Senior Security Engineer - Cloud Platforms
eClinical Solutions helps life sciences organizations around the world accelerate clinical development initiatives with expert data services and the elluminate Clinical Data Cloud – the foundation of digital trials. Together, the elluminate platform and digital data services give clients self-service access to all their data from one centralized location plus advanced analytics that help them make smarter, faster business decisions.
You will make an impact:
The Senior Security Engineer, Cloud Platforms is a hands on role focused on securing AWS environments and SaaS platforms, while also contributing to cloud security strategy and maturity. The position is part of the Information Security team and works closely with the Chief Information Security Officer (CISO) on cloud security priorities. This role is remote within the United States, with very occasional travel to company offices. This role requires both deep technical expertise in cloud security principles (AWS architecture, AWS security services, Infrastructure as Code (IaC), AWS networking primitives, etc) as well as strong program management acumen with the ability to map and AWS cloud security maturity using AWS and industry standard frameworks. The ideal candidate will proactively integrate security best practices across product and cloud platforms to ensure continuous protection and compliance. As a cloud SaaS provider, we expect this role will actively engage and coordinate with IT, engineering, product, security, compliance, and AI teams to embed security seamlessly across all functional areas.
Your day to day:
Hands On Engineering (Core):
Implement and/or manage native AWS security services to monitor and protect multi account environments
Develop and maintain Infrastructure as Code (IaC) security practices using Terraform
Configure and optimize Web Application Firewalls (WAF) and API security controls
Automate incident detection, response workflows, and compliance processes using native AWS services and integrated tooling
Drive vulnerability management activities
Program Maturity + Strategy
Shape the strategic roadmap for platform and cloud security, providing thought leadership and proactive recommendations to senior management.
Map and track cloud security maturity
Perform regular security assessments using AWS frameworks, CIS Benchmarks, etc.
Lead data protection initiatives such as DLP, data flow mapping, encryption policies, etc.
Collaboration + Influence
Partner with platform engineering and product teams to embed security into design and delivery activities.
Coordinate security efforts with security operations, enterprise security, Governance, Risk, and Compliance (GRC), and privacy/compliance teams.
Advise AI/ML teams on securing models, data pipelines, and emerging AI security risks.
Lead security awareness efforts tailored for engineering teams, including building a security champions program to drive adoption of secure practices across product and cloud development
Other duties as assigned
Education & Experience
5+ years of hands-on cloud security engineering experience, specifically with AWS preferred
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related discipline, or equivalent professional experience preferred
Relevant certifications such as AWS Certified Security Specialty, CISSP, or similar preferred
Professional Skills
Able to translate complex cloud security risks or design choices into clear guidance for engineering or product teams
Able to identity potential could security weaknesses proactively and design scalable mitigations
Able to define, shape, and influence strategic security decisions and roadmaps
Comfortable driving initiatives independently while influencing senior engineers and leaders
Technical Skills
Deep expertise in AWS security services (e.g., Security Hub, GuardDuty, AWS Config, Inspector, Macie)
Proficiency with scripting languages (Python, Bash) to automate security controls and integrate with Infrastructure as Code workflows
Experience configuring and managing AWS multi account strategies and network architectures (e.g., Control Tower, SCPs, Guardrails)
Proven ability to deploy and optimize WAF and API hardening solutions
Hands-on experience automating security incident response and compliance workflows
Solid understanding of data security, including DLP and encryption standards
Practical knowledge of vulnerability management at cloud scale and security scanning tools (DAST/SCA/AWS Inspector, Burp, etc)
Accelerate your skills and career within a fast-growing company while impacting the future of healthcare. We have shared our story, now we look forward to learning yours!
eClinical is a winner of the 2023 Top Workplaces USA national award! We have also received numerous Culture Excellence Awards celebrating our exceptional company vision, values, and employee experience. See all the details here: https://topworkplaces.com/company/eclinical-solutions/
eClinical Solutions is a people first organization. Our inclusive culture values the contribution that diversity brings to our business. We celebrate individual experiences that connect us and that inspire innovation in our community. Our team seeks out opportunities to learn, grow and continuously improve. Bring your authentic self, you are welcome here!
We are proud to be an equal opportunity employer that values diversity. Our management team is committed to the principle that employment decisions are based on qualifications, merit, culture fit and business need.
