Senior Platform & Security Engineer

We are hiring a Security Engineer to help support and evolve a modern cloud-based technology environment at a fast-growing, mission-driven healthcare technology company.

• Manage and evolve Azure Dev Ops pipelines for build, test, and deployment
• Operate Azure Container Apps, App Service, Service Bus, Azure Database for PostgreSQL Flexible Server, Blob Storage, and supporting services
• Maintain Azure Key Vault including secrets rotation and enforcement of least-privilege access
• Configure and tune Application Insights and Log Analytics, including PHI-safe logging pipelines that prevent sensitive data from appearing in telemetry

• Implement and maintain technical controls in support of SOC 2 Type 2 and HIPAA compliance programs
• Administer Entra  conditional access policies, MFA enforcement, group lifecycle management, and identity governance
• Partner with leadership on audit preparation, evidence collection, and control documentation
• Contribute to incident response readiness, including tabletop exercises and runbook development
• Manage logging and alerting functions through Microsoft Purview and Microsoft Sentinel, including alert tuning, analytics rules, and data connector configuration
• Maintain and improve the organization’s security posture through vulnerability management, access reviews, and security monitoring

• Own Office 365 administration, SharePoint configuration, and SaaS tool management for the organization
• Serve as the internal technical authority on endpoint security, device management, and employee access provisioning
• Evaluate and onboard new tooling as the company scales, with a bias toward security and operational simplicity

• Security and Identity:
  Azure Key Vault, Microsoft Entra , Microsoft Defender, Azure Policy
• Observability and Security Operations:
  Application Insights, Log Analytics Work spaces, Microsoft Sentinel, Microsoft Purview
• Productivity:
  Microsoft 365, SharePoint, Teams
• Compliance targets: SOC 2 Type 2, HIPAA

• 7–10 years in cloud platform engineering, Dev Ops, or infrastructure security
• Hands-on production Azure experience across the full service lifecycle, not just resource provisioning
• Practical experience implementing technical controls for HIPAA and SOC 2 Type 2
• Fluent in Entra l access, MFA, role assignments, and identity governance
• Applies appropriate safeguards for protected health information, including PHI-safe logging pipelines, data isolation, and least-privilege access controls
• Comfortable owning IT operations end-to-end: M365, SaaS administration, and employee access management included
• Brings a point of view. This role requires someone who assesses the environment, identifies gaps, and recommends a path forward
• Energized by doing the work. This is a hands-on role with full ownership of the platform and security posture
• Healthcare or regulated industry background is a genuine advantage
• Comfortable incorporating AI-assisted tools and workflows into day-to-day work to improve speed and quality