Cloud Security Software Engineer

Datavant is a data logistics company for healthcare whose products and solutions enable organizations to move and connect data securely. We are a data logistics company for healthcare whose products and solutions enable organizations to move and connect data securely. Datavant has a network of networks consisting of thousands of organizations, more than 70,000 hospitals and clinics, 70% of the 100 largest health systems, and an ecosystem of 500+ real-world data partners.

By joining Datavant today, you’re stepping onto a highly collaborative, remote-first team that is passionate about creating transformative change in healthcare. We hire for three traits: we want people who are smart, nice, and get things done. We invest in our people and believe in hiring for high-potential and humble individuals who can rapidly grow their responsibilities as the company scales. Datavant is a distributed, remote-first team, and we empower Datavanters to shape their working environment in a way that suits their needs.

In this role, you'll be joining a dynamic team at the forefront of transforming healthcare data connectivity. Our team’s charter is to innovate and streamline the way healthcare data is shared and utilized, making a tangible impact on patient outcomes and industry efficiency. As a key player within this team, you will drive critical projects that enhance our platform's capabilities, directly influencing how data is integrated and leveraged across the healthcare ecosystem. Your contributions will not only shape the future of our technology but also empower healthcare providers and researchers to deliver better care. This role offers a unique opportunity to make a significant impact in a rapidly evolving field, working alongside passionate professionals dedicated to making a difference. 

You will:

• Have a thorough understanding of developing in either K8s or AWS/Lambda (AWS Preferred). You’ll use this knowledge to assist the team in building creative security automation. 
• Have worked in an environment where GitOps are commonplace. You know how to PR, test and review code, build things and you have a deep passion for learning how to do more with less in code.
• Have built software systems, CLIs, integrations into local development, github pipelines, or kubernetes mutating/validating controllers.
• Be tasked with helping to build a system of checks for the SDLC process and working on a system that helps to track and report on them
• Know and understand Software Build and Release. What checks