About Current Health
Current Health is a leader in the movement to transition more healthcare into the home. We’re a technology company, but beyond our best in class hardware and software capabilities, we help healthcare organisations operationalize care at home and deliver excellent patient experiences through helping with the last mile of care logistics and services. We partner with leading healthcare organisations to advance home-based care in the US, the UK, and around the world.
More than doubling in size in the last year, we’re building a global team united in one purpose: helping people live healthier, longer lives by predicting disease and enabling earlier treatment. At Current Health, we seek to put patients first, solve problems with curiosity and creativity, pursue uncommon collaboration, and never stop growing. We’re a remote-first company, which means that everything from how we work, communicate, and socialise is shaped by tools and culture that prioritise collaboration and support independence.
What does a Senior SecOps Engineer at Current Health do?
As a Senior SecOps Engineer you will sit within the Site Reliability Engineering team and be hands-on in building, maintaining and scaling Current Health’s internal and customer-facing services. This will include:
- Provide subject matter expertise and insights within a number of key cloud security domains such as:
- Identity & Access Management
- Encryption
- Network Security
- Logging and Monitoring
- Data Loss Prevention
- Application Penetration Testing
- Control Plane/Guardrails
- Vulnerability Management
- Lead all security initiatives across their cloud infrastructure and provide analytics on any potential threats.
- Working cross-functionally with various teams across the business including software engineering teams, InfoSec, and QA/RA on new system designs or rearchitecting existing services to meet new requirements
- Providing education, documentation, support, and tooling to enable the software engineering teams in taking full ownership of their services from inception, through development, to production operations
- Help provide 24/7 support for the product, resolving live issues when needed
ofWhat experience would I need?
This isn't a list of hard requirements that must all be met, but an indication of skills and experiences we see as directly applicable to the role.
- Broad commercial experience in AWS services, Linux, networking, infrastructure as code, configuration as code, and managing distributed systems.
- Can shape and design top to bottom cloud solutions with focus on all aspects of Security (Network, Infrastructure, Access, Cloud Services, Controls, and SecOps)
- Development experience in at least one modern high level programming language (eg. Java, Python, JavaScript/TypeScript, Go)
- Familiarity with security themes such as SSL, SSO, SAML, AD and IAM
- An ability to methodically tackle problems with a large number of unknowns
- Familiarity with security at all levels such as physical, data at rest, data in transit, networks, firewalls, public key infrastructure and DDOS
- Knowledge and experience of security standards, procedures, reviews and automation
- Knowledge and experience of security processes and operating models
- Knowledge and experience of cloud specific security challenges, designs and solutions
- Knowledge and experience of cloud security tooling (e.g. AWS KM, firewall tools, Zscaler)
What tech will I be using?
Infrastructure & Configuration: Terraform, Atlantis, Puppet, Serverless Framework
Languages: Java, Python, TypeScript
Monitoring: DataDog
Operating Systems: Ubuntu LTS, Docker
Runtimes: AWS ECS (Fargate), AWS Lambda, EC2
Datastores: RDS PostgreSQL, Aurora, DynamoDB, Elasticache (Redis), S3
Messaging: RabbitMQ, SNS/SQS, Kinesis
CI/CD: Jenkins
Networking: VPCs, Subnets, Transit Gateways, VPC Peering, VPNs
Our tech stack:
We recognise that our technology stack is unique to our context. We acknowledge that there will not be perfect overlap between a candidate’s skill set and our technology stack. We value the experience of each member of our team and how that skill set can help shape our technology to deliver better outcomes for all of our patients and customers.
Our technology approach is to use the most appropriate technology for the job. We operate with a principle of building core IP, using existing solutions for everything else. We rely heavily on not reinventing technology and particularly on leveraging our AWS backbone and the managed services it can offer.
Our platform is diverse and ranges from Embedded C on our firmware through Java and Python based microservices as well as Typescript / Angular, iOS and Android platforms for our applications.
Our data stores range from Postgres RDS instances, through to DynamoDB KV depending on the domain. Services are decoupled and largely event driven using Kinesis, SQS/SNS where appropriate.
Our teams take care with the reproducibility of our cloud-based environments and lean on Infrastructure as Code technologies such as Terraform to maintain our growing stack.