We are partnering with a leading healthcare technology company to hire a Principal, Cloud & Infrastructure Security Engineer This organization — launched in January 2025 — provides the technology backbone and digital capabilities for nonprofit, community, and regional health plans nationwide. It is part of a family of companies under a nonprofit parent entity that also includes a major California-based health plan and a clinical services company. You codify the trust boundary, identity fabric, and encryption posture of an Azure-centric platform. Operating with a full-stack developer mindset, you ensure infrastructure security is delivered exclusively through Terraform (IaC) and GitOps, enforcing zero manual changes and zero environment drift. As a senior technical leader on a small, elite team you will act as a cross-functional powerhouse—architecting scalable cloud infrastructure while seamlessly collaborating with and backing up Product & Data Security initiatives. You will play a critical role in accelerating security maturity from "crawl" to "run" as they containerize health plans into a subscription model.
*Must be eligible to work on W2 without sponsorship. Not eligible for C2C.
RESPONSIBILITIES
Infrastructure as Code (IaC) & GitOps Mastery: Design, author, and maintain infrastructure guardrails using Terraform and GitOps principles. Enforce programmatic policies that prevent insecure infrastructure from being provisioned in Azure.
Identity & Access (IAM) Automation: Codify code-based access and author golden IAM modules enforcing least privilege. Implement workload identity federation and Just-In-Time (JIT) access with absolutely no standing credentials, specifically tailored for Azure environments.
Container & Network Security: Secure our containerized health plan architectures (e.g., Azure Kubernetes Service) through default-deny micro-segmentation, service mesh mTLS, and declarative network policies.
Cryptographic Operations & Data Protection: Define KMS/HSM policies-as-code (e.g., Azure Key Vault). Enforce Customer Managed Keys (CMKs) by default to protect modern data workloads across Azure Synapse, Snowflake, and AI-driven platforms.
Cross-Functional Security Operations: Break down traditional security silos. Apply a practical security lens to CI/CD pipelines and application development, acting as a technical backup for AppSec and Data Security functions to ensure continuous team velocity.
QUALIFICATIONS
10+ years of progressive cloud security, platform engineering, or Kubernetes security experience.
Terraform & IaC Dominance: Deep, programmatic expertise in Terraform, infrastructure automation, and GitOps frameworks. Must have a proven track record of completely replacing traditional "click-ops" with code.
Azure Cloud Ecosystem Mastery: Illustrated, hands-on experience securing cloud-native apps and pipelines within Azure to limit the learning curve. Strong understanding of Azure-native security controls, containerization, and modern data platforms (Synapse, Snowflake).
Advanced Identity & Cryptography: Demonstrated background in codifying complex IAM architectures, automated PKI (certificate lifecycle), and KMS policy enforcement at an enterprise scale.
Cross-Functional Agility: Broad understanding of the entire SDLC, CI/CD pipeline security, and AI integrations. Must possess the versatility to stretch beyond pure infrastructure to support Application and Data Security initiatives within a small, highly collaborative team.
Success Measures:
• 100% IAM and network changes via GitOps
• 100% internal service traffic encrypted with mTLS
• 100% storage and secrets protected by CMKs
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or other non-merit factor. We are committed to creating a diverse and inclusive environment for all employees.
Releady (REL-uh-dee) is a diverse and women-owned firm that provides technology, engineering, data, digital, marketing, and creative talent solutions. We're passionate about making genuine connections, finding innovative strategies, and adding a personal touch. We develop customized solutions that meet clients’ specific requirements and exceed expectations.
At Releady, our diverse community, clients, and consultants aren’t just important—they’re at the core of who we are. Our drive is fueled by a culture that embraces diversity, is rooted in purpose, aims for inclusive growth, and is unwaveringly committed to impactful results.
We're excited about the possibility of partnering with you. Whether seeking innovative solutions for your business or exploring the next big step in your career, Releady is here to guide you.
Interested in joining our team? Our workplace policy embodies trust & innovation. We fully embrace remote work, viewing it as more than just a convenience-it's an affirmation of autonomy & flexibility. Our approach is built to reimagine work, enabling a culture that values individual well-being while driving collective goals!
