Apply on Employer Site

Truveta · 2 days ago

Senior Cloud Infrastructure Security Engineer

Greater Seattle Area

Full-time

Onsite

Senior Level

$135K/yr - $180K/yr

5+ years exp

Truveta is the world’s first health provider led data platform with a vision of Saving Lives with Data. The role involves designing and implementing Azure cloud-based infrastructure while ensuring security, compliance, and performance across various cloud resources.

AnalyticsData ManagementHealth Care

No H1B

Responsibilities

Design and implement Azure cloud-based infrastructure, including using tools for infrastructure as code(IaC) and automation to meet technical, security and business needs

Design and implement Azure cloud environments (tenant, subscription, VM, storage account, databases, networking, firewalling) optimized for AI/ML workloads

Manage and maintain Azure Networking, Azure firewalls/VPN and associated policies/rules, Web Application Firewall, Application Gateway, Front Door, VNET peering, ensuring security, availability, scalability, and performance

Secure Azure Kubernetes clusters, containers, and images

Establish and enforce Azure security policies, manage access controls, and ensure the infrastructure complies with relevant regulations

Automate tenant and infrastructure provisioning, deployments, and other routine tasks to increase efficiency

Monitor Azure cloud resources, analyze performance, and troubleshoot issues as they arise

Perform incident troubleshoot and problem resolution for office network, cloud infrastructure, and own postmortems

Work with Engineering teams and external teams, gather requirements, develop and integrate cloud solutions and support business needs

Actively participate in architecture, code reviews, presentations, share learns and best practices to enable flawless deployment and quality operations

Evaluate and implement new security features/services/products to secure Truveta Azure infrastructure

Support innovation and cost management by developing new ideas for Azure cloud infrastructure and related tools

Interact with compliance team to deliver compliance certificates and remediate gaps during compliance finding and controls

Qualification

Azure cloud infrastructureCloud security practicesAutomation in AzurePublic cloud networkingNetwork security managementWindows/MacOS managementResearching technologiesOn-call rotationCompliance interactionTeam activitiesProblem solvingCollaborationCreative solutions

Required

A minimum bachelor's in Computer Science, Software Engineering, Electrical or Electronics Engineering, Information Systems, or equivalent

5+ years' experience in public cloud networking & security design, implementation & support

Experience of TCP/IP IPv4/v6, office network (Routing/Switching/WAN, Wi-Fi & Security) management

3+ years automation experience in Azure Cloud Networking / Azure DevOps or GitHub CI/CD pipelines in any of the following: Python, PowerShell, Terraform, Bicep, YAML template

3+ years network security practices in on-premises and/or cloud environment

Experience managing and supporting Windows Desktop OS, MacOS, managed endpoint administration at scale across an enterprise sized environment

Understanding of the Windows Desktop/Mac OS packaging, scripting, and automated deployment tools, such as Microsoft Intune and Jamf

Ability to participate in on-call rotation