Staff Software Engineer, Cloud Security

Related keywords: data engineer remote jobremote job pythonremote job software engineer

Job Overview

The position being offered is for a Staff Software Engineer, Cloud Security at Included Health. This role is vital as it encompasses a blend of both engineering and security responsibilities, focusing primarily on working with cloud environments like AWS, with some considerations for Google Cloud Platform (GCP). The primary aim is to engineer, implement, and automate strong security controls, ensuring the security of Protected Health Information (PHI) and the overall cloud security posture of the infrastructure.

Responsibilities

The responsibilities associated with this role are comprehensive and challenging, aimed at fortifying cloud security:

• Design, develop, and implement a robust authorization framework for cloud resources. This includes establishing user roles and access specific to their tasks.

• Lead the technical implementation of Just-In-Time (JIT) access controls, aiming to minimize privileges within production environments.

• Collaborate with engineering teams to integrate data classification with access controls to ensure data sensitivity influences access decisions.

• Develop and maintain automation scripts and tools to streamline security operations.

• Write clean and maintainable code, mainly in Python and Go, for automation of security checks, vulnerability management, and incident responses.

• Champion Infrastructure as Code (IaC) principles through tools like Terraform for enforcing security configurations.

• Contribute to centralized security protocols, including centralized Web Application Firewalls (WAF).

• Partner with engineering teams to incorporate secure practices into the development toolchain and mitigate supply chain risks.

• Manage container security hardening standards and remediate legacy cloud environments while assessing security controls.

• Act as a subject matter expert on cloud security, offering guidance and conducting security assessments.

• Develop comprehensive documentation for security architectures, controls, and incident response processes.

Required Skills

Candidates interested in this position should possess the following skills and qualifications:

• A Bachelor’s degree in fields like Computer Science, Information Technology, or Cybersecurity.

• A minimum of 5 years of experience in cloud security with substantial experience in AWS security.

• Proven programming experience in languages like Python and Go.

  

• Experience in designing and implementing robust authorization frameworks, including RBAC and ABAC methodologies.

• Proficiency with Infrastructure as Code (IaC) tools like Terraform.

• Hands-on experience with containerization technologies, particularly Docker and Kubernetes.

• A thorough understanding of secure software development and integration of security practices into CI/CD pipelines.

• Familiarity with security monitoring tools and logging mechanisms to enhance cloud security.

Salary and Benefits

Salary for this full-time position varies based on geographic zones established by Included Health, with the following ranges:

• Zone A: $174,320 - $246,230 + equity + benefits
• Zone B: $191,752 - $270,853 + equity + benefits
• Zone C: $209,184 - $295,476 + equity + benefits
• Zone D: $226,616 - $320,099 + equity + benefits

Note: The salary is contingent on various job-related factors, including education, experience, skills, and geographic region, ensuring pay equity within roles. Along with competitive pay, Included Health offers an attractive benefits package that includes:

• A remote-first culture promoting flexibility.

• A 401(k) savings plan managed through Fidelity.

• Comprehensive medical, vision, and dental coverage, alongside disability insurance options.

• Paid Time Off (PTO) and Discretionary Time Off (DTO) to promote work-life balance.

• 12 weeks of fully paid parental leave.

• Financial support for family building including coverage for fertility, surrogacy, and adoption.

• Work-from-home reimbursements to support home office productivity.

Conclusion

The Staff Software Engineer, Cloud Security role at Included Health presents an excellent opportunity for professionals within the cloud security domain looking to make a significant impact within a remote work setup. Possessing the requisite skills will lead to a fulfilling career that emphasizes both technical software engineering and strategic security measures in cloud environments. Candidates eager to further their careers in cloud security are encouraged to explore this opportunity.

This job offer was originally published on himalayas.app