Senior DevSecOps / Cloud Security Engineer
About Propela Tech
Propela Tech is a healthcare-focused advisory and technology firm that helps organizations streamline operations, unlock their data, and scale more efficiently through custom-built tools. We’re a team of technologists, former healthcare operators, and strategic thinkers who understand the real-world complexity of running healthcare businesses—and we build solutions that actually work.
What We’re Looking For
This role reports directly to our Chief Solutions Officer and Co-Founder, Steven Feld.
We are seeking a highly practical, hands-on DevSecOps / Cloud Security Engineer to strengthen and execute our security posture across our cloud infrastructure and development environments.
This role is focused on execution, not theory. Unlike traditional security leadership roles centered around policy and oversight, this position is responsible for identifying security gaps and directly implementing the infrastructure, tooling, and policies required to address them.
The ideal candidate is a builder and problem solver who understands how to improve security without disrupting production systems, client environments, or development velocity.
You will work closely with engineering and DevOps teams to ensure security improvements are deployed safely, incrementally, and without service downtime.
Key Responsibilities
Cloud Infrastructure Security
Implement and enforce security best practices across our AWS infrastructure
Harden cloud environments through improvements to IAM policies, network controls, and service configurations
Implement least privilege access models for users, services, and environments
Identify and remediate security gaps across cloud infrastructure and environments
DevSecOps Implementation
Integrate security practices into CI/CD pipelines and development workflows
Implement automated security checks including vulnerability scanning, secrets detection, and dependency monitoring
Ensure infrastructure and application environments follow secure configuration standards
Security Gap Identification & Remediation
Perform ongoing reviews of infrastructure, systems, and processes to identify security gaps
Select and deploy appropriate security tools or configurations to address identified risks
Implement monitoring, logging, and alerting for security-relevant events
Operational Security Improvements
Implement new infrastructure policies (for example IAM or access restrictions) in ways that avoid production disruption
Plan and execute staged rollouts of security improvements
Collaborate with engineering teams to ensure security changes align with development workflows
Compliance & Monitoring
Support security requirements related to healthcare environments and data protection
Maintain infrastructure visibility through logging, monitoring, and audit tooling
Assist with security posture improvements tied to SOC2 / HIPAA-style compliance frameworks
Operating Philosophy
Security must work within the realities of a live production environment. This role requires a pragmatic mindset that balances risk mitigation with operational continuity. The ideal candidate understands how to improve security without breaking systems, slowing teams down, or disrupting client environments.
Security improvements should be implemented through thoughtful rollout strategies, staged changes, and safe infrastructure practices.
Qualifications
Required Experience
3+ years experience in DevOps, DevSecOps, Cloud Infrastructure, or Security Engineering
Strong hands-on experience securing AWS infrastructure
Experience implementing IAM policies, network security, and infrastructure hardening
Experience working in live production environments with uptime requirements
Experience deploying or managing security tooling and monitoring systems
Technical Skills
Experience with several of the following:
AWS security controls (IAM, VPC, CloudTrail, GuardDuty, etc.)
Infrastructure as Code (Terraform or similar)
CI/CD security integration
Secrets management
Vulnerability scanning
Logging and monitoring platforms
Scripting or automation (Python, Bash, etc.)
Preferred Experience
Experience supporting SOC2, HIPAA, or regulated environments
Experience working in high-growth startup or product engineering environments
Background in DevOps, SRE, or platform engineering
What Success Looks Like
Security risks are identified and resolved quickly
Infrastructure becomes progressively more hardened and resilient
Security improvements are deployed without service downtime
Engineering teams can continue to move quickly while maintaining strong security practices
We are looking for engineers who value practical problem solving, ownership, and real-world impact.
We are particularly interested in candidates who have previously worked in DevOps or infrastructure engineering roles and later specialized in security, as this role requires both operational awareness and hands-on implementation.
Our Core Values
At Propela Tech, we look for team members who embody our values every day:
Solution-Oriented: We tackle every challenge with a problem-solving mindset.
Extreme Ownership: We take full responsibility for our work, outcomes, and commitments.
Grit, Speed & Results: We move fast, stay resourceful, and focus relentlessly on outcomes.
Show Up Strong: We bring our best selves and elevate the team.
Benefits
Competitive salary ($130,000 - $150,000), commensurate with experience
Health, dental, and vision insurance
Paid time off
Opportunities for rapid growth and leadership
How to Apply
Ready to build meaningful software with a mission-driven team? Attach your resume and a short note telling us why you're a great fit.
Propela Tech is an equal opportunity employer.
We value diversity and are committed to creating an inclusive environment for all team members.