Senior Security Engineer

Summary

Join SmarterDx as a security-focused engineer to enhance cloud security, automate compliance, and protect sensitive healthcare data. This hands-on, fully remote (US) role involves securing AWS infrastructure, implementing Kubernetes patterns, operating security tools, and collaborating with various teams. You will establish technical guardrails to meet security and privacy expectations while maintaining agility and scalability. The ideal candidate is an experienced AWS practitioner with a strong understanding of cloud-native infrastructure and relevant security frameworks. You will work with a fast-moving team to build clinical AI that empowers hospitals to analyze patient records and optimize healthcare operations. Become a Smartian and help optimize the way the healthcare system works for everyone.

Requirements

• 5+ years of security engineering experience with a strong focus on AWS and cloud-native infrastructure
• In-depth knowledge of SOC 2 and HIPAA frameworks, including audit processes
• Understanding of VPC architecture, subnetting, security groups, and cloud networking fundamentals
• Hands-on experience with security tools such as Wiz, Snyk, GuardDuty, and AWS Config
• Expertise in logging and observability within distributed systems (e.g., CloudTrail, VPC Flow Logs)
• Proficiency with Terraform and infrastructure-as-code best practices
• Experience with Kubernetes (EKS), Helm, and container security
• Strong communication skills for collaboration with technical and non-technical teams

Responsibilities

• Secure and harden our AWS infrastructure, including IAM, networking, and workload visibility
• Implement secure Kubernetes patterns on EKS, such as RBAC, pod security policies, and Helm-based deployments
• Operate and fine-tune security tools like Wiz, Snyk, GuardDuty, and AWS Config
• Collaborate with Engineering and Compliance to automate evidence collection and enforce policy-as-code
• Address complex security questionnaires from hospitals and enterprise customers
• Work with DevOps on Terraform-based infrastructure and secure CI/CD practices
• Enhance detection, alerting, and observability across cloud and containerized workloads
• Participate in architecture reviews, threat modeling, and security incident response
• Promote a culture where security is a shared responsibility across teams

Preferred Qualifications

• Experience with policy-as-code tools like OPA/Gatekeeper
• Knowledge of identity-based access (e.g., IRSA), pod networking, or service mesh architectures
• Background in healthcare or experience handling sensitive data under regulatory constraints

Benefits

• Medical, Dental & Vision – Comprehensive plans with leading insurance providers, covering 90-100% of your premiums and 70-90% for dependents, depending on the plan
• One Medical Membership – Free membership included if you enroll in a SmarterDx medical plan
• Paid Parental Leave – Up to 12 weeks of paid leave for birth or adoption
• Remote-First Team – Work from anywhere in the U.S. with a $400 home office reimbursement stipend
• Unlimited PTO & 10 Holidays – 4 of which include floating holidays so you can recognize the days that matter most to you
• Learning & Development Budget – $500 per year (prorated) for courses, books, and resources to expand your skills
• 401(k) with Traditional & Roth Options – Tax-advantaged retirement savings through Empower