Cloud Security Operations Engineer – GCP/AWS

Job not on LinkedIn

🔥 3 minutes ago

🐻 Alaska, Hawaii – Remote

🐻 Alaska – Remote 🌺 Hawaii – Remote

⏰ Full Time

🟡 Mid-level

🟠 Senior

🛡️ Security Operations

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Medable

WebsiteLinkedInAll Job Openings

51 - 200 employees

☁️ SaaS

💊 Pharmaceuticals

🤖 Artificial Intelligence

💰 $300k Seed Round - MedAble on 2015-03

SaaS • Pharmaceuticals • Artificial Intelligence

Medable is a SaaS company that provides a unified, cloud-agnostic decentralized clinical trial (DCT) platform used by pharmaceutical sponsors, CROs, and research sites to streamline and accelerate clinical research. Its solutions include eCOA/ePRO, eConsent, remote monitoring, connected sensors, and AI-driven tools (Agent Studio and multiple AI agents) to automate trial master file processes, site workflows, and participant data collection. Medable emphasizes rapid study build, global scalability, integrations, and patient-centered design to reduce time-to-launch and improve trial efficiency and data quality.

📋 Description

• Work cross-functionally with Information Security Operations and Infrastructure/DevOps teams, to administer and optimize security posture across multi-cloud (GCP/AWS) infrastructure, including native security services, IAM, logging, and threat detection • Triage and respond to cloud security alerts and vulnerabilities; implement timely mitigations, configuration changes, and patches • Own configuration and hygiene for cloud security consoles (examples: GCP Security Command Center, Cloud Logging, Cloud Armor, KMS, IAM , etc.) • Partner with DevOps to implement secure baseline configurations and guardrails (network segmentation, least privilege, encryption, key management, secrets handling, egress controls), in alignment with industry standard frameworks such as CIS, NIST 800-53, OWASP Top 10, etc. • Run day-to-day vulnerability workflows: detection, prioritization, remediation, and validation across cloud services, hosts, containers, and third-party dependencies • Manage and harden security configurations for Kubernetes Engine environments, including: Cluster and node security settings, RBAC, pod security controls, network policies, admission controls, and runtime security, Image vulnerability scanning, container supply-chain controls, patch cadence and version lifecycle management for clusters/nodes and supporting components • Support secure implementations/integrations of AI within cloud infrastructure, including: Data protection controls (PII/PHI handling, encryption, retention, audit logging) • Network controls (private connectivity where feasible, egress restrictions, proxying, allowlists) • Usage monitoring, abuse prevention, and security reviews for AI-driven features/workflows • Contributing to internal AI security standards (prompt/data handling guidance, logging strategy, third-party risk considerations) • Work cross-functionally with IS Risk and Compliance team to produce evidence and reporting to support internal security requirements and external compliance obligations (e.g., SOC 2 / ISO-aligned controls, healthcare and privacy expectations) • Participate in security incident response for cloud-related events, including containment and recovery actions • Other duties as assigned

🎯 Requirements

• 4+ years of hands-on experience in cloud security, DevSecOps, cloud engineering with security focus, or security operations in cloud environments or a combination of education and experience • Experience in healthcare technology and/or regulated environments (privacy, audit evidence, security control documentation) • Practical experience administering security controls in GCP and AWS (IAM, logging, encryption/KMS, network security, cloud security services) • Experience securing Kubernetes environments, including RBAC, cluster hardening, workload controls, and patch/version management • Strong vulnerability management experience (triage, remediation coordination, patching workflows, validation) • Experience supporting secure integrations of LLM/AI services (e.g., ChatGPT/Grok) in production systems, including data governance and key management

🏖️ Benefits

• Flexible Work Remote from the start, we believe in a flexible employee experience • Competitive base salaries • Annual performance-based bonus • Stock options for employees, aligning personal achievements to Medable's success • Comprehensive medical, dental, and vision insurance coverage • Carrot Fertility Program • Health Saving Accounts (HSA) and Flexible Spending Accounts (FSA) • Wellness program (Mental, Physical and Financial) • Peer-to-peer recognition program, celebrating achievements and milestones • Volunteer time off to support causes you care about