware of individuals and entities fraudulently representing themselves as Abridge recruiters and/or hiring managers. Abridge will never ask for financial information or payment, or for personal information such as bank account number or social security number during the job application or interview process. Any emails from the Abridge recruiting team will come from an @abridge.com email address. You can learn more about how to protect yourself from these types of fraud by referring to this article. Please exercise caution and cease communications if something feels suspicious about your interactions.
