Sr. Infrastructure Security Engineer (Remote)

Rula is a remote-first company dedicated to improving mental health care. The Security Team is responsible for protecting patient data and enhancing the security of cloud infrastructure, while collaborating across the company to integrate security into the culture.

Responsibilities:

• Ensure the protection of patient data and all technology behind the platform
• Maintain close partnerships with Engineering and Product teams
• Interface with everyone across the company to ensure that security is an organic and adopted element of the culture
• Enhance the security of cloud infrastructure
• Pursue projects that will leverage and refine skills

Requirements:

• 4+ years of demonstrated experience as an infrastructure security or cloud security engineer
• 3+ years of AWS engineering experience (security or non-security role)
• Expertise using an AWS SDK for Python, Javascript, or Go for regular engineering tasks
• Proficiency using Infrastructure-as-Code tools, such as Terraform or CloudFormation
• Demonstrated ability in managing or developing security standards around Kubernetes and/or EKS
• Experience in healthcare industry, with functional understanding of HIPAA requirements and how they apply to infrastructure security practices
• Hands-on prowess securing GCP environments, including IAM and cloud security posture management across GCP services
• Expertise identifying and mitigating security risks introduced by AI/ML workloads in cloud infrastructure, such as securing model serving pipelines, training data access controls, and GPU/compute resource isolation
• Experience with Web Application Firewall (WAF) tuning and alerting
• Demonstrated success defining, implementing, and refining cloud organization-level policy controls such as Service Control Policies (SCPs) or GCP Organization Policies
• Established history of running security threat models against production cloud infrastructure