Staff Cloud Security Engineer

Roman Health Medical LLC

New York, NY

JOB DETAILS
SALARY
$200,000–$245,000 Per Year
SKILLS
Access Control, Amazon Web Services (AWS), Analysis Skills, Applications Security, Automation, Best Practices, Cloud Applications, Cloud Architecture, Cloud Computing, Communication Skills, Compensation Analysis, Compensation Management, Computer Security, Continuous Deployment/Delivery, Continuous Integration, Cross-Functional, Cryptography, Data Quality, Dental Insurance, Endpoint Security, Firewalls, Fitness, HIPAA (Health Insurance Portability and Accountability Act), Healthcare, Incident Response, Information/Data Security (InfoSec), Intrusion Detection Systems, Intrusion Prevention Systems, Leadership, Loss Prevention, Machine Tool, Maintain Compliance, Medications, Mentoring, Microsoft Windows Azure, Network Security, Pharmacy, Policy Implementation, Primary Care, Privacy Controls, Process Improvement, Product Development, Product Lifecycle, Product Reviews, Regulatory Compliance, Risk Management, Scripting (Scripting Languages), Security Architecture, Security Information and Event Management (SIEM), Software Engineering, Software as a Service (SaaS), Student Loans, Team Player, Technical Leadership, Telehealth, U.S. National Institute of Standards and Technology (NIST), Virtual Machine (VM), Vision Plan
LOCATION
New York, NY
POSTED
30+ days ago

Staff Cloud Security Engineer

New York, NY or Remote

Cyber /Full-time /Remote

Apply for this job

Ro is a direct-to-patient healthcare company with a mission of helping patients achieve their health goals by delivering the easiest, most effective care possible. Ro is the only company to offer nationwide telehealth, labs, and pharmacy services. This is enabled by Ros vertically integrated platform that helps patients achieve their goals through a convenient, end-to-end healthcare experience spanning from diagnosis, to delivery of medication, to ongoing care. Since 2017, Ro has helped millions of patients, including one in every county in the United States, and in 98% of primary care deserts.

Ro has been recognized as a Fortune Best Workplace in New York and Health Care for four consecutive years (2021-2024). In 2023, Ro was also named Best Workplace for Parents for the third year in a row. In 2022, Ro was listed as a CNBC Disruptor 50.

The Role

The Cloud Security function at Ro is dedicated to protecting the security and privacy of our patients by continually raising the security bar across our cloud environments. We achieve this by collaborating closely with engineers and leaders across Ro's platform, data, and product teams, devising, implementing, and communicating a well-rounded approach to security. In this role, you'll have direct influence on strategic initiatives, providing the engineering expertise necessary to make confident, scalable, secure, and privacy-respecting decisions-all while employing a hands-on builder mindset to "build it in."

This role is a senior-level individual contributor position, where you'll serve as a hands-on technical expert, building internal products and infrastructure to protect Ro's cloud security posture and meet compliance objectives. As a key member of the Product Security team, which comprises expertise in product security, cloud security, architecture, and privacy engineering, you will design and automate scalable architectures and tools. You will be the technical advocate for cloud security decisions, driving discussions and designs, and working closely with Ro's infrastructure and engineering teams to make secure infrastructure solutions. You are an expert communicator and a kind, team player.

What Youll Do

Maintain and Operate Secure Cloud Infrastructure: Lead the ongoing maintenance and operation of secure cloud infrastructures, focusing on AWS and cloud-native technologies. Ensure environments are resilient, compliant, and secure through multi-layered protection strategies

Cloud Native Application Protection: Secure applications built for cloud environments by automating security assessments, monitoring runtime environments, and integrating security practices into the development lifecycle. Focus on containers, serverless architectures, and virtual machines, adapting to emerging threats

Cloud Workload and Data Protection: Implement robust security controls for cloud workloads and data, including containers, virtual machines, and serverless architectures. Protect against threats while maintaining performance and scalability, using encryption, data loss prevention, and access controls

