The ideal candidate is expected to have sufficient security experience, particularly in dealing with HIPAA compliance, although direct responsibility for compliance writing is not required
Proven track record in constructing and maintaining high-performance and dependable services deployed on cloud infrastructure, preferably AWS
Demonstrated proficiency in the design and implementation of infrastructure-as-code technologies (e.g., Terraform, CloudFormation, Ansible)
Experience in automation and continuous integration/delivery systems (GitHub Actions, Jenkins)
Familiarity and utilization of container technology and orchestration tools (ECS, Kubernetes, Docker)
Mastery in constructing infrastructure that adheres to policy frameworks (such as NIST 800-*, SOC 2, FISMA), and operating services that necessitate compliance with security regulations (preference for HIPAA, GDPR)
Minimal handholding expected
Robust understanding of infrastructure systems, concepts, and proficiency in performance tuning skills
Applicants must be currently authorized to work in the US on a full-time basis now and in the future
Responsibilities
The organization plays a crucial role in supporting universities, research institutions, and scientists in managing and securely sharing their research data
Their commitment is to enable researchers to concentrate on their work while ensuring the security and seamless sharing of their findings with other institutions
The first involves central operations, focusing on VPN, on and offboarding, accounting for about 10-20% of your time
The second, and the largest segment, is in DevOps, where you'll contribute to tasks such as supporting monitoring, IAM, and managing cloud accounts
The third aspect involves collaborating with the security manager to ensure the implementation of security DevOps practices