Senior Software Engineer, DevOps and Infrastructure

About The Position

Requirements

• Bachelor's degree
• 7+ years of hands-on experience in DevOps, infrastructure engineering, or site reliability engineering, ideally at a growth-stage company
• Deep expertise with AWS including: IAM, VPC, ECS or EKS, RDS, S3, CloudWatch, and related HIPAA-eligible services
• Strong infrastructure-as-code experience with Terraform or CloudFormation, including security auditing of templates and managing state across environments
• Proven track record implementing security controls in CI/CD pipelines (code scanning, secret detection, SAST/DAST tooling)
• Hands-on experience with container security: Docker and Kubernetes hardening, image scanning, and runtime policy enforcement
• Working knowledge of HIPAA technical safeguards, including PHI encryption at rest and in transit, audit log requirements, and Business Associate Agreements
• Strong operational instincts: you write runbooks, you care about on-call hygiene, and you close the loop on incidents with structured postmortems

Nice To Haves

• Experience at a healthcare technology company or in another compliance-heavy industry (SOC 2, FedRAMP, PCI DSS)
• Familiarity with Datadog or similar observability platforms for log management, APM, and alerting
• Exposure to penetration testing coordination or red team/blue team exercises
• Experience building or maintaining secrets management systems using HashiCorp Vault or AWS Secrets Manager at scale
• Contributions to security culture beyond your immediate role such as documentation, internal security training, or championing secure-by-default engineering practices across the team

Responsibilities

• Own and evolve Axle's cloud infrastructure on AWS, driving architectural decisions that balance security, scalability, cost, and developer velocity
• Design and maintain CI/CD pipelines with integrated security controls including code scanning, secret detection, and dependency vulnerability checks
• Lead infrastructure-as-code initiatives using Terraform or equivalent tools, maintaining clean, audited, and well-documented configurations across all environments
• Implement and enforce HIPAA-compliant security practices at the infrastructure layer — including PHI encryption, audit logging, BAA management, and access controls
• Manage container orchestration (Docker/Kubernetes), including image hardening, pod security policies, and least-privilege configurations
• Build and maintain centralized logging, monitoring, and alerting systems (e.g., Datadog) to enable proactive detection of anomalous activity and rapid incident response
• Implement and maintain secrets management using tools like AWS Secrets Manager or HashiCorp Vault, eliminating hardcoded credentials across services
• Configure and maintain network security controls including WAFs, DDoS protection, TLS certificate management, and network segmentation across environments
• Partner with engineering teams to enforce environment parity and prevent configuration drift across development, staging, and production
• Coordinate and support penetration testing engagements, remediation tracking, and patch management across servers, containers, and dependencies
• Support disaster recovery planning, backup validation, and risk assessment processes aligned with HIPAA contingency plan requirements

Benefits

• Medical, Dental, Vision
• 401k plan
• Flexible PTO and sick days
• Commuter benefits
• Santa Monica HQ with 180 degree beach views and daily catered lunches