Join our MDR team as a Senior Security Infrastructure Engineer, helping healthcare organizations defend against advanced threats. You'll design and implement modern security solutions that protect our clients' sensitive data and cloud workloads while enabling them to maintain compliance in an evolving threat landscape. As a senior member of the team, you'll provide technical leadership and mentorship while driving engineering excellence.

Key Responsibilities

Technical Operations & Engineering

• Maintain operational health of Elastic Cloud SIEM Deployment
• Develop and update SIEM integrations and data ingest pipelines from a variety of cloud and host-based sources
• Build and maintain infrastructure-as-code using Terraform and GitOps workflows
• Collaborate with our engineering groups to develop and maintain integrations between security tools and the ClearDATA CyberHealth Platform.

Client Success & Onboarding

• Collaborate with other teams to determine client needs and scope security requirements
• Automate client onboarding through modern IaC and GitOps practices
• Contribute to client cloud security architecture decision-making based on security best practices and intelligence on emerging threats
• Document client decisions in the Joint Incident Response Plain

Technical Leadership & Mentorship

• Lead sprint planning sessions and retrospectives for engineering initiatives
• Drive continuous improvement of engineering practices and processes
• Provide technical mentorship to junior engineers through code reviews and pair programming
• Share knowledge through documentation and internal training sessions

Required Skills & Qualifications

Technical Expertise

• Minimum of 5 years of security engineering experience, preferably in healthcare
• Strong knowledge of cloud-native security architecture
• Deep expertise in at least one major cloud platform (AWS, Azure, GCP)
• Experience with modern SIEM platforms (Elastic, ELK)
• Proficiency with XDR platforms, EDR integrations, and Cloud Native Threat Detection Services (GuardDuty, Azure Defender, Google Security Command Center)

Modern Tools & Technologies

• Infrastructure as Code (Terraform, CloudFormation)
• Container security and Kubernetes protection
• CI/CD security integration (GitHub Actions, GitLab CI)
• Cloud-native observability (Elastic, OpenTelemetry)
• Experience with detection-as-code methodologies
• Project management (JIRA, Confluence)

Healthcare Domain Knowledge

• Understanding of healthcare threat landscape and attack patterns
• Knowledge of security controls supporting HIPAA compliance
• Experience securing modern healthcare application architectures
• Familiarity with healthcare data protection requirements

Development & Automation

• Strong coding skills in Python or Go
• Experience building modern REST APIs
• Knowledge of event-driven architectures
• Familiarity with modern data pipeline technologies

Professional Skills

• Clear communication of complex security concepts
• Data-driven problem solving approach
• Experience working in agile remote-first teams
• Track record of project leadership

Nice-to-Have Qualifications

• Previous MDR/MSSP experience in healthcare
• Cloud security certifications (CCSP, AWS/Azure/GCP Security)
• Experience with behavioral analytics and ML-based detection
• Knowledge of modern supply chain security practices