Find The RightJob.

Information Security Engineer, Principal

Your Role

The Information Security, Risk and Operations team is responsible for providing cyber security services and service management to Blue Shield of California that enable secure and stable product development and operations. The Principal Artificial Intelligence Engineer will report to the Director of Information Security. In this role you will lead the design and implementation of solutions that power the next generation of security and IT service management capabilities in a digital healthcare environment. This high-impact role is critical to driving innovation across our platforms, proactively defending against emerging threats, and ensuring the safety, integrity, and stability of healthcare data and systems.

Your Work

In this role, you will:

Strategic Automation Leadership: Define the long-term automation strategy for Information Security with specific focus on healthcare data protection mandates.
Data Protection Automation: Leveraging Cloud and AI technologies, design and implement solutions supporting Data Loss Prevention, Dynamic Data Classification & Labeling, Data Discovery and Data Security Posture Management.
Governance, Trust & Explainability: Ensure solutions are interpretable, secure, bias-tested, and compliant with healthcare privacy regulations (e.g., HIPAA, HITRUST, NIST 800-53). Contribute to AI model governance standards.
Mentorship & Collaboration: Mentor mid- and senior-level engineers, foster cross-functional partnerships with DevSecOps, Privacy, Data Engineering, and AI teams, and evangelize automation’s role in proactive risk management and operational excellence.

Your Knowledge and Experience

Requires a Bachelor’s degree in Computer Science, Data Science, AI/ML, related technical field, or equivalent experience
Requires at least 10 years experience of relevant experience, software or security engineering (cybersecurity or risk context preferred.
Proven experience leading automation initiatives in a production environment.
Proficiency in Python, Go, Java or other modern coding languages
Hands-on experience designing, implementing, delivering and supporting cloud based solutions.
Deep knowledge of security domains such as threat detection, attack surface management, identity protection, and compliance analytics.
Understanding of key InfoSec concepts: threat modeling, detection engineering, incident response, vulnerability management.
Knowledge of healthcare compliance and data protection requirements (HIPAA, NIST, HITRUST, etc.) is strongly preferred.
Strategic thinker who can translate complex concepts into actionable plans

#LI-FB1

ABOUT THE TEAM
About Stellarus and the Ascendiun Family of Companies

Stellarus, launched in January 2025, is designed to scale innovative healthcare solutions that support customers in creating a health care experience deserving of their family, friends, and neighbors.

Stellarus is part of a family of organizations that is overseen by a nonprofit corporate entity named Ascendiun. The Ascendiun Family of Companies also includes Blue Shield of California and its subsidiary, Blue Shield of California Promise Health Plan and Altais, a clinical services company.

Stellarus’ vision is to empower its customers to create a healthcare experience that is worthy of their family, friends, and neighbors. Stellarus’ objective is to offer innovative, modern, scalable solutions that challenge the health care status quo. This very closely aligns with Blue Shield of California’s vision by using innovation to improve quality, affordability, and experience for members.

To achieve our mission, we foster an environment where all employees can thrive and contribute fully to address the needs of the various communities we serve. We are committed to creating and maintaining a supportive workplace that upholds our values and advances our goals.

Our Values:

At Stellarus, our core values of agility, trust, drive, courage and service shape our approach to developing innovative product offerings.

Our Workplace Model:

We believe in fostering a workplace environment that balances purposeful in-person collaboration with flexibility - providing clear expectations while respecting the diverse needs of our workforce. Our workplace model is designed around intentional in-person interaction, collaboration, connection, creativity and flexibility:

For most teams, this means coming into the office two days per week.
Employees living more than 50 miles from an office location, out of state employees, and employees in certain member-facing roles should work with their manager to determine in-office time based on business need.
For employees with medical conditions that may impact their ability to work in-office, we are committed to engaging in an interactive process and providing reasonable accommodations to ensure their work environment is conducive to their success and well-being.

The Company reserves the right to require more presence in the office based on business needs, and requirements are subject to change with periodic reviews.

Physical Requirements:

Office Environment - roles involving part to full time schedule in Office Environment. Based in our physical offices and work from home office/deskwork - Activity level: Sedentary, frequency most of work day.

Equal Employment Opportunity:

External hires must pass a background check/drug screen. Qualified applicants with arrest records and/or conviction records will be considered for employment in a manner consistent with Federal, State and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or disability status and any other classification protected by Federal, State and local laws.

Similar jobs