Datavant
Cloud Security Engineer
Job Summary
The role involves building security into Datavant's infrastructure with a focus on AWS security, containerization, and Kubernetes clusters. It requires collaboration with engineering teams to tune security measures such as WAF rules and review cloud infrastructure components. Candidates should have experience with infrastructure automation, security risk management, and operational security in regulated environments. The position emphasizes technical expertise, collaborative work, and impactful contributions to security projects.
Required Skills
Benefits
Job Description
Datavant is a data platform company and the world’s leader in health data exchange. Our vision is that every healthcare decision is powered by the right data, at the right time, in the right format.
Our platform is powered by the largest, most diverse health data network in the U.S., enabling data to be secure, accessible and usable to inform better health decisions. Datavant is trusted by the world’s leading life sciences companies, government agencies, and those who deliver and pay for care.
By joining Datavant today, you’re stepping onto a high-performing, values-driven team. Together, we’re rising to the challenge of tackling some of healthcare’s most complex problems with technology-forward solutions. Datavanters bring a diversity of professional, educational and life experiences to realize our bold vision for healthcare.
What We’re Looking For
As a Cloud Security Engineer in the Secure Product & Infrastructure program, you will be part of a highly technical team, actively working to build security into Datavant’s infrastructure. You’ll play a key role helping to build secure patterns, and enabling engineering teams to move fast, while being secure.
What You Will Do
- Use your strong understanding of AWS security to help Datavant navigate all the traps of good AWS products vs. great AWS products and know when to be thoughtful on use.
- Have strong experience and understanding of containerization, as well as operating and securing Kubernetes clusters.
- Have a point of view on secure continuous development and represent it as Datavant continues to mature working collaboratively with other team members.
- Have a point of view on secure network controls and the deep design paradigms of secure cloud networking, and overlay networks.
- Have experience working with engineering teams, helping to tune WAF rules for applications.
- Review components being built in our cloud infrastructure (via pull request reviews and contribution). During these reviews you’ll be mentally present and use your ability to evaluate risk such that you have a great impact on the delivery of secure code. This role is not merely a +1.
- You will have an understanding of risks, but may have some knowledge gaps in depth of risk management. It’s OK, we’ll teach you. The core skill set you bring to the table is a development mindset.
- Work directly with DevOps peers to help build practical and usable security into the SDLC and AWS.
- Own new projects for advancing security in our environment. Be a technical expert and collaborate with others on the teams to ensure project success. Your impact here cannot be understated, you are a core contributor and have deep influence to empower Datavant greatness.
What You Need to Succeed
- You are humble.
- You have an “automation first” mindset.
- You can build Infrastructure as Code in Terraform. It is expected that you have a “git native” skillset.
- You can articulate start to finish what a secure release cycle should look like in detail.
- You have opinions and options on most of the steps.
- You are a consummate collaborator, it’s inherent in your work behavior.
- You value time deeply and optimize for greatest impact.
- 3+ years of working in at least 1 major public Cloud provider and a desire to learn a second.
- 2+ years of operating, and securing Kubernetes clusters.
- Broad scoped projects don’t scare you, they energize you. However, you like to get things done fast (and help others) with limited dependencies.
What Helps You Stand Out
- You are often viewed as the “expert in the room” on cloud security in your current role.
- You have experience with SCA, SAST, and secrets detection.
- You have experience with security in healthcare or other highly regulated space. Examples: FEDRAMP, HIPAA/HITRUST, SOC 2, PCI experience from an operational response standpoint.
We are committed to building a diverse team of Datavanters who are all responsible for stewarding a high-performance culture in which all Datavanters belong and thrive. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.
At Datavant our total rewards strategy powers a high-growth, high-performance, health technology company that rewards our employees for transforming health care through creating industry-defining data logistics products and services.
The range posted is for a given job title, which can include multiple levels. Individual rates for the same job title may differ based on their level, responsibilities, skills, and experience for a specific job.
To ensure the safety of patients and staff, many of our clients require post-offer health screenings and proof and/or completion of various vaccinations such as the flu shot, Tdap, COVID-19, etc. Any requests to be exempted from these requirements will be reviewed by Datavant Human Resources and determined on a case-by-case basis. Depending on the state in which you will be working, exemptions may be available on the basis of disability, medical contraindications to the vaccine or any of its components, pregnancy or pregnancy-related medical conditions, and/or religion.
This job is not eligible for employment sponsorship.
Datavant is committed to a work environment free from job discrimination. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status. To learn more about our commitment, please review our EEO Commitment Statement here. Know Your Rights, explore the resources available through the EEOC for more information regarding your legal rights and protections. In addition, Datavant does not and will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay.
At the end of this application, you will find a set of voluntary demographic questions. If you choose to respond, your answers will be anonymous and will help us identify areas for improvement in our recruitment process. (We can only see aggregate responses, not individual ones. In fact, we aren’t even able to see whether you’ve responded.) Responding is entirely optional and will not affect your application or hiring process in any way.
Datavant is committed to working with and providing reasonable accommodations to individuals with physical and mental disabilities. If you need an accommodation while seeking employment, please contact us at [email protected]. We will review your request for reasonable accommodation on a case-by-case basis.
For more information about how we collect and use your data, please review our Privacy Policy.
Datavant
Join Datavant’s network of networks, including 300+ real-world data partners, more than 70,000 hospitals and clinics, and 70% of the top 100 largest health systems.
See more jobsSafe Remote Job Search Tips
Verify Employer Thoroughly
Research the company's identity thoroughly before applying. Check for a professional website with contacts, active social media, and LinkedIn profiles. Verify details across platforms and look for reviews on Glassdoor or Trustpilot to confirm legitimacy.
Never Pay to Get a Job
Legitimate employers never require payment for applications, training, background checks, or equipment. Always reject upfront payment requests or demands for bank details, even if they claim it's for purchasing necessary work gear on your behalf.
Safeguard Your Personal Information
Protect sensitive data like SSN, bank details, or ID copies. Share this only after accepting a formal, written job offer. Ensure it's submitted via a secure company system or portal, never through insecure channels like standard email attachments.
Scrutinize Communication & Interviews
Watch for communication red flags: poor grammar, generic emails (@gmail), vague details, or undue pressure. Be highly suspicious of interviews held only via text or chat apps; legitimate companies typically use video or phone calls.
Beware of Unrealistic Offers
If an offer's salary or benefits seem unrealistically high for the work involved, be cautious. Research standard pay for similar roles. Offers that appear 'too good to be true' are often scams designed to lure you into providing information or payment.
Insist on a Formal Contract
Always secure and review a formal, written job offer or employment contract before starting work or sharing final personal details. Ensure it clearly defines your role, compensation, key terms, and conditions to avoid misunderstandings or scams.