Abacus Insights is a mission-driven, growth-stage technology company focused on transforming the healthcare industry, ultimately creating a more personalized patient experience, improving health outcomes, and lowering the overall cost of healthcare. Abacus Insights provides a flexible, efficient, and secure platform that organizes and exchanges healthcare data from various sources and formats. Our platform allows our customers to uncover differentiated insights that address their client's needs. In addition, our employees know they play an active role in keeping our customers' data safe and are responsible for ensuring that our comprehensive policies and practices are met.
With our deep expertise in cloud-enabled technologies and knowledge of the healthcare industry, we have built an innovative data integration and management platform that allows healthcare payers access to historically siloed and inaccessible data. Through our platform, these healthcare organizations can ingest and manage all the data they need to transform their business by supporting their analytical, operational, and financial needs.
Since our founding in 2017, Abacus has built a highly successful SaaS business, raising more than $81 Million from leading VC firms with deep expertise in the healthcare and technology industries. We are solving problems of massive scale and complexity in a sector ready for disruption. We're growing quickly and would love for you to be a part of it!
About the Role:
** This position is based in Pune India.**
At Abacus, cloud security is of paramount importance. Security Operations (SecOps) secures the platform that manages our customers’ most sensitive data, and the role of a Security Engineer at Abacus puts you at the forefront of that stewardship. This is a hands-on role securing multiple cloud providers (AWS, Azure) by leveraging native, custom, and 3rd party tooling. We use a confluence of technology to weave a security fabric around our cloud properties and underlying platform tech stack (EKS, Databricks, Snowflake, Lambda, API Gateway, GitLab). We are looking for an open, enthusiastic, empathetic, security professional who wants to build real security solutions to reduce or eliminate the possibility of human error. Help scale our team to meet the needs of Abacus as we grow and deliver new products, services, and opportunities to our customers!
As a Cloud Security Engineer, you’ll help us with:
- Day to day operation of the security infrastructure supporting the Abacus Insights platform and information systems in both AWS and Azure
- Enabling engineering teams through security reviews and audits to ensure security is at the heart of all features or solutions being built into our platform
- Triaging or investigating security alerts • Resolving escalated access management requests and building least-privilege roles
- Building access packages for employees and automating provisioning • Improving and tuning Splunk dashboards, alerts, and reports
- Evaluating cloud security postures of accounts, subscriptions, and infrastructure in AWS and Azure
- Runtime security tool monitoring, application/component integration, and alert tuning • Vulnerability management artifact curation and remediation (OS, code/library/dependency)
- SAST result triage including remediation through DevOps practices or alongside developers and engineers
What we're looking for:
- A concrete understanding of application security, cloud security, network security, and host/OS security
- Hands-on experience securing enterprise workloads in AWS or Azure, ideally for a multitenant SaaS platform
- Familiarity with modern authentication protocols (SAML2, OAUTH, OIDC, mTLS)
- Familiarity with basic programming concepts and ability to demonstrate capabilities in at least 1 language (ideally Python)
- Unix systems administration experience
Bonus Points:
- Current cloud security certification(s)
- Current cloud architecture or DevOps certification(s)
- Experience securing serverless and containerized workloads
- Experience deploying and supporting assets with Infrastructure as Code (IaC) methodologies (Terraform, CloudFormation, Azure Resource Manager Templates)
- Programming/developer background or experience driving security to developers and integrating security tools into CI/CD pipelines.
- Familiarity with securing PHI/PII or PCI data and systems.
- Experience operating in a controlled environment (HITRUST, FedRamp, PCI).
- Jira administration/service project workflow administration
- Red-team experience
- CCDC experience
- CTF experience
- Incident response or SOC experience
- Knowledge of DevOps methodologies and Agile practices
Equal Opportunity Employer
As a mission-led technology company that is helping to drive better healthcare outcomes, Abacus Insights believes that the best innovation and value we can bring to our customers comes from diverse ideas, thoughts, experiences, and perspectives. Therefore, we proudly dedicate extensive time and resources to building diverse teams and providing equal employment opportunities to all applicants. Abacus prohibits discrimination and harassment of any type regarding race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
