Altera Digital Health
Application Security Specialist
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Altera Digital Health
Altera Digital Health is a healthcare technology company that specializes in interoperable electronic medical records (EMRs) and digital health solutions. Their mission is to enhance healthcare by creating IT systems that empower clinicians to provide better patient care through accessible and actionable patient information. The company focuses on a people-first approach and operational excellence to help healthcare organizations improve clinical workflows and patient outcomes. Altera offers user-centered digital platforms, including clinical and financial systems like Paragon Clinicals and Paragon Financials, tailored for hospitals and healthcare providers. They integrate advanced technologies, such as ambient listening AI, to address challenges faced by rural hospitals. Altera serves a variety of healthcare organizations, including hospitals and payers, and emphasizes partnerships that support large institutions in optimizing their electronic patient record systems. The company is also committed to community and corporate responsibility, supporting various organizations and causes to improve local environments and healthcare outcomes globally. Altera Digital Health is dedicated to advancing digital health and enhancing the overall healthcare experience for clinicians, patients, and communities.
Security at Altera Digital Health
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
“Altera Digital Health's AppSec mission is to partner with clients to implement evolving cybersecurity best practices and secure patient and provider data. Their risk philosophy emphasizes adhering to basic security principles, recognizing new solutions introduce risks, adopting zero-trust principles, applying least privilege access, and conducting continuous data security analysis and dynamic cybersecurity risk assessments for AI systems. Information regarding developer enablement versus gatekeeping and specific stated pain points or goals is not publicly available. While security and risk management are emphasized, details on developer enablement or specific AppSec team pain points/goals are absent.”
Security Team
The organizational structure and reporting lines for the AppSec team are not publicly available. Key public-facing leaders include Brian Montgomery, Expert Security Engineer, who "built a successful internal penetration testing team from scratch,"and Devang Patel, Principal Security Engineer, who is an "Azure certified Administrator with 10+ years of Experience in Server,Network and Virtualization."As of, the estimated team size is ~5-10, based on a LinkedIn search. There are 0 active AppSec job postings, and common skill/tool patterns are not publicly available. Specific organizational structure and reporting lines are not publicly available.
Key Initiatives
There is no public evidence of a Security Champions Program. Information on "Shift Left"in practice is not publicly available. The Vulnerability Management Process includes intake via a security testing partner (NetSPI) and a demonstrated ability to mitigate issues within eight hours of notification. For Secure SDLC Artifacts, Altera utilizes in-house monitoring built specifically for Altera applications. Information on recent initiatives (last 6 months) is not publicly available. There is limited public information on specific "shift left"practices, security champions programs, or recent initiatives.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.