Cloud Security Engineer

Location: Remote (For Non-Local) or Hybrid (Local to NYC area or Denver)

Position Summary:

As a security engineer, you will help build and manage services that detect and automate the mitigation of cybersecurity threats across Judi's infrastructure. You will work with software engineers, platform engineers, and other security engineers across multiple teams to develop innovative security solutions.

Why you'll love working here:

• Working with at Judi Health means protecting sensitive healthcare data that directly impacts peoples lives while leveraging cutting-edge security tools in a rapidly scaling environment. You'll join a security team with established processes, yet still have the opportunity to shape our security posture as we prepare for our next major milestone.
• Our collaborative culture values security expertise and rewards innovation, offering competitive compensation and clear career advancement paths as our company transitions from startup to established industry leader.

Position Responsibilities:

• Design solutions to solve, remediate, and automate recurring issues.

• Partner with internal teams to help drive best practices in cybersecurity and compliance.

• Research and review new software solutions with internal partners.

• Write documentation for end-users as needed to facilitate process improvements.

• Actively participate in maintain secured cloud deployements via infrastructure as code(IAC).

• Conduct security analysis of AWS and deployed software and design architecture recommendations.

• Identify, maintain, and publish the requirements for the IT department to achieve compliance and privacy standards in SOC 2, HITRUST, FISMA, FedRamp, ISO 27001, and other standards.

• Assist in developing, tracking and report threat intelligence metrics and KPI's.

• Identify opportunities to increase threat detection and response as new threats emerge.

• Establish and collaborate on the standardization of security practices amongst the development teams.

• Familiar with Agile, Scrum, and Kanban practices and concepts.

• Support on-call rotation teams in incident response.

• Provide security consultation to teams across the company.

• You will make a tangible impact on society. Your code will directly improve healthcare experiences for millions.

• We are a late-stage startup with stability. We have startup energy with a focus on delivery, but healthy processes with a strong financial outlook that provides a sense of security.

• Responsible for adherence to the Capital Rx Code of Conduct, including reporting of noncompliance.

Minimum Qualifications:

• Experience in AWS services related to security engineering.

• Experience in serverless application architecture.

• Capable of writing scripts in Python, Bash, or Powershell

• Experience deploying cloud infrastructure via HashiCorp Terraform.

• Experience with common security tools such as CSPM, CNAP,DLP, SIEM.

• A customer-oriented approach to problem resolution.

• Experience working with compliance requirements

• Excellent written and verbal communication skills

• Highly self-motivated with an ability to work independently.

• Research emerging technologies and the risks they pose.

• Desire to work at a rapidly growing organization.

• Experience supporting remote users in a distributed environment.

Preferred Qualifications:

• AWS Solution Architect Associate

• Security+