Weave is the all-in-one experience platform for small- and medium-sized healthcare businesses. From the first phone call to the final invoice and every touchpoint in between, Weave connects the…
Weave is the all-in-one experience platform for small- and medium-sized healthcare businesses. From the first phone call to the final invoice and every touchpoint in between, Weave connects the…
What they do: All‑in‑one communications and engagement platform for small/medium healthcare and SMB practices (phone/VoIP, texting, payments, scheduling, reviews, AI features)
HQ: Lehi, Utah
Founded by: Brandon Rodman, Jared Rodman, Clint Berry
Notable funding: $70M Series D led by Tiger Global (Oct 2019); earlier $5M Series A (2014)
Employee count (sample): 1143
Company Overview
Problem Domain
Customer communications and practice management for small/medium healthcare and local businesses.
Industry
Software Development
Funding Track Record
Series A- June 2014
$5M
Reported Series A reported in June 2014
Series C- December 2018
$37.5M
Growth round led by Lead Edge Capital with participation from existing investors
Series D- October 2019
$70M
Series D led by Tiger Global with participation from Bessemer, Catalyst, Crosslink, Pelion and Lead Edge
Investor Signal
“Backed by growth and venture investors including Tiger Global Management, Bessemer Venture Partners, Catalyst Investors, Crosslink Capital, Lead Edge Capital and Pelion Venture Partners”
Founders
What we do
Join the Team
Application Security Engineer
HybridLehi, UT, US
Hybrid • Lehi, UT, US
Related Companies
Company
HQ
Industry
Total Funding
Vanilla
🇺🇸US
Data and AnalyticsDeepTechFinanceInformation TechnologySoftware
$46M
Orum 🥇
🇺🇸US
Data and AnalyticsDeepTechInformation TechnologySoftware
-
Phaidra
🇺🇸Seattle, US
Data and AnalyticsDeepTechInformation TechnologyManufacturingSoftware
$93M
Qualified Health
🇺🇸US
Data and AnalyticsDeepTechHealthSoftware
-
Credo AI
🇺🇸US
Data and AnalyticsDeepTechInformation TechnologySoftware
$39M
Weave’s Application Security Engineer bridges the gap between Software Engineering and Corporate Governance. Strong experience in SaaS Engineering, and Product Development. Knowledge of multiple languages, frameworks, and protocols, is essential. Resolving how those systems interact with compliance, contracts, and controls is a standout skill.
The right candidate for this role will have strong experience with Code Analysis (SAST/DAST), Risk Analysis, Logging and Event Management, Threat Modeling, Authentication/Authorization Protocols, and how these practices apply to the greater security posture. Experience with VOIP and Telephony systems is a major plus.
We are looking for individuals with Project Management experience, and are focused on driving urgent security initiatives through to completion with intention.
This position will be hybrid (remote/in office)
Reports to the Head of Security
What You Will Own
What You Will Need to Accomplish the Job
What Will Make Us Love You
A deep understanding of application security practices, secure code development, and application security tooling.
The demonstrative capability to do the responsibilities described above.
A strong desire to work at Weave because you are interested in our products, what we are working on, and who you will be working with.
A track record of achievements in your past roles and companies.
Demonstrated history of securing SaaS products.
Ability to remove ambiguity and distill what matters and what doesn’t.
A sense of humor and ability to have fun while working hard!
At Weave, we use Artificial Intelligence (AI) tools to help us work more efficiently and create a smoother candidate experience. AI may assist with things like writing job descriptions, scheduling interviews, or reviewing applications against job-related criteria. For additional information, please review the External AI Policy Statement available on our Careers page.
Weave is an equal opportunity employer that is committed to fostering an inclusive workplace where all individuals are valued and supported. We welcome anyone who is hungry to learn, problem-solve and progress regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, or other applicable legally protected characteristics. If you have a disability or special need that requires accommodation, please let us know.
All official correspondence will occur through Weave branded email. We will never ask you to share bank account information, cash a check from us, or purchase software or equipment as part of your interview or hiring process.
Startup jobs. A lot of them.
Your next opportunity is in here somewhere. Sign up to explore 52,000+ startups and their open roles. No spam. No gamification. Just jobs.
52,000+
Startups
65,000+
Open Roles
1,400+
New This Week
AI Researcher
Full-timeNovi Sad, RS
Full-time • Novi Sad, RS
Technical Writer
ContractHaifa
Contract • Haifa
Backend Developer
ContractNovi Sad, RS
Contract • Novi Sad, RS
AI Researcher
Full-timeJerusalem
Full-time • Jerusalem
Mobile Developer
Full-timeCambridge, GB
Full-time • Cambridge, GB
AI Researcher
ContractRotterdam, NL
Contract • Rotterdam, NL
Collaborating closely with product and development team members during the software development lifecycle to identify security risks.
Acutely identifying vulnerabilities introduced during product development.
Deploying, tuning, triaging, and reviewing output produced by static code analysis tools, dependency code scanning tools, dynamic code scanning tools, and other application security tools.
Deployment of tooling into SDLC environment, and pipelines.
Holding team members accountable to timelines for mitigating identified application security risks. Enforcing established SLA’s
Facilitating application security reviews and threat modeling exercises.
Educating and enabling Engineering teams to self-serve
Engaging with third party penetration testing organizations to facilitate effective security tests against Weave and its products.
Optimizing the application security review process to meet the fast-paced product development at Weave.
“Red Teaming” the organization--turning over rocks to identify untreated application security risks.
Providing training to Weave’s development team members to build confidence in secure development practices.
Enhancing the awareness of good security practices throughout the organization.
Performing Demos/Talks in front of Engineering, (and non-technical) staff.
Being a subject matter expert for team members to lean on for advice and guidance.
Working closely with designers and engineers to deliver secure experiences to our customers.
Defining measurable outcomes and maintaining focus on those outcomes throughout the execution of the security roadmap.
2+ years experience as a full-time security researcher and/or application security engineer.
Possess willingness to responsibly discover Weave systems to help identify meaningful and exploitable risks.
Experience assessing the security configuration and hardness of systems, databases, network devices, applications, and processes used within an organization.
Ability to write code to test vulnerabilities in code produced by and systems operated by Weave.
Demonstrate strong integrity so as to not compromise the trust of Weave customers.
Ability to perform security assessments, penetration tests, and other vulnerability scans on Weave systems to identify, assess, prioritize, remediate, and monitor the security of Weave systems.
Experience working with security operations analysts to help more effectively identify nefarious activity performed by hackers.
Knowledge of effective threat modeling skills and techniques.
Knowledge of and experience with setting up, configuring, running, triaging, and tuning static code analysis, dependency code scanning, and dynamic code scanning tools.
Possess strong understanding of AWS and GCP and core services provided by AWS and GCP.
Have a strong working knowledge of Linux, Windows, and other common computer technologies.
Possess understanding of good security practices.
Demonstrate strong, effective communication skills--both written and verbal.
