Apply on Employer Site

careMESH · 2 hours ago

Senior DevOps & Security Engineer

DC-Baltimore Area

Full-time

Hybrid

Senior Level, Lead/Staff

10+ years exp

careMESH is an agile, early-stage company at a critical inflection point, seeking a Cloud Infrastructure expert to take full ownership of their Google Cloud Platform environment. As the first dedicated DevOps/Security hire, you will ensure the infrastructure is scalable, cost-efficient, and secure while automating deployment pipelines and compliance auditing.

Health Care

Responsibilities

Architect and maintain our GCP production and staging environments (using Terraform)

Eliminate manual configuration to ensure all infrastructure is version-controlled and reproducible

Optimize CI/CD pipelines (GitHub Actions) to ensure safe, zero-downtime deployments

Set up and maintain secure connections with customers (i.e., VPN, SMTP, and EHR connections)

Implement and manage Identity and Access Management (IAM) using the principle of least privilege

Lead the technical requirements for security certifications (mainly HITRUST, but also SOC2 Type II, ISO 27001, or HIPAA)

Manage secrets using Google Secret Manager

Conduct regular vulnerability scanning, log analysis (Cloud Logging/Monitoring), and incident response drills

Manage containerized workloads via Google Kubernetes Engine (GKE)

Establish "Golden Signals" for monitoring: Latency, Traffic, Errors, and Saturation

Implement automated backup and disaster recovery (DR) protocols

Monitor cloud spend and implement cost-saving measures (e.g., Committed Use Discounts, Preemptible VMs, and rightsizing)

Qualification

Google Cloud PlatformTerraformSecurity ComplianceKubernetesIdentityAccess ManagementBash ScriptingStartup AgilityEHR FluencyInteroperability MasteryLinux AdministrationNetwork SecurityCommunication

Required

At least a 10-year career in relevant experience

Startup Agility: You enjoy wearing multiple hats and can prioritize tasks in a fast-paced environment

Communication: You can explain complex security risks to non-technical stakeholders

EHR Fluency: Direct experience with Epic, Oracle Health (Cerner), or Meditech (e.g., App Market integrations, HL7/FHIR workflows)

Certification: Professional Cloud Architect or Professional Cloud Security Engineer

GCP Mastery: Deep experience with VPCs, GKE, Cloud SQL, Firebase, Cloud Storage

IaC Expert: Professional experience with Terraform is a MUST

Security Mindset: Strong understanding of network security (WAF, Cloud Armor), encryption at rest/transit, and compliance frameworks

Linux/Containers: Advanced knowledge of Linux administration and Docker/Kubernetes orchestration

Scripting: Proficiency in Bash for automating operational tasks

Candidates MUST live in the Washington DC/Maryland/Virginia area or the Eastern Time Zone and be able to travel to Reston every quarter

Preferred

Interoperability Mastery: A working-level knowledge of healthcare standards (HL7 v2, FHIR, CCDS/CCDA) is desired

Benefits

Competitive salary

Remote-first culture

Comprehensive benefits (Health, 401k)

Company

careMESH

careMESH is a curator of a healthcare communications platform.

Founded in 2016

Reston, Virginia, USA

11-50 employees

https://caremesh.com/

Funding

Current Stage

Early Stage

Total Funding

$5M

Key Investors

Assurance Capital,Pavey Family Investments

2020-06-16Seed· $5M

Leadership Team

Justin Sims

President and Chief Operating Officer

Recent News

Morningstar, Inc.

careMESH Launches Full EHR Integration to Improve Care Coordination, Metrics, and Efficiencies for Patient Navigation

2024-10-31

Company data provided by crunchbase