Senior DevSecOps / Cloud Security Engineer

About Propela Tech 

Propela Tech is a healthcare-focused advisory and technology firm that helps organizations streamline operations, unlock their data, and scale more efficiently through custom-built tools. We’re a team of technologists, former healthcare operators, and strategic thinkers who understand the real-world complexity of running healthcare businesses—and we build solutions that actually work. 

What We’re Looking For 

This role reports directly to our Chief Solutions Officer and Co-Founder, Steven Feld. 

We are seeking a highly practical, hands-on DevSecOps / Cloud Security Engineer to strengthen and execute our security posture across our cloud infrastructure and development environments. 

This role is focused on execution, not theory. Unlike traditional security leadership roles centered around policy and oversight, this position is responsible for identifying security gaps and directly implementing the infrastructure, tooling, and policies required to address them. 

The ideal candidate is a builder and problem solver who understands how to improve security without disrupting production systems, client environments, or development velocity. 

You will work closely with engineering and DevOps teams to ensure security improvements are deployed safely, incrementally, and without service downtime. 

Key Responsibilities 

Cloud Infrastructure Security 

• Implement and enforce security best practices across our AWS infrastructure 

• Harden cloud environments through improvements to IAM policies, network controls, and service configurations 

• Implement least privilege access models for users, services, and environments 
• Identify and remediate security gaps across cloud infrastructure and environments 

DevSecOps Implementation 

• Integrate security practices into CI/CD pipelines and development workflows 

• Implement automated security checks including vulnerability scanning, secrets detection, and dependency monitoring 

• Ensure infrastructure and application environments follow secure configuration standards 

Security Gap Identification & Remediation 

• Perform ongoing reviews of infrastructure, systems, and processes to identify security gaps 

• Select and deploy appropriate security tools or configurations to address identified risks 

• Implement monitoring, logging, and alerting for security-relevant events 

Operational Security Improvements 

• Implement new infrastructure policies (for example IAM or access restrictions) in ways that avoid production disruption 

• Plan and execute staged rollouts of security improvements 

• Collaborate with engineering teams to ensure security changes align with development workflows 

Compliance & Monitoring 

• Support security requirements related to healthcare environments and data protection 

• Maintain infrastructure visibility through logging, monitoring, and audit tooling 

• Assist with security posture improvements tied to SOC2 / HIPAA-style compliance frameworks 

Operating Philosophy 

Security must work within the realities of a live production environment. This role requires a pragmatic mindset that balances risk mitigation with operational continuity. The ideal candidate understands how to improve security without breaking systems, slowing teams down, or disrupting client environments. 

Security improvements should be implemented through thoughtful rollout strategies, staged changes, and safe infrastructure practices. 

Qualifications 

Required Experience 

• 3+ years experience in DevOps, DevSecOps, Cloud Infrastructure, or Security Engineering 

• Strong hands-on experience securing AWS infrastructure 

• Experience implementing IAM policies, network security, and infrastructure hardening 

• Experience working in live production environments with uptime requirements 

• Experience deploying or managing security tooling and monitoring systems 

Technical Skills 

Experience with several of the following: 

• AWS security controls (IAM, VPC, CloudTrail, GuardDuty, etc.) 

• Infrastructure as Code (Terraform or similar) 

• CI/CD security integration 

• Secrets management 

• Vulnerability scanning 

• Logging and monitoring platforms 

• Scripting or automation (Python, Bash, etc.) 

Preferred Experience 

• Experience supporting SOC2, HIPAA, or regulated environments 

• Experience working in high-growth startup or product engineering environments 

• Background in DevOps, SRE, or platform engineering 

What Success Looks Like 

• Security risks are identified and resolved quickly 

• Infrastructure becomes progressively more hardened and resilient 

• Security improvements are deployed without service downtime 

• Engineering teams can continue to move quickly while maintaining strong security practices 

We are looking for engineers who value practical problem solving, ownership, and real-world impact. 

We are particularly interested in candidates who have previously worked in DevOps or infrastructure engineering roles and later specialized in security, as this role requires both operational awareness and hands-on implementation. 

Our Core Values 

At Propela Tech, we look for team members who embody our values every day: 

• Solution-Oriented: We tackle every challenge with a problem-solving mindset. 

• Extreme Ownership: We take full responsibility for our work, outcomes, and commitments. 

• Grit, Speed & Results: We move fast, stay resourceful, and focus relentlessly on outcomes. 

• Show Up Strong: We bring our best selves and elevate the team. 

Benefits

• Competitive salary ($130,000 - $150,000), commensurate with experience
• Health, dental, and vision insurance
• Paid time off
• Opportunities for rapid growth and leadership

How to Apply

Ready to build meaningful software with a mission-driven team? Attach your resume and a short note telling us why you're a great fit.

Propela Tech is an equal opportunity employer.

We value diversity and are committed to creating an inclusive environment for all team members.