Senior Cloud & Infrastructure Engineer

About The Position

Requirements

• 5+ years of experience in cloud infrastructure, DevOps, or a related engineering role.
• Deep hands-on experience with AWS: VPC, Site-to-Site VPN, EC2, Lambda, ECR, IAM, CloudFormation, CloudWatch, Security Hub, and related services.
• Proven ability to design and implement Infrastructure as Code (CloudFormation, Terraform, or equivalent).
• Experience identifying, triaging, and remediating security vulnerabilities across cloud resources and application code.
• Ability to read, understand, and make targeted fixes in Python, C#/.NET, and/or Node.js codebases.
• Experience managing IT administration for a distributed team: MDM/device management, identity providers, and RBAC.
• Strong written and verbal communication skills — able to translate technical findings into clear action items for engineering and leadership.
• Comfort working autonomously in a small-team environment with broad, varied ownership.
• Understanding of HIPAA compliance requirements and how they apply to cloud infrastructure.

Nice To Haves

• Experience with Rippling for device management, identity, and HR/IT workflows.
• Familiarity with healthcare revenue cycle management or clinical data infrastructure.
• Experience with RabbitMQ, ECS/EKS, or containerized workload management.
• Background working in a SaaS or health tech environment.

Responsibilities

• Own and improve Site-to-Site VPN setup, including VPC architecture, route tables, subnets, and security groups for client connectivity.
• Design and implement automated client onboarding experiences using templating and Infrastructure as Code
• Harden existing network configurations to improve security posture and reduce manual intervention for each new client connection.
• Help manage interface infrastructure supporting healthcare data integrations, ensuring availability, performance, and observability.
• Continuously monitor and remediate security vulnerabilities across AWS resources — Lambdas, ECR images, EC2 instances, and beyond — using AWS Inspector, Security Hub, and related tooling.
• Patch and resolve critical and high-severity vulnerabilities in Python, C#, and Node.js codebases; escalate larger code changes to platform or product engineers as needed.
• Drive meaningful, measurable reductions in our vulnerability count over time through proactive hygiene, dependency management, and tooling improvements.
• Maintain and improve HIPAA-compliant configurations across all cloud resources and services.
• Manage device security, enrollment, and lifecycle including remote wipe capabilities and MDM tooling (experience with Rippling a plus).
• Own identity and access management across AWS (IAM), internal applications, and SaaS tools — enforcing least-privilege and RBAC principles.
• Administer device vulnerability scanning and ensure endpoint compliance for a distributed remote workforce.
• Support onboarding and offboarding workflows including provisioning and deprovisioning accounts, devices, and access across all platforms.
• Monitor, analyze, and optimize AWS spend across all services, identifying cost reduction opportunities without sacrificing reliability.
• Evaluate and improve existing cloud integrations and identify new tooling that meaningfully improves developer or operational efficiency.
• Streamline repetitive infrastructure processes through automation, scripting, and templating.
• Serve as a go-to resource for the engineering team on AWS resource questions, environment access issues, and infrastructure debugging.

Benefits

• Competitive salary and Performance-based bonus
• Team bonding and off-site events 2x per year
• Unlimited paid time off
• Dental, Vision, Health, and Life Insurance
• 401(k) plan