Senior Manager, Enterprise Security

ABOUT ABRIDGE Abridge was founded in 2018 with the mission of powering deeper understanding in healthcare. Our AI-powered platform was purpose-built for medical conversations, improving clinical documentation efficiencies while enabling clinicians to focus on what matters most—their patients. Our enterprise-grade technology transforms patient-clinician conversations into structured clinical notes in real-time, with deep EMR integrations. Powered by Linked Evidence and our purpose-built, auditable AI, we are the only company that maps AI-generated summaries to ground truth, helping providers quickly trust and verify the output. As pioneers in generative AI for healthcare, we are setting the industry standards for the responsible deployment of AI across health systems. We are a growing team of practicing MDs, AI scientists, PhDs, creatives, technologists, and engineers working together to empower people and make care make more sense. We have offices located in the Mission District in San Francisco, the SoHo neighborhood of New York, and East Liberty in Pittsburgh. THE ROLE Want to work on building out security from the ground up at the leading edge of AI in healthcare globally? We're looking for an experienced and highly motivated Senior Manager, Enterprise Security to join our team as one of the first leaders on the Abridge Security team. In this role, you'll own the strategy, roadmap, and execution of enterprise security across the organization—securing the identities, endpoints, SaaS applications, and corporate infrastructure that our employees rely on every day. You'll build and lead a high-performing team while partnering closely with IT, Legal, Compliance, and People teams to deliver security that scales alongside rapid growth. This position requires deep expertise in identity and access management, endpoint protection, and corporate security architecture, paired with a builder's mindset and excellent communication skills to influence security culture across the organization. This is a greenfield opportunity to architect the way forward for Enterprise Security at Abridge. You will thrive here if you are passionate about building 0 → 1 and believe that enterprise security should reduce risk while empowering employees to do their best work. WHAT YOU’LL DO - Own Enterprise Security Strategy: Define and drive the vision, roadmap, and execution of Abridge's enterprise security program—spanning identity, endpoint, SaaS, email, and corporate network security—ensuring capabilities scale with the organization - Build and Lead the Team: Recruit, mentor, and develop a team of enterprise security engineers, setting the technical bar from day one and establishing engineering best practices that attract top talent - Architect Identity and Access Management: Design, implement, and operate IAM and Zero Trust access controls, including SSO, MFA, authentication protocols, access lifecycle management, and identity governance across cloud and SaaS environments - Secure the Endpoint Fleet: Own the strategy and tooling for endpoint detection and response (EDR), device management (MDM), and endpoint compliance, ensuring every device connecting to Abridge systems meets security standards - Drive SaaS and Third-Party Security: Establish and operate programs for SaaS security posture management, shadow IT discovery, vendor security assessments, and third-party risk management to maintain control as the SaaS footprint grows - Automate and Scale: Build production-grade automation for access reviews, onboarding/offboarding workflows, policy enforcement, and security operations—turning manual processes into reliable, code-driven systems - Partner Cross-Functionally: Collaborate with IT, People, Legal, and Compliance teams to translate regulatory and business requirements into durable, automated technical controls that don't slow down the organization - Lead Enterprise AI Security: Define and execute Abridge's strategy for securing corporate AI adoption end-to-end—from establishing governance frameworks and sanctioned tool inventories, to implementing technical controls around data loss prevention, prompt injection risks, and third-party AI vendor assessments—ensuring employees can leverage AI safely and at speed - Define Build vs. Buy: Evaluate and select enterprise security tooling, making pragmatic build-vs-buy decisions that maximize coverage while minimizing complexity WHAT YOU’LL BRING - Depth of Experience: 8+ years in enterprise security, identity security, corporate security, or adjacent security engineering domains, with at least 5+ years in a management capacity - Identity and Access Expertise: Strong hands-on depth in identity and access management, including SSO, OAuth/OIDC, SCIM, authentication protocols, access lifecycle management, and identity governance. You understand how to design and operate Zero Trust security architectures in modern enterprise environments