DevSecOps - Director

Machinify is a revolutionary healthcare software company with a mission to ensure that patients get the right medical treatment, at the right time, at the right price.  Our cloud-based Machinify AI platform leverages the latest advances in machine learning, large language models, data analytics, and cloud processing to solve previously intractable problems, transforming healthcare administration and payment operations.

We're seeking a DevSecOps, Director to join our growing AI focused healthcare startup!

The DevSecOps - Director will be responsible for setting technical direction for cloud security across Machinify, Inc. business units.  This individual must be able to define best practices for complex solutions, develop strategies for existing applications and have strong consultative skills.  Other stakeholders such as DevOps, People, Engineering, etc.  must be consulted on solution(s) direction, and the individual must be able to bring the different stakeholders to consensus. Our ideal candidate will also have the ability to influence product teams on their direction for cloud architectures.

 Qualifications

• 12+ years working with information technology and cloud native environments and technology (pref: AWS)

• Expert in DevSecOps methodologies, especially CFN and CDK

• Familiarity with API Security, Container Security, AWS Cloud Security

• Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines.

• Familiarity with Amazon AWS Policy, Configuration, and Security Management tools.

• Proficiency in Python, Bash or other scripting languages.

• Familiarity with Information Security frameworks/standards (i.e., CIS, NIST, RFC2196, etc.)

• Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.

• Experience configuring, implementing, and leveraging computer security and networking diagnostic/monitoring tools.

• Experience with security automation and machine learning

• Leadership and Teaming skills to coordinate remediation of vulnerabilities within established timeframes.

What you’ll do:

• Work with Developers, DevOps, and Engineering teams in a dynamic environment to promote/implement the DevSecOps program throughout the organization.

• Coordinate and perform vulnerability assessments using automated and manual tools (Tenable, NMAP, etc.).

• Review and analyze vulnerability data to identify security risks to the organization's network, infrastructure, and application's and determine any reported vulnerabilities that are false positives.

• Prepare security vulnerability and risk management reports for management.

What we offer:

• A flexible and trusting environment where you'll feel empowered to do your best work.

• Work from anywhere in the US! Our team is distributed and most of us work from home.

• Hardworking and supportive colleagues, and a leadership team that understands the importance of recruiting and retaining top talent.

• Incredible medical, vision, and dental benefits for employees & their families.

• Competitive salary and equity, 401(k) sponsorship.

The salary for this position is based on an array of factors unique to each candidate: Such as years and depth of experience, set skills, certifications, etc. The base salary range for this role is $230k to $270k. We are hiring for different levels, and our Recruiting team will let you know if you qualify for a different role/range. Salary is one component of the total compensation package, which includes meaningful equity, excellent healthcare, flexible time off, and other benefits and perks to meet the needs of each individual.

Equal Employment Opportunity at Machinify

Machinify is committed to hiring talented and qualified individuals with diverse backgrounds for all of its positions. Machinify believes that the gathering and celebration of unique backgrounds, qualities, and cultures enriches the workplace.