Web Operations (WebOps) Engineer
About The Position
Allia Health is seeking a dedicated and detail-oriented Web Operations (WebOps) Engineer. This role serves as the technical owner of the organization’s web infrastructure and works in close partnership with the Cloud Security team to manage and secure all public-facing digital properties. The WebOps Engineer will ensure all web systems operate under a “Resilience by Design” framework, where performance, uptime, and security are fully integrated. This role is critical in maintaining secure, compliant, and high-performing web environments aligned with HIPAA and SOC 2 standards. Please note that this shift schedule is Monday through Friday from 8:00 AM to 5:00 PM; however, hours may be adjusted based on business needs, and flexibility in availability is expected to support teams and operational demands.
Requirements
- Bachelor’s degree in Information Technology, Cybersecurity, Web Systems, or a related field
- Equivalent combination of education and 5+ years of specialized WebOps or Site Reliability Engineering experience may be considered
- Experience managing WordPress in regulated environments such as healthcare or finance
- Strong understanding of DNS management, including DNSSEC, SPF, DKIM, and DMARC
- Experience with CDNs and web security platforms such as Cloudflare or Akamai
- Strong knowledge of Linux-based hosting environments and SSL/TLS management
- Experience collaborating with Security Operations or Cloud Security teams
- Strong troubleshooting, communication, and incident response skills
- Ability to work in a hybrid Houston-based environment supporting operational teams
- CompTIA Security+ certification required
Nice To Haves
- Google Professional Cloud Security Engineer Certification
- Experience with identity-aware proxies and edge security architectures
- Cloudflare or equivalent edge security/WAF certification
- Experience supporting HIPAA and SOC 2 compliant web environments
Responsibilities
- Own and manage DNS and domain configurations across registrars, ensuring all changes (MX, TXT, CNAME) are security-validated before execution
- Deploy and maintain standardized WordPress environments with hardened configurations aligned to security guidelines
- Execute timely updates for WordPress core, plugins, and themes within defined maintenance windows
- Respond to and remediate web-based vulnerabilities identified by security scanning tools
- Manage CDN and WAF configurations (e.g., Cloudflare) to mitigate DDoS attacks and ensure secure, high-availability performance
- Oversee SSL/TLS certificate lifecycle management to ensure continuous compliance and audit readiness
- Ensure all web properties are documented and maintained within GRC systems for HIPAA and SOC 2 audit requirements
- Collaborate with marketing teams to safely implement tracking pixels and analytics tools without compromising security or privacy
- Work closely with Cloud Security teams to implement edge security controls and enforce web application protection policies
- Monitor and maintain overall web infrastructure health, performance, and security posture
Benefits
- medical
- vision
- dental
- 401(k) with company match
- PTO
- Flex days
- holidays
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
