Save time and effort sourcing top tech talent
hackajob is partnering with Qure4u to fill this position. Create a profile to be automatically considered for this role—and others that match your experience.
Qure4u Inc. is a leading healthcare technology company dedicated to providing providers and patients with the best digital health solutions on the market today. Our mission is to enhance healthcare delivery through innovative technology, ensuring secure, reliable, and scalable solutions that meet the highest industry standards. We operate a robust AWS infrastructure across multiple regions, ensuring high availability, scalability, and compliance with stringent healthcare regulation adherence including, HHS, HIPAA, Federal, and State laws. Other compliance certifications like SOC 2 Type 2, PCI DSS, and HiTrust. Join our passionate team to work on cutting-edge projects that make a real impact on healthcare outcomes.
We are seeking a USA based highly skilled and motivated DevOps / AWS Cloud Engineer to join our expanding team. The ideal candidate will possess extensive experience with AWS cloud infrastructure, particularly within a multi-region setup, and a deep understanding of automation, scalability, security best practices, and compliance requirements specific to the healthcare industry. You will play a critical role in managing and optimizing our AWS environments across primary and disaster recovery regions, ensuring the reliability, performance, and security of our applications and infrastructure.
Multi-Region Architecture:
Manage and maintain AWS deployments across two regions (primary and disaster recovery), ensuring seamless failover and high availability.
Architect and maintain two VPCs per region, each spanning three availability zones.
Need to have familiarization in maintaining and building a warm failover disaster recovery site in our backup region.
Networking:
Configure and manage Public and Private Subnets, VPC Peering, Route Tables, Network ACLs, and Elastic Network Interfaces.
Implement and manage NAT Gateways to facilitate secure outbound internet access for private subnets.
AWS Services Management:
Deploy and manage key AWS services including OpenVPN, EC2, ALB/ELB, AWS WAF, Auto Scaling groups, Route 53, S3, EKS (Kubernetes Cluster), RDS (MySQL), ElastiCache for Redis, Nginx LB server group, and more.
Maintain specialized EC2 instances for Jenkins Server, Sentry Server, Zabbix Server, AlertLogic, and Trend Micro Deep Scanning.
Manage serverless architectures using Lambda Functions, DynamoDB Tables, and other relevant services.
Develop, maintain, and optimize CI/CD pipelines using Jenkins hosted on EC2.
Automate build, test, and deployment processes to enhance efficiency and reliability across multiple environments.
Integrate static code analysis tools like Snyk.io into the CI/CD pipelines to ensure code quality and security.
Compliance Management:
Ensure infrastructure and operations comply with SOC 2 Type 2, HIPAA, and PCI DSS frameworks.
Collaborate with security teams to implement and maintain compliance controls from a technical perspective.
Security Best Practices:
Implement and manage security controls using AWS IAM, AWS GuardDuty, Amazon Inspector, and AWS WAF.
Ensure adherence to security protocols, including TLS 1.2+, AES 256 encryption, and secure SSH configurations.
Regularly patch and mitigate security vulnerabilities to maintain a secure infrastructure.
Monitoring and Auditing:
Utilize AWS Config and AWS CloudTrail to monitor and enforce compliance standards.
Conduct regular security assessments and audits to identify and address potential risks.
Set up and manage comprehensive monitoring and logging solutions with AWS CloudWatch, Zabbix, and other tools.
Utilize AWS Kinesis Data Firehose, Amazon Athena, and Amazon QuickSight for data analysis and visualization.
Optimize system performance and ensure high availability through effective use of Auto Scaling, Load Balancers (Nginx LB Server Group, ALB/ELB), and other performance-enhancing technologies.
Develop automation scripts using Python, Bash, or PowerShell to streamline operations and reduce manual intervention.
Utilize AWS Systems Manager for automation and operational tasks.
Implement Infrastructure as Code (IaC) using Terraform or AWS CloudFormation to manage and provision infrastructure resources.
Work closely with development, operations, and cross-functional teams to support application deployments and troubleshoot infrastructure issues.
Provide technical guidance and support for infrastructure-related projects and initiatives.
Collaborate with security and compliance teams to ensure infrastructure meets all regulatory requirements.
Manage and utilize AWS SQS Queues, SNS Topics, EventBridge Event Rules, and RabbitMQ for scalable and event-driven architectures.
Oversee the ECR Registry for container image management and ensure secure container deployments.
Conduct AMI provisioning from scratch and manage Apache and HA Proxy configurations.
Support and maintain additional services such as OpenVPN, Trend Micro Deep Scanning, and AlertLogic EC2 Instances.
Familiarization and experience with tools like New Relic and DataDog for future growth.
Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related field. Equivalent work experience will also be considered. AWS Certifications are a plus in addition to degrees.
AWS Certifications and required work experience are acceptable in lieu of a degree.
Minimum 5 Years or more in DevOps, Cloud Engineering, or a similar role.
5-10 years of professional experience with a high-growth SaaS platform
Proven experience managing AWS infrastructure across multiple regions with VPCs, subnets, and availability zones.
Hands-on experience with a wide range of AWS services, including but not limited to EC2, S3, RDS, Lambda, VPC, IAM, CloudFormation, and more.
AWS technology stack w/Linux (Centos, Ubuntu, AWS)
Configuration management (Puppet, Ansible, Terraform, Capistrano)
Monitoring (Zabbix, Instana)
CI/CD (Jenkins, GitLab)
Scripting (Bash, Python)
Experience maintaining compliance with SOC 2 Type 2, HIPAA, and PCI DSS frameworks.
Infrastructure as Code (IaC): Proficiency with Terraform or AWS CloudFormation.
CI/CD Tools: Extensive experience with Jenkins and other CI/CD platforms.
Containerization: Strong understanding of Docker and Kubernetes (EKS).
Networking: In-depth knowledge of VPC Peering, Route Tables, Network ACLs, Elastic Network Interfaces, and related networking concepts.
Security: Expertise in implementing security best practices using AWS IAM, GuardDuty, WAF, encryption protocols, and vulnerability management.
Monitoring & Logging: Experience with AWS CloudWatch, Prometheus, Grafana, ELK Stack, Zabbix, and other monitoring tools.
Scripting: Proficient in Python, Bash, or PowerShell for automation tasks.
Database Management: Experience with MySQL, DynamoDB, and ElastiCache for Redis.
Protocols: Familiarity with HTTP, HTTPS, TLS 1.2+, AES 256 encryption, SSH, and other relevant protocols.
Additional Technologies: Experience with OpenVPN, Nginx, HA Proxy, RabbitMQ, Apache, and AMI provisioning.
Excellent problem-solving abilities and meticulous attention to detail.
Strong communication and collaboration skills.
Ability to thrive in a fast-paced, dynamic environment and manage multiple priorities effectively.
Proactive mindset with a focus on continuous improvement and automation.
Certifications: AWS Certified DevOps Engineer, AWS Certified Solutions Architect, or similar.
Serverless Architectures: Experience with AWS Lambda and other serverless services.
Agile Methodologies: Familiarity with Agile/Scrum frameworks.
Advanced Security: Knowledge of advanced networking and security practices. Assessments and scans interpretation and remediation/mitigation applied.
Data Analytics: Some experience with AWS Kinesis, Amazon Athena, and Amazon QuickSight for data processing and visualization.
Static Code Analysis: Proficiency with Snyk.io or similar tools.
Compliance Expertise: Understanding of SOC 2 Type 2, HIPAA, and PCI DSS compliance requirements and implementation.
hackajob is partnering with Qure4u to fill this position. Create a profile to be automatically considered for this role—and others that match your experience.