Kubernetes and Cloud Security Hardening: Lead security hardening across all cloud security layers, with a focus on Kubernetes clusters and cloud-native environments. Secure container runtimes, implement stringent network policies, manage secrets securely, and ensure resilience against attacks at scale

Collaborate on Secure Platform Solutions: Partner with infrastructure, product security, security engineering, and engineering teams to design and implement secure platform solutions. Provide expertise in developing Infrastructure as Code (IaC), CI/CD pipelines, and deployment processes, ensuring security is integrated throughout the development lifecycle

Automation of Security Operations: Develop and deploy automation solutions to enhance security operations, reduce manual efforts, and ensure consistent security practices. Create reusable templates and modules for secure infrastructure to enable rapid, secure deployments

Security Incident Response: Contribute to incident response efforts, including detection, analysis, containment, and recovery. Work with internal and external stakeholders to minimize the impact of incidents and prevent future occurrences

Compliance, Risk Management, and Data Governance: Ensure cloud infrastructures comply with standards such as SOC 2, HIPAA, and HITRUST. Implement automated compliance checks, data governance practices, and reporting to maintain alignment with these frameworks and protect data integrity

Technical Leadership and Mentorship: Act as a technical leader and mentor, promoting a security-first mindset. Guide best practices in cloud security and data protection, and integrate secure practices into the organization's culture and processes

What Youll Bring

7+ years of experience in cloud security engineering and architecture, with advanced expertise in AWS, Azure, or Google Cloud Platform

Deep understanding of cloud security principles and best practices, with proven experience in implementing and managing cloud-native security tools at scale

Extensive knowledge of fundamental security technologies, including firewalls, IDS/IPS, endpoint protection, IAM, encryption, and DLP

Expertise with key tooling: Cloud Security Posture Management (CSPM), Cloud Native Application Protection Platforms (CNAPPs), Cloud Workload Protection Platforms (CWPPs) and Data Security Posture Management (DSPM)

Expertise in securing and hardening cloud workloads, including containers, serverless architectures, and virtual machines, with a track record of enhancing security posture

Advanced experience with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, and Pulumi, and expertise in integrating security into CI/CD pipelines

High proficiency in programming or scripting languages for developing complex security automation solutions

Comprehensive understanding of cloud and network security, with experience in securing cloud architecture across multiple environments

Demonstrated ability to perform in-depth security reviews of SaaS product architecture and its supporting infrastructure, with a focus on driving improvements

Familiarity with and ability to implement compliance standards HIPAA, HITRUST, CIS, NIST 800-53 and others with a low-touch approach

Strong leadership and communication skills, with a proven track record of collaborating with cross-functional teams, including product teams and developers, to drive a security-first culture, effect change across the organization and further the cloud security roadmap

Weve Got You Covered

Full medical, dental, and vision insurance + OneMedical membership

Healthcare and Dependent Care FSA

401(k) with company match

Flexible PTOW

Wellbeing + Learning & Growth reimbursements

Paid parental leave + Fertility benefits

Pet insurance

Student loan refinancing

Virtual resources for mindfulness, counseling, and fitness

The target base salary for this position ranges from $200,000 to $245,000, in addition to a competitive equity and benefits package (as applicable). When determining compensation, we analyze and carefully consider several factors, including location, job-related knowledge, skills and experience. These considerations may cause your compensation to vary.

Ro recognizes the power of in-person collaboration, while supporting the flexibility to work anywhere in the United States. For our Ro'ers in the tri-state (NY) area, you will join us at HQ on Tuesdays and Thursdays. For those outside of the tri-state area, you will be able to join in-person collaborations throughout the year (i.e., during team on-sites).

At Ro, we believe that our diverse perspectives are our biggest strengths - and that embracing them will create real change in healthcare. As an equal opportunity employer, we provide equal opportunity in all aspects of employment, including recruiting, hiring, compensation, training and promotion, termination, and any other terms and conditions of employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, familial status, age, disability and/or any other legally protected classification protected by federal, state, or local law.

See our California Privacy Policy here.

Apply for this job

About the Company

R

Roman Health Medical LLC