Senior Cloud Security Engineer

About Paytient:

We’re on a mission to help people better access and afford care. Every day, millions of people, and their loved ones, need to see a doctor. For most of us, that moment is an uncertain one - we’re unsure of what’s wrong, who to go to, how long it’ll take to be seen, when we’ll feel better, and what it’ll cost.

Paytient partners with thoughtful employers and health plans who understand the impact of that moment and want to ensure that every one of their plan members are easily able to access and afford care. Our clients understand that an improved ability to self-pay for care changes patient behavior and creates value for the health plan. This founding belief is becoming an emerging standard of care in health plan design and is now, in fact, a mandatory capability in some governmental health plans. Founded in 2018, Paytient is now part of nearly 6,000 employer health plans and providing certainty that people are better able to access and afford care.

We’re looking for passionate, collaborative builders to join our team and help us create a future where everyone can more easily access and afford care.

About The Role:

As a Senior Cloud Security Engineer, you will be an essential part of Paytient’s security efforts, sharing the responsibility of safeguarding our cloud environments. You’ll be a key player in designing, implementing, and enhancing security controls primarily in our AWS environment, and building out our foundational security in GCP. This includes identifying and addressing posture gaps and expanding our ability to protect critical data. If you want to make a difference in the lives of our members by enabling better access to healthcare, come join our team!

Our “remote with roots” model allows us to work where we thrive and gather as needed, often in our home office in Columbia, Missouri. This role can be performed from anywhere in the continental U.S., with the exception of Montana.

What You’ll Do:

• Design and implement security controls and secure-by-default architecture in AWS and GCP, including but not limited to IAM and network/VPC implementations.
• Implement secure guardrails for cloud deployments in Terraform through creation of secure modules, incorporation of CI/CD tooling, and more.
• Collaborate with engineering and IT teams to address security issues and implement best practices.
• Develop and maintain best-practices security documentation.
• Investigate security incidents in conjunction with the team, perform root cause analysis, and recommend corrective actions.
• Participate in on-call and security support responsibilities.
• Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats.

What You’ll Bring:

• Extensive design and implementation experience with AWS security features and a strong foundational understanding of GCP security.
• Ability to write security automations in Python, JavaScript, or TypeScript.
• Ability to write secure-by-default Terraform for cloud deployments.
• Solid understanding of cloud security principles.
• Knowledge of network protocols, firewalls, and security technologies.
• Strong analytical and problem-solving skills, with attention to detail.
• Ability to work collaboratively in a team environment and communicate effectively with technical and non-technical stakeholders.
• Willingness to learn and adapt to new security challenges and technologies.
• Relevant certifications such as AWS Certified Security, Google Cloud Security Engineer, GIAC GC*, ISC2 CCSP / CISSP, or equivalent are a plus.
• 4+ years of experience in a cloud security role.

Benefits We Offer:

• Medical, dental and vision insurance
• $4,300 annual HSA contribution
• Paytient Health Payment Account (HPA)
• Monthly lifestyle spending stipend
• 33 days of annual PTO
• 401k plan access with a 4% employer match
• Up to 16 weeks of fully-paid parental leave
• Stock options in Paytient

#LI-KB1