Senior Security Engineer - Cloud Platforms
eClinical Solutions helps life sciences organizations around the world accelerate clinical development initiatives with expert data services and the elluminate Clinical Data Cloud – the foundation of digital trials. Together, the elluminate platform and digital data services give clients self-service access to all their data from one centralized location plus advanced analytics that help them make smarter, faster business decisions.
You will make an impact:
The Senior Security Engineer, Cloud Platforms is a hands on role focused on securing AWS environments and SaaS platforms, while also contributing to cloud security strategy and maturity. The position is part of the Information Security team and works closely with the Chief Information Security Officer (CISO) on cloud security priorities. This role is remote within the United States, with very occasional travel to company offices. This role requires both deep technical expertise in cloud security principles (AWS architecture, AWS security services, Infrastructure as Code (IaC), AWS networking primitives, etc) as well as strong program management acumen with the ability to map and AWS cloud security maturity using AWS and industry standard frameworks. The ideal candidate will proactively integrate security best practices across product and cloud platforms to ensure continuous protection and compliance. As a cloud SaaS provider, we expect this role will actively engage and coordinate with IT, engineering, product, security, compliance, and AI teams to embed security seamlessly across all functional areas.
Your day to day:
Hands On Engineering (Core):
Implement and/or manage native AWS security services to monitor and protect multi account environments
Develop and maintain Infrastructure as Code (IaC) security practices using Terraform
Configure and optimize Web Application Firewalls (WAF) and API security controls
Automate incident detection, response workflows, and compliance processes using native AWS services and integrated tooling
Drive vulnerability management activities
Program Maturity + Strategy
Shape the strategic roadmap for platform and cloud security, providing thought leadership and proactive recommendations to senior management.
Map and track cloud security maturity
Perform regular security assessments using AWS frameworks, CIS Benchmarks, etc.
Lead data protection initiatives such as DLP, data flow mapping, encryption policies, etc.
Collaboration + Influence
Partner with platform engineering and product teams to embed security into design and delivery activities.
Coordinate security efforts with security operations, enterprise security, Governance, Risk, and Compliance (GRC), and privacy/compliance teams.
Advise AI/ML teams on securing models, data pipelines, and emerging AI security risks.
Lead security awareness efforts tailored for engineering teams, including building a security champions program to drive adoption of secure practices across product and cloud development
Other duties as assigned
Education & Experience
5+ years of hands-on cloud security engineering experience, specifically with AWS preferred
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related discipline, or equivalent professional experience preferred
Relevant certifications such as AWS Certified Security Specialty, CISSP, or similar preferred
Professional Skills
Able to translate complex cloud security risks or design choices into clear guidance for engineering or product teams
Able to identity potential could security weaknesses proactively and design scalable mitigations
Able to define, shape, and influence strategic security decisions and roadmaps
Comfortable driving initiatives independently while influencing senior engineers and leaders
Technical Skills
Deep expertise in AWS security services (e.g., Security Hub, GuardDuty, AWS Config, Inspector, Macie)
Proficiency with scripting languages (Python, Bash) to automate security controls and integrate with Infrastructure as Code workflows
Experience configuring and managing AWS multi account strategies and network architectures (e.g., Control Tower, SCPs, Guardrails)
Proven ability to deploy and optimize WAF and API hardening solutions
Hands-on experience automating security incident response and compliance workflows
Solid understanding of data security, including DLP and encryption standards
Practical knowledge of vulnerability management at cloud scale and security scanning tools (DAST/SCA/AWS Inspector, Burp, etc)
Accelerate your skills and career within a fast-growing company while impacting the future of healthcare. We have shared our story, now we look forward to learning yours!
eClinical is a winner of the 2023 Top Workplaces USA national award! We have also received numerous Culture Excellence Awards celebrating our exceptional company vision, values, and employee experience. See all the details here: https://topworkplaces.com/company/eclinical-solutions/
eClinical Solutions is a people first organization. Our inclusive culture values the contribution that diversity brings to our business. We celebrate individual experiences that connect us and that inspire innovation in our community. Our team seeks out opportunities to learn, grow and continuously improve. Bring your authentic self, you are welcome here!
We are proud to be an equal opportunity employer that values diversity. Our management team is committed to the principle that employment decisions are based on qualifications, merit, culture fit and business need.