AppSec Jobs
← Back to all jobs

athenahealth

AI Security Automation Engineer

Massachusetts, United StatesWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About athenahealth

athenahealth is a prominent provider of cloud-based healthcare technology solutions, established in 1997 and headquartered in Watertown, Massachusetts. The company specializes in electronic health records (EHR), revenue cycle management (RCM), and patient engagement tools tailored for ambulatory care providers, health systems, and independent practices. With a workforce of around 5,000 employees, athenahealth connects over 170,000 healthcare providers, serving more than 20% of the U.S. population and processing over 315 million claims annually. The flagship product, athenaOne, is an integrated cloud-based suite that combines EHR, practice management, and RCM into a single platform. Key offerings include athenaCollector, which provides SaaS-based RCM tools, and various EHR solutions for both ambulatory and inpatient settings. The company emphasizes improving healthcare efficiency through its open network and partnerships, while also focusing on customer satisfaction, teamwork, and innovation in healthcare technology.

Industry

information technology & services

Employees

8,700

1076 engineers

Revenue

$1.2B

Website

Visit →

Security at athenahealth

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Athenahealth views cybersecurity as a core design principle rather than a 'box to check,' following NIST Cybersecurity Framework guidance.
  • Their philosophy emphasizes developer enablement, aiming to 'improve the developer's experience through scalable security practices' and embedding security directly into day-to-day SDLC workflows rather than acting as a traditional gatekeeper.

Security Team

  • Athenahealth maintains specialized security teams across threat management, engineering, software development, and cloud security.
  • Publicly identified leaders include Taylor Lehmann (VP and CISO) and Janet Levesque (CISO), though their concurrent listing suggests a potential transition or role overlap in public records.
  • Lee Dennis is identified as a Lead Application Security Engineer.
  • While specific headcount is not public, at least one active high-level AppSec automation role is currently being recruited.

Key Initiatives

  • Current initiatives focus on 'Shift Left' practices by integrating security controls into the Harness CI/CD pipeline.
  • A major recent push (as of March 2026) involves building AI-powered workflows to automate vulnerability triage and reduce operational noise.
  • They also maintain a formal security exemption/exception process for tracking approvals and renewals.
  • No evidence of a formal Security Champions program was found.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.