Security Engineer, Threat & Vulnerability Management (India)
Top focus
At Commure, we're building the AI Operating System for healthcare, the foundation that defines how care is delivered, documented, and financed. Our platform spans the full care journey: Ambient AI and Dictation eliminating documentation burden at the point of care, intelligent Agents automating patient and revenue workflows, and autonomous RCM processing billions in claims, all on a single AI-native platform integrated with 60+ EHRs.
Healthcare carries a $1 trillion administrative burden and we're at the center of transforming it. Today, 500,000+ clinicians across 500+ healthcare organizations nationwide trust Commure to handle $25B+ in annual claims and support over 200 million patient interactions.
Our latest $70M raise at a $7B valuation reflects the confidence the market has placed in this mission. Our team works directly alongside clinicians, not through layers of process, which means the gap between what you build and its impact on patient care is immediate.
We move fast, deploy daily, and take full ownership from early thinking to production. If you're energized by hard problems, high stakes, and a team that holds itself to a high bar, you'll find your people here. The future of healthcare is being built right now.
Come deliver this transformation. About the Role We are seeking a Security Platform Engineer to lead the modernization of our security infrastructure. This hands-on role combines security engineering, platform architecture, and AI/ML operations , responsible for managing our existing multi-vendor security stack while designing and implementing its next-generation replacement.
You’ll work across tools such as Splunk, SumoLogic, Wiz, CrowdStrike, Okta, and Trustwave , while architecting a self-hosted ELK-based security platform enhanced with agentic AI for automation and intelligent threat response . This is a unique opportunity to build the future of security operations—where scalability, automation, and intelligence converge.
What You'll Do Manage, integrate, and optimize the existing multi-vendor security ecosystem to ensure unified threat visibility and response. Architect, build, and operate a self-hosted ELK-based SIEM platform with advanced automation and AI-driven capabilities.
Design and deploy data ingestion pipelines capable of processing large-scale log volumes (10TB+ daily). Develop AI/ML models for anomaly detection, automated triage, and predictive threat analysis. Drive platform migration strategy from commercial SIEMs to an in-house security platform with minimal disruption.
Collaborate with Security Operations (SOC) and Engineering teams to define security monitoring standards, correlation rules, and incident response workflows. Lead automation initiatives to improve detection accuracy, reduce alert fatigue, and accelerate response times.
Ensure alignment with compliance and data privacy frameworks (SOC 2, HIPAA, GDPR, PCI-DSS). What You Have Required Bachelor’s degree in Computer Science, Information Security, or related field (Master’s preferred). 5+ years of experience in security engineering, platform engineering, or security operations .
Proven experience architecting or migrating large-scale security platforms. In-depth understanding of the MITRE ATT&CK framework , security analytics, and automation. Excellent documentation, presentation, and cross-functional collaboration skills.
Security Platforms & Operations 5+ years of hands-on experience with SIEM platforms (Splunk, ELK, SumoLogic, or equivalent). Experience integrating EDR/XDR (CrowdStrike, SentinelOne) and identity platforms (Okta, Azure AD). Deep understanding of incident response, log management, and threat hunting workflows .
Infrastructure & Automation Proven experience deploying and operating ELK Stack at enterprise scale. Strong expertise in Terraform, Ansible, Docker, and Kubernetes for automation and scalability. Proficiency in Python for scripting, automation, and data processing.
AI/ML & Data Engineering Hands-on experience with TensorFlow, PyTorch , and agentic AI frameworks (LangChain, AutoGen). Knowledge of Kafka/Kinesis for stream processing and vector databases for AI-driven analytics. Experience designing high-throughput data pipelines and implementing automated remediation workflows .
Query & Programming Skills Proficiency with SPL, KQL , and similar query languages. Familiarity with Go, Rust, or Java for performance-critical modules
Preferred
- Certifications such as CISSP, GIAC, OSCP, or CISM .
- Experience building or contributing to AI-driven security platforms .
- Prior experience in regulated industries (e.g., healthcare, fintech) .
- Please be aware that all official communication from us will come exclusively from email addresses ending in @ getathelas.com , @ commure.com or @ augmedix.com .
- Any emails from other domains are not affiliated with our organization.
- Employees will act in accordance with the organization’s information security policies, to include but not limited to protecting assets from unauthorized access, disclosure, modification, destruction or interference nor execute particular security processes or activities.
- Employees will report to the information security office any confirmed or potential events or other risks to the organization.
- Employees will be required to attest to these requirements upon hire and on an annual basis.