Security Engineer

We're building a new healthcare clearinghouse In the healthcare sector, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires that all insurance payers exchange transactions such as claims, eligibility checks, prior authorizations, and remittances using a standardized EDI format called X12 HIPAA. A small group of legacy clearinghouses process the majority of these transactions, offering consolidated connectivity to carriers and providers. Stedi is the world's only programmable healthcare clearinghouse. By offering modern API interfaces alongside traditional real-time and batch EDI processes, we enable both healthcare technology businesses and established players to exchange mission-critical transactions. Our clearinghouse product and customer-first approach have set us apart. Stedi was ranked as Ramp’s #3 fastest-growing SaaS vendor. Stedi has lightning in a bottle: engineers and designers shipping products week in and week out; a lean business team supporting the company’s infrastructure; passion for automation and eliminating toil; $92 million in funding from top investors like Stripe, Addition, USV, Bloomberg Beta, First Round Capital, and more. To learn more about how we work, watch our founder Zack’s interview with First Round Capital. What we’re looking for We are seeking an experienced Security Engineer to join our Platform Team. This team is at the core of our infrastructure, responsible for managing multiple AWS Organizations and providing the foundational tools and services that enable our engineering teams to build reliable, secure, and compliant applications. The Platform Team’s responsibilities span a wide range of areas, including: The AWS infrastructure that our engineering teams rely on. Management of our GitHub organization and IT operations. Supporting compliance efforts to ensure alignment with industry standards (SOC, HIPAA, HITRUST). As a Security Engineer, you will play an active role in how we set up our AWS infrastructure, software development lifecycle, and endpoint security. Your contributions will help ensure our engineering teams build applications in a way where it is easy to demonstrate alignment with regulatory and compliance requirements. How we build We use AWS exclusively for our backend infrastructure that processes customer data. We use tools like GitHub, Stripe, Vanta, and PagerDuty, but all of our application work happens on AWS. We use serverless technologies almost exclusively: Lambda, API Gateway, SQS, SNS, DynamoDB, Aurora Serverless, and more. We don’t run a single server on prem or in the cloud. We use the CDK (TypeScript) to define infrastructure-as-code. We have a strong preference for using AWS products over 3rd party solutions. This simplifies vendor management and compliance, and ensures we can benefit from AWS's integration capabilities and innovations now and in the future.