Jobs
>
New York City

    Senior DevSecOps Engineer - New York, United States - Cabinet Health

    Cabinet Health
    Cabinet Health New York, United States

    2 weeks ago

    Default job background
    Description
    Senior DevSecOps / Platform Engineer

    Location: Remote First Team, EST Time Zone Preferred
    About the Role

    As a Senior DevSecOps / Platform Engineer at Cabinet Health, you will work as a member of our engineering team to audit, design, and implement secure infrastructure solutions for our patient health platform. That includes implementing security best practices as well as working with the engineering team to build tools to help us deploy faster and remedy issues quickly. Additionally, you will work across the organization to help maintain our HIPAA compliance, manage external security audits with our partners, and monitor our cloud spend. Your initial projects will range from auditing and improving the security of our AWS infrastructure (network, IAM, secrets management) to validating and improving our overall security and infrastructure best practices. The best fit for this role is an individual with passion for sustainability and for the potential technology has to improve the quality and accessibility of healthcare. Performance will be measured by your ability to maintain our HIPAA compliance, quickly address new security vulnerabilities, and embed security best practices in all aspects of our engineering organization. This role reports into the VP of Digital and Analytics.
    What You'll Do
    • Own our HIPAA Engineering and Technical compliance monitoring
    • Fix issues identified by our HIPAA monitoring platform, external vendor PenTests, and your own expertise
    • Participate in code reviews and engineering review board meetings to help identify potential security issues before they arise
    • Work with our engineers to implement new HIPAA application specific requirements
    • Set internal SLAs for technical remediation timelines
    • Build out tools for the engineering team to quickly identify and simulate customer observed bugs
    • Lead infrastructure architecture design of existing and future systems
    • Enhance and optimize our CI/CD pipelines (Github Actions)
    • Mentor junior team members
    • (Bonus) Contribute on backend system engineering projects
    Who you are
    • 4+ years of proven experience as a Platform Engineer, DevSecOps engineer, or similar role for a company in healthcare, finance, or other highly regulated industry.
    • 4+ years of proven AWS experience, specifically with network systems, Route53, RDS, ECS/Fargate, ALB, Cloudfront, Lambda, and S3
    • 3+ years of proven experience writing and implementing infrastructure as code.
    • 3+ years proven experience with SQL and relational database design
    • 3+ years of proven experience working with containers and serverless infrastructure
    • 3+ years experience building, maintaining and improving CI/CD pipelines (we use Github Actions)
    • Strong technical knowledge of best practice security for networks, systems, web applications, APIs, and databases.
    • Familiarity with security tools and technologies, such as OWASP, SIEM, IDS/IPS, WAF and vulnerability scanners.
    • Knowledge of common adversarial Tactics, Techniques, and Procedures (Mitre Att&ck TTPs).
    • Good understanding of secure software development operation best practices.
    • Strong expertise in architectural engineering best practices such as blue/green deployments or other zero downtime deployments methodologies.
    • Worked remotely before, or know that you'd work well with a remote team
    Your personal and professional values
    • Highly motivated by Cabinet's mission: to eliminate single-use plastic in medicine - making getting better, better through healthcare that is more sustainable, higher quality, and personal
    • Trustworthy: dependable, prepared, and authentic
    • Care-centric: care is at the center of everything we do, starting with care for ourselves, our team, and our communities. It goes beyond the medicines we sell.
    • Growth-minded, growth-driven: progress over perfection is key for our company, our team, and our own personal development. We are looking for someone who is equipped to both relish in obstacles and excel in growth momentum.
    • You are comfortable being versatile and overseeing both strategy and execution as we evolve your role and team
    • You have a naturally collaborative demeanor and you thrive in a dynamic, fast-paced and highly-fluid environment
    • You are highly analytical with the ability to turn quantitative data into insight and actionable process optimization
    • You are strongly motivated by results, and possess the ability to manage independently and take calculated risks
    • You are optimistic, passionate, and humble
    Bonus Qualifications
    • Experience with HIPAA and HITRUST framework tied to processing, storing, and transmitting protected health information (PHI)
    • Experience using Terraform and AWS CDK
    • Knowledge of security standards and frameworks (e.g. ISO27001, SOC I/II/III) is beneficial.
    • Relevant security certifications (e.g. GCLD, Security+, AWS/GCP Security Certifications)
    • Experience developing backend system software (Python, Django, Postgres, Redis, Celery)
    • Experience analyzing, optimizing, and managing AWS costs
    • Experience developing applications that meet HIPAA technology and process regulations and requirements
    Compensation: $135,000 - $185,000 depending on experience

    Other perks:
    • Competitive Base Salary and Equity Package
    • Health, Dental, Vision Insurance (100% coverage of 'gold' tier plan for health, 50% coverage for dependents/spouses)
    • Flexible PTO Policy and generous holiday schedule
    • Cabinet 401(k), with 100% match up to 3% of salary
    • 3 months paid parental leave program
    • Stipend towards cell phone/internet for work from home
    • Stipend towards home office set up
    • Company sponsored development and wellness programs (One Medical, Talkspace, Health Advocate, Kindbody Fertility)
    • Summer Fridays - company office hours are closed after 2pm on Fridays during period between Memorial to Labor Day
    About Cabinet:

    Cabinet began with a deep curiosity about how medicine was made and more importantly, how to improve it. Built on top of a supply chain with 3 generations of medicine manufacturing expertise, we've set out to provide high quality and fairly priced health essentialsbut we're not stopping there. Our mission is to build the world's most human and earth centric healthcare company. We offer batch-level tested and quality certified products, and are creating an innovative platform to provide content and care beyond a pill; one that's also focused on the elimination of pharmaceutical packaging and pill waste. We hope you will join us on this journey.

    Alongside , we retail with Amazon, Grove Collaborative, and national physical retail chains. Our investors are predominantly healthcare and consumer founders and operators, with institutional investment from SoGal Ventures, Global Impact Fund, and Techstars - all of whom prioritize societal and environmental impact alongside financial success. Our team has diverse experience in the top consumer startups and healthcare worlds. Cabinet Health's headquarters are based in New York City but our team is set up to operate remotely (we meet quarterly in-person a team.)
  • Starburst

    DevSecOps Engineer

    3 weeks ago

    Starburst New York, United States Full time

    About Starburst At Starburst, we are working to dismantle the status quo of data silos and vendor lock-in every single day. For decades, database companies have held their customers hostage and we believe that's just plain wrong. Starburst offers a full-featured data lake analyti ...

  • Averity

    DevSecOps Engineer

    2 weeks ago

    Averity New York, United States

    We have an exciting DevSecOps Engineer opportunity at a leading global professional services firm. You'll take charge of DevSecOps initiatives, defining and enhancing Secure-SDLC, selecting app security tools, and integrating security policies into processes. You'll also create a ...

  • SIMBA Chain

    DevSecOps Engineer

    1 week ago

    SIMBA Chain New York, United States

    About the job DevSecOps Engineer · SIMBA Chain (short for Simple Blockchain Applications) eliminates the complexity of blockchain app development, making Web3 technology accessible to all. Incubated at the University of Notre Dame, SIMBA Chain allows customers to deploy blockcha ...

  • TEKsystems

    Devsecops Engineer

    1 week ago

    TEKsystems Newark, United States

    Job Description · Job DescriptionJob Description · Familiar with Jenkins based CI/CD Pipelines · • Working experience to implement and test automation scripts and setups · • Familiar with integrating security tools and providing vulnerability assessments. Leveraging tools such as ...

  • EquityZen

    Sr. DevSecOps Engineer

    1 week ago

    EquityZen New York, United States

    EquityZen is a financial technology company, backed by leading venture and private equity investors. We are looking for a collaborative, organized and diligent Senior DevSecOps Engineer, to support the build-out and improve the infrastructure and security posture underlying an in ...

  • Cohere

    Senior DevSecOps Engineer

    1 week ago

    Cohere New York, United States

    Who are we? Our mission is to scale intelligence to serve humanity. We're training and deploying frontier models for developers and enterprises who are building AI systems to power magical experiences like content generation, semantic search, RAG, and agents. We believe that our ...

  • T-Systems International GmbH

    DevSecOps Engineer

    4 weeks ago

    T-Systems International GmbH New York, United States

    Profil · MQTT · Webserver · APM-Tools · Your application - quick and easy in just 5 minutes Found your new job? Then simply click on 'Apply now' to get to the form for your personal details. Do you have your application documents (CV, cover letter, certificates) available? You c ...

  • Zebra Technologies

    DevSecOps Software Engineer

    3 weeks ago

    Zebra Technologies New York, United States

    Remote Work: No · Overview: At Zebra, we extend the edge of possibility by shaping the future of work on the front line—reinventing how businesses run and moving society forward. · We are a community of changemakers, innovators and doers who come together to deliver a performan ...

  • Diverse Lynx

    Devsecops Engineer

    3 weeks ago

    Diverse Lynx Edison, United States

    · My name is Vivek and I'm a Account Manager at Diverse Lynx. We provide IT/Non IT/Healthcare Consulting Services to our customers immediate and long-term resource needs. I am contacting you either because your resume has been posted to one of the internet job sites to which we ...

  • The Dignify Solutions LLC

    Cloud Security Engineer With DevSecOps

    1 week ago

    The Dignify Solutions LLC Jersey City, United States

    Develop, implement, and verify baseline and advanced detection strategies for Microsoft Azure. · Aid in development, implementation and verification of baseline and advanced detection strategies for AWS and on-prem OS. · Demonstrate detection and security tradecraft best-practice ...

  • Recooty

    Devsecops Engineer

    2 weeks ago

    Recooty Piscataway, United States

    We have an immediate requirement for Devsecops Engineer. Please fidn thejob description mentioned below and kinldy send me your updated resume along with hourly rate/ · Responsibilities: · DevSecOps CI/CD pipeline in AWS and Azure using cloud native technologies experience · Exp ...

  • Chubb

    DevSecOps Engineering Lead, NA Technology

    2 weeks ago

    Chubb Jersey City, United States

    Job Description · Do you thrive in fast-paced environments, leading teams to adopt secure and efficient software development practices? Are you passionate about building DevSecOps pipelines that deliver measurable value? If so, we want to hear from you · You might know Chubb as ...

  • Marsh McLennan

    DevSecOps & Secure - SDLC Engineer

    1 month ago

    Marsh McLennan New York, United States Regular

    Marsh McLennan is seeking candidates for the following position in our New York, Chicago, Atlanta, Phoenix, or Urbandale offices. · DevSecOps & Secure-SDLC Engineer · What can you expect? · Lead initiatives related to DevSecOps and Secure-SDLC. · Define and enhance the company's ...

  • Chubb

    DevSecOps Engineering Lead, NA Technology

    1 week ago

    Chubb Jersey City, United States

    Job Description · Do you thrive in fast-paced environments, leading teams to adopt secure and efficient software development practices? Are you passionate about building DevSecOps pipelines that deliver measurable value? If so, we want to hear from you · You might know Chubb as ...

  • Flashbots

    Remote Senior DevSecOps Engineer

    1 month ago

    Flashbots New York, United States Full time

    Flashbots is a research and development organization working on mitigating the negative externalities of Maximal Extractable Value (MEV) and avoiding the existential risks MEV could cause to stateful blockchains like Ethereum. Our primary focus is to enable a permissionless, tran ...

  • Insight Global

    Devsecops Engineer

    2 weeks ago

    Insight Global Berkeley Heights, United States

    Day-to-Day: · A client of Insight Globals is looking to add a DevOps Engineer to their team. This client is one of the largest fintech companies and will be joining their cyber security organization that works within the IAM space. The responsibilities are as follows: · Drive t ...

  • NBCUniversal

    Staff DevSecOps Engineer

    3 days ago

    NBCUniversal Englewood Cliffs, United States

    Job Description · Job DescriptionCompany Description · We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news ...

  • NBC Universal Media, LLC

    Staff DevSecOps Engineer

    3 days ago

    NBC Universal Media, LLC Englewood Cliffs, United States

    Company Description · We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news brands, including NBC, NBC News ...

  • NBCUniversal

    Staff DevSecOps Engineer

    5 days ago

    NBCUniversal Englewood Cliffs, United States

    We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news brands, including NBC, NBC News, MSNBC, CNBC, NBC Spor ...

  • NBC Universal Media, LLC

    Staff DevSecOps Engineer

    3 days ago

    NBC Universal Media, LLC Englewood Cliffs, United States

    Architect and author Microsoft Azure Solutions across multiple platforms. Design and Implement Microsoft Entra ID related projects. Create and maintain Reference Architecture documentation. Document of new solutions (e.g., architecture, configuration Azure, Staff, Engineer, Micro ...