Senior Software Engineer - DevSecOps

Recruiting From Scratch•San Francisco, CA

2d•Remote

About The Position

Recruiting from Scratch is partnering with a profitable, employee-owned startup in the healthcare/data infrastructure space to find a Senior Software Engineer specializing in DevSecOps. This company is building the data infrastructure for sophisticated healthcare systems, enabling large enterprises to streamline procurement, manage complex data, and improve efficiency. They have strong product-market fit and are experiencing continued growth, focusing on reliability, security, and real-world impact. This role is remote within the United States and offers a high degree of autonomy and ownership.

Requirements

5+ years of experience in DevOps, SRE, security engineering, or backend infrastructure roles
Strong experience building and maintaining CI/CD pipelines (GitLab CI, GitHub Actions, or similar)
Deep experience with AWS infrastructure and cloud-native architectures
Proficiency with infrastructure-as-code tools (Terraform, CloudFormation, CDK, etc.)
Strong scripting and automation skills (Python, Bash, or similar)
Solid understanding of security fundamentals including vulnerability management, IAM, and secure SDLC
Experience operating and scaling production systems with a focus on reliability and performance
Strong communication skills across both technical and non-technical stakeholders

Nice To Haves

Experience supporting SOC 2 audits or similar compliance frameworks
Experience responding to enterprise customer security assessments
Familiarity with vulnerability scanning tools (Snyk, Trivy, Dependabot, etc.)
Experience with containerization and orchestration (Docker, Kubernetes, ECS/EKS)
Experience with observability tools (Datadog, Prometheus, Grafana, etc.)
Background in healthcare, regulated environments, or enterprise SaaS systems

Responsibilities

Build and maintain CI/CD pipelines to enable fast, secure, and reliable deployment workflows
Improve developer experience by reducing friction in build, test, and deployment processes
Design and operate cloud infrastructure using infrastructure-as-code across AWS environments
Ensure system reliability through monitoring, alerting, incident response, and capacity planning
Own vulnerability management, including scanning, triaging, and remediation workflows
Implement and enforce security best practices across infrastructure, identity, and application layers
Lead technical efforts related to SOC 2 compliance, including audits and security assessments
Partner cross-functionally with engineering, product, and customer-facing teams on security and infrastructure initiatives
Mentor engineers on DevOps, security, and operational best practices