7+ years of hands-on experience in DevOps, infrastructure engineering, or site reliability engineering, ideally at a growth-stage company
Deep expertise with AWS services and HIPAA-eligible offerings
Strong infrastructure-as-code experience with Terraform or CloudFormation
Proven track record of implementing security controls in CI/CD pipelines
Hands-on experience with container security practices for Docker and Kubernetes
Working knowledge of HIPAA technical safeguards and compliance requirements.
Responsibilities
Own and evolve Axle's cloud infrastructure on AWS, balancing security, scalability, cost, and developer velocity
Design and maintain CI/CD pipelines with integrated security controls
Lead infrastructure-as-code initiatives using Terraform, maintaining logged configurations
Implement and enforce HIPAA-compliant security practices
Manage container orchestration including Docker and Kubernetes
Build and maintain centralized logging, monitoring, and alerting systems
Support disaster recovery planning and risk assessment processes.
Benefits
Flexible work environment that supports remote or hybrid arrangements
Opportunity for career growth in a rapidly scaling company
Collaborative team culture that emphasizes continuous learning and innovation
Comprehensive health benefits including medical, dental, and vision care
Generous paid time off policy and holidays
Support for professional development and training opportunities.
Full Job Description
What You'll Do
Own and evolve Axle's cloud infrastructure on AWS, driving architectural decisions that balance security, scalability, cost, and developer velocity
Design and maintain CI/CD pipelines with integrated security controls including code scanning, secret detection, and dependency vulnerability checks
Lead infrastructure-as-code initiatives using Terraform or equivalent tools, maintaining clean, audited, and well-documented configurations across all environments
Implement and enforce HIPAA-compliant security practices at the infrastructure layer - including PHI encryption, audit logging, BAA management, and access controls
Manage container orchestration (Docker/Kubernetes), including image hardening, pod security policies, and least-privilege configurations
Build and maintain centralized logging, monitoring, and alerting systems (e.g., Datadog) to enable proactive detection of anomalous activity and rapid incident response
Implement and maintain secrets management using tools like AWS Secrets Manager or HashiCorp Vault, eliminating hardcoded credentials across services
Configure and maintain network security controls including WAFs, DDoS protection, TLS certificate management, and network segmentation across environments
Partner with engineering teams to enforce environment parity and prevent configuration drift across development, staging, and production
Coordinate and support penetration testing engagements, remediation tracking, and patch management across servers, containers, and dependencies
Support disaster recovery planning, backup validation, and risk assessment processes aligned with HIPAA contingency plan requirements
Requirements
Bachelor's degree
7+ years of hands-on experience in DevOps, infrastructure engineering, or site reliability engineering, ideally at a growth-stage company
Deep expertise with AWS including: IAM, VPC, ECS or EKS, RDS, S3, CloudWatch, and related HIPAA-eligible services
Strong infrastructure-as-code experience with Terraform or CloudFormation, including security auditing of templates and managing state across environments
Proven track record implementing security controls in CI/CD pipelines (code scanning, secret detection, SAST/DAST tooling)
Hands-on experience with container security: Docker and Kubernetes hardening, image scanning, and runtime policy enforcement
Working knowledge of HIPAA technical safeguards, including PHI encryption at rest and in transit, audit log requirements, and Business Associate Agreements
Strong operational instincts: you write runbooks, you care about on-call hygiene, and you close the loop on incidents with structured postmortems
Nice to Haves
Experience at a healthcare technology company or in another compliance-heavy industry (SOC 2, FedRAMP, PCI DSS)
Familiarity with Datadog or similar observability platforms for log management, APM, and alerting
Exposure to penetration testing coordination or red team/blue team exercises
Experience building or maintaining secrets management systems using HashiCorp Vault or AWS Secrets Manager at scale
Contributions to security culture beyond your immediate role such as documentation, internal security training, or championing secure-by-default engineering practices across the team
