About Our Company: SpinSci Technologies is a leading innovator in the healthcare technology sector, dedicated to developing cutting-edge products that enhance patient care, streamline operations, and improve health outcomes. We are rapidly expanding our cloud infrastructure across both Amazon Web Services (AWS) and Oracle Cloud Infrastructure (OCI) to deliver highly secure, scalable, and reliable healthcare solutions. We are seeking a passionate and skilled SecOps Engineer to join our growing team and fortify our security posture. Job Summary: As a SecOps Engineer, you will play a critical role in safeguarding our cloud-native healthcare products and infrastructure hosted on AWS and OCI. You will be responsible for the detection, analysis, and response to security incidents, while also proactively identifying and mitigating security risks. This role requires a strong understanding of cloud security principles, incident response methodologies, vulnerability management, and the unique compliance requirements within the healthcare industry (e.g., HIPAA, GDPRSOC 2, ISO 27001). Key Responsibilities: Security Monitoring & Alerting: Design, implement, and manage security monitoring tools and platforms (e.g., SIEM, EDR, Cloud Native Security Tools) across AWS and OCI environments. Develop and fine-tune security alerts, dashboards, and reports to detect suspicious activities, anomalies, and potential threats. Perform real-time security event analysis and triage. Incident Response & Management: Lead security incident response efforts from detection to resolution, including containment, eradication, recovery, and post-mortem analysis. Develop, maintain, and test incident response plans and playbooks. Coordinate with internal teams (DevOps, Engineering, IT) and external stakeholders during security incidents. Vulnerability Management: Conduct vulnerability scanning, penetration testing coordination, and security assessments of cloud infrastructure, applications, and network components. Prioritize, track, and validate remediation of identified vulnerabilities. Cloud Security Operations: Implement and enforce security best practices for AWS and OCI services (e.g., IAM, network security, data encryption, security groups, WAFs, security policies). Automate security tasks, responses, and deployments using Infrastructure as Code (IaC) tools (e.g., CloudFormation, Terraform). Manage cloud access controls, ensuring least privilege access principles are followed. Compliance & Audit Support: Ensure adherence to healthcare industry regulations (e.g., HIPAA, HITECH) and security standards (e.g., SOC 2, ISO 27001). Assist in internal and external security audits, providing necessary documentation and evidence. Implement controls to meet compliance requirements. Security Tooling & Automation: Evaluate, deploy, and manage security tools and technologies that enhance our SecOps capabilities. Drive automation initiatives to improve the efficiency and effectiveness of security operations. Security Awareness & Training: Contribute to fostering a strong security culture within the organization. Provide guidance and support to development and operations teams on secure coding and infrastructure practices. Required Qualifications: Bachelors degree in computer science, Information Security, or a related field; or equivalent practical experience. 3-5+ years of experience in Security Operations (SecOps), Cyber Security, or a similar role, with a strong focus on cloud environments. Demonstrable experience with security services and best practices in AWS . Familiarity with security concepts and services in Oracle Cloud Infrastructure (OCI) . Strong understanding of security frameworks and compliance standards relevant to healthcare (e.g., HIPAA, SOC 2, ISO 27001). Experience with SIEM (Security Information and Event Management) tools (e.g., Splunk, ELK Stack, Sumo Logic, Sentinel). Proficiency in scripting languages (e.g., Python, Bash) for automation and data analysis. Solid understanding of networking protocols, operating systems (Linux/Windows), and web application security. Experience with incident response methodologies and tools. Excellent analytical, problem-solving, and communication skills. Preferred Qualifications: AWS Security Specialty certification or other relevant AWS certifications. OCI Foundations Associate, OCI Security Professional, or other relevant OCI certifications. Experience with container security (Docker, Kubernetes) and serverless technologies. Familiarity with DevSecOps principles and integrating security into CI/CD pipelines. Experience with vulnerability management platforms (e.g., Qualys, Tenable, Nessus). Knowledge of penetration testing methodologies and tools.
Wait!
Before You Leave... Find Your Perfect Job!
Are you sure you don't want to discover the perfect job opportunity? At JobPe, we help you find the best career matches, tailored to your skills and preferences. Don’t miss out on your dream job!