Senior Cloud Security Engineer - WAF Specialist

Datavant•New York City, NY

17h•$184,000 - $230,000

About The Position

Datavant is the data collaboration platform trusted for healthcare. Guided by our mission to make the world’s health data secure, accessible and actionable, we provide critical data solutions for organizations across the healthcare ecosystem - including providers, health plans, researchers, and life sciences companies. From fulfilling a single patient’s request for their medical records to powering the AI revolution in healthcare, Datavanters are building the future of how data is connected and used to improve health. By joining Datavant today, you’re stepping onto a driven and highly collaborative team that is passionate about creating transformative change in healthcare. What We’re Looking For We are seeking a Senior Cloud Security Engineer to architect and operationalize Datavant’s enterprise Edge Defense strategy within the Secure Product & Infrastructure program. This role is accountable for defining long-term WAAP architecture, standardizing protection patterns across verticals, and ensuring scalable, automated coverage for all internet-facing workloads. You will operate at a systems level and serve as a senior security partner to Engineering teams—shaping architectural direction, influencing roadmap decisions, and ensuring edge protection scales with the business. We are looking for a true senior-level engineer who can own program-level outcomes, not just implement controls.

Requirements

Deep experience designing and operating WAAP or WAF controls at scale across multi-account and multi-environment deployments.
Proven ability to architect security programs, including governance models, automation strategy, lifecycle management, and cross-team alignment.
Strong infrastructure-as-code expertise and experience building reusable modules and guardrails adopted across teams.
Demonstrated success serving as a trusted, customer-oriented security partner to Engineering leadership.
Ability to influence without authority and navigate competing priorities across verticals.
Strong operational instincts and experience designing for long-term maintainability and response integration.
Comfort operating in regulated environments and designing controls that scale across commercial and compliance-constrained systems.
Active use of AI-assisted development tools to accelerate infrastructure and security engineering work, with appropriate validation discipline.

Nice To Haves

You have architected or materially transformed a WAAP or edge protection program across multiple engineering verticals.
You have led vendor migrations or platform consolidations in the edge protection space.
You have authored Architecture Decision Records (ADRs) that shaped long-term security architecture and influenced senior engineering leadership.
You have defined measurable security KPIs that guided roadmap investment and engineering alignment.
You are known for reducing architectural complexity while increasing automation, coverage, and engineering confidence.

Responsibilities

Define and evolve the enterprise Edge Defense architecture across cloud-native, CDN-layer, and hybrid environments.
Lead cross-vertical rollout of standardized WAAP patterns, replacing fragmented or manually managed implementations with automated, enforceable models.
Drive vendor evaluation, integration, and lifecycle governance for WAAP technologies.
Establish infrastructure-as-code and policy-as-code frameworks that make secure edge protection the default path for Engineering teams.
Partner deeply with Platform and Product Engineering during system design to prevent downstream security debt.
Define and track program-level KPIs for edge protection, including coverage, enforcement maturity, drift reduction, onboarding velocity, and detection quality.
Mentor and elevate other security engineers in edge and cloud security domains.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume