Security Engineer: Fortifying the Future of Healthcare Transactions at Stedi
Are you a skilled Security Engineer passionate about building secure, scalable infrastructure in a critical industry? Stedi is revolutionizing healthcare transactions, and we need your expertise to safeguard our cutting-edge, programmable clearinghouse.
In healthcare, the secure and standardized exchange of transactions like claims, eligibility checks, and prior authorizations is mandated by HIPAA, relying on the X12 EDI format. A handful of legacy clearinghouses have dominated this space, but Stedi is disrupting the status quo.
Stedi stands alone as the world's first programmable healthcare clearinghouse. We empower healthcare technology innovators and established players alike with modern API interfaces alongside traditional real-time and batch EDI processes. Our commitment to a customer-first approach and our groundbreaking product have propelled us to be ranked as Ramp’s #3 fastest-growing SaaS vendor.
We've captured lightning in a bottle: a dynamic team of engineers and designers shipping impactful products weekly, a lean business team, an unwavering passion for automation, and $92 million in funding from top-tier investors like Stripe, Addition, USV, Bloomberg Beta, and First Round Capital. Dive deeper into our unique engineering culture by watching our founder Zack’s interview with First Round Capital.
Your Mission: Elevating Security on Our Platform Team
We're seeking an experienced Security Engineer to join our foundational Platform Team. This team is the bedrock of our operations, stewarding multiple AWS Organizations and delivering the essential tools and services that empower our engineering teams to build reliable, secure, and compliant applications.
The Platform Team's comprehensive responsibilities include: Managing the critical AWS infrastructure that underpins all our engineering efforts. As a Security Engineer, you will be instrumental in shaping our AWS infrastructure, evolving our software development lifecycle, and hardening our endpoint security. Your contributions will directly enable our engineering teams to build applications that inherently demonstrate alignment with regulatory and compliance requirements. Our Engineering Philosophy: Secure by Design, Serverless by Default At Stedi, we embrace a modern, cloud-native approach to development: Our entire backend infrastructure, processing sensitive customer data, resides exclusively on AWS. While we leverage essential tools like GitHub, Stripe, Vanta, and PagerDuty, all application development occurs within the AWS ecosystem. What You'll Delive Develop and implement robust security playbooks and proactively address security vulnerabilities within our AWS serverless environments. Who You Are You bring 4+ years of dedicated experience in an engineering capacity, specifically as a Security Engineer or in closely related security roles. Important Notice: Protecting Your Application from Impersonators All official correspondence regarding roles at Stedi will only originate from an @stedi.com email address. Thank you for your vigilance and your interest in joining Stedi. At Stedi, we value deep curiosity and alignment with our collaborative ways of working. We encourage you to apply even if your experience doesn't perfectly match every bullet point in this description.
Overseeing our GitHub organization and core IT operations.
Driving compliance initiatives to meet rigorous industry standards (SOC, HIPAA, HITRUST).
We are almost exclusively serverless, utilizing services like AWS Lambda, API Gateway, SQS, SNS, DynamoDB, and Aurora Serverless. We proudly operate without a single server on-premise or in the cloud.
Infrastructure-as-Code (IaC) is central to our operations, defined using AWS CDK (TypeScript).
We strategically prioritize AWS native products over third-party solutions. This simplifies vendor management, streamlines compliance, and ensures we fully leverage AWS's integrated capabilities and continuous innovation.
Drive significant improvements across our comprehensive security posture, encompassing application security, endpoint protection, access management (including just-in-time access), email and web gateways, browser security, and data loss prevention (DLP).
Collaborate closely with product engineering teams to elevate our security standards, providing expert guidance on CI/CD pipeline security, dependency management, and secure application design reviews.
Fortify and optimize our AWS organization through infrastructure as code (CDK), enforcing stringent security controls, and ensuring robust tenant isolation.
Perform continuous vulnerability assessments and regular risk assessments to identify and mitigate potential threats.
You possess a strong understanding and practical experience with critical compliance frameworks such as SOC, HIPAA, and/or HITRUST.
You have 4+ years of hands-on experience with core AWS services, including deep familiarity with compliance and governance services like AWS Organizations, AWS CloudTrail, AWS Config, Security Hub, and GuardDuty.
You are proficient in TypeScript.
You demonstrate a strong ability to strategically prioritize work, aligning it with evolving business and customer needs.
You are adept at managing diverse priorities simultaneously, maintaining thoughtful attention to detail across multiple domains.
You thrive in a dynamic environment, capable of context-switching effectively as priorities shift throughout the day or week.
You are philosophically aligned with the Stedi Standards and the Unwritten Laws of Engineering at Stedi.
We've recently become aware of individuals falsely representing the Stedi recruiting team. To ensure the legitimacy of our communications:
If you have any doubts about a message's authenticity or any concerns, please contact us directly at [email protected].