About the Role
We are looking for a Senior DevSecOps engineer to drive the security and scalability of a rapidly growing healthcare company. In this role you will be supporting a remote workforce at national scale, with an eye towards strong multi-region resilience. This is a fully remote position, requiring the employee to be based in the US.
Responsibilities:
- Overseeing day to day needs around cloud infrastructure as code to build maintainable, scalable systems, that are thoroughly tested, documented, and have proper metrics and monitoring
- Work closely with our internal data and architecture teams to help clarify stories and translate business needs into practical technology solutions
- Continuously improve and enhance infrastructure as code tooling and automation.
- Ensure repositories are kept up to date and pipelines (Github Actions) are optimized. Drive the adoption of engineering best practices to keep developer velocity high as possible without sacrificing security.
- Support scoping, planning, and delivering initiatives involving client, platform, IT, and operational team deliverables
- Build and manage integrations between InStride and 3rd party systems
- Support security threat assessments, reviews, and mitigations
- Serve as a security advocate and escalation point for the entire organization, including assisting non-technical clinical staff with security concerns and best practices.
- Maintain and improve company wide HIPAA and SOC2 compliance via additional alerting, automation, and operational best practices, and testing
- Perform regular roles base access control and user access reviews
- Regularly review access and infrastructure logs
- Update and improve monitoring and observability
- Collaborate with third-party vendors, and external partners like contractors to oversee the deployment of cloud infrastructure, ensuring strict adherence to architectural standards and security best practices.
Tech Stack
- Terraform
- HIPAA compliant AWS
- Github Actions CI/CD
- Snowflake
- Flutter, Golang, React/Typescript
What You Need to Succeed in the Role
- 5+ years of experience writing, deploying, and maintaining Infrastructure as Code (IaC) for advanced web applications and services into staging and production environments in the cloud
- Collaborative mindset with an eye to supporting developer operations tooling via self service and documentation.
- Strong communication skills
- Ability to work on a team of engineers, providing and receiving feedback in structured Pull Requests
- Mentor less-experienced engineers, review code, and teach the engineering group better practices
- Comfortable working at a startup which moves fast with tight deadlines
- Lead our support team to aid engineering and IT to diagnose production issues and fix them as quickly as possible
- You have a solid understanding of how to prioritize projects and make tradeoffs between nice-to-haves and must-haves
- You are comfortable learning on the job and working with unfamiliar tools
- Familiarity with our tech stack is a plus
- HIPAA/SOC2 compliant Machine Learning and AI (ML/AI) interest also a plus
The expected annual salary for this role is between $125,000-$150,000. Actual starting salary will be determined on an individualized basis and will be is based on several factors including but not limited to specific skill set, work experience, etc.
