Full-Time Staff Cloud Security Engineer

At Kyruus Health, our mission is to connect people to the right care. Our values are at the heart of everything we do: We care deeply, do the right thing, are fiercely driven, lead with respect, and are accountable.

Care: You care about patients, customers, employees, and the company. You want to keep them and their data safe.

Driven: You want to build the best Information Security program possible.

Respect: You respect other departments. Security should enable their success.

Accountable: You value compliance and look to improve each assessment cycle.

What you will do in a Staff Cloud Security Engineer role at Kyruus Health:

1. Maintain and Operate Secure Cloud Infrastructure: Lead ongoing maintenance and operation of secure cloud infrastructures, focusing on AWS and cloud-native technologies. Ensure environments are resilient, compliant, and secure.
2. Cloud Platform Management: Define requirements for secure cloud infrastructure management, using IaC to automate deployments.
3. Perimeter Protection: Safeguard cloud environments with network security controls (firewalls, IDS/IPS, secure access).
4. Cloud Native Application Protection: Secure cloud applications, focusing on containers, serverless, and virtual machines.
5. Cloud Workload and Data Protection: Implement security controls for workloads and data (containers, VMs, serverless). Protect against threats while maintaining performance.
6. Secrets Management: Ensure secure management, storage, and rotation of secrets (API keys, passwords, certificates). Implement best practices using tools.
7. Identity and Access Management (IAM): Define requirements for managing user identities and access privileges.
8. Security Incident Response: Contribute to incident response efforts.
9. Compliance & Auditing: Ensure compliance with industry standards (SOC 2, HITRUST, HIPAA).
10. Collaboration: Act as a liaison between security and other departments.
11. Continuous Improvement: Identify process improvements.
12. Contribute to a Collaborative Security Strategy: Define and implement the overall security strategy.
13. Help Us Achieve our Certification Goals: Participate in HITRUST or FedRamp certification.

What you will bring:

• 8+ years of cloud security experience, with 3+ years focused on AWS or GCP.
• Industry certifications (AWS Certified Security Specialty, CCSP).
• Hands-on experience with IAM, network security, data protection, and vulnerability management.
• Cloud-native security tools (AWS GuardDuty, Google Cloud Security Command Center).
• Proficiency in scripting languages (Python, Bash, Terraform), and automation tools.
• In-depth knowledge of networking protocols (TCP/IP, DNS, VPN), encryption (SSL/TLS, AES).
• Strong incident response experience.
• Familiarity with industry regulations and frameworks (NIST, SOC 2, ISO 27001).
• Exceptional analytical and problem-solving skills.
• Strong leadership and project management skills.
• Excellent communication and collaboration skills.
• Experience mentoring and developing team members.
• Ability to drive strategic initiatives.

What is the last date for applying to the job?

Which countries are accepted for this remote job?