Design and maintain opinionated “paved‑road” patterns for AWS and Azure (accounts/subscriptions, VPC/VNet, IAM/Entra ID, data stores) that teams can adopt with minimal friction.
Implement and continually improve baseline controls: IAM roles and policies, network segmentation, secrets management, encryption, endpoint and workload protections, and security logging/telemetry.
Build and tune CI/CD and IaC guardrails (e.g., checks for misconfigurations, policy‑as‑code, image and dependency scanning) so that insecure changes are caught before production.
Partner with engineering and SRE to ensure high‑value security events are captured, normalized, and routed into our detection and response workflows.
Collaborate with data, product, and compliance stakeholders to support HIPAA‑aligned practices and secure handling of PHI across services and integrations.
Contribute to security runbooks, playbooks, and documentation so teams know how to safely use platforms, patterns, and tools you create.

Requirements

Significant hands‑on experience (typically 5+ years) in security engineering with a focus on cloud platforms, including production experience in AWS and working knowledge of Azure.
Strong practical skills in at least some of: Terraform or other IaC, Kubernetes/container security, CI/CD pipeline security, and cloud‑native security services (e.g., GuardDuty, Security Hub, Defender for Cloud).
Experience designing and operating baseline security controls at scale: IAM, network security (SGs/NSGs, firewalls, WAF), encryption, key management, and logging/monitoring.
Ability to work directly with product and platform engineers, explain trade‑offs clearly, and co‑design secure solutions that fit real‑world constraints.
Familiarity with security and compliance frameworks relevant to healthcare and cloud (for example, NIST, CIS, SOC 2, HIPAA, or HITRUST), and comfort applying them pragmatically.

Benefits

Base salary: typically 170,000–190,000 USD, depending on experience and location, plus equity and benefits.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security engineeringAWSAzureTerraformKubernetesCI/CD pipeline securitycloud-native security servicesIAMnetwork securityencryption

Soft Skills

collaborationcommunicationproblem-solvingtrade-off analysisco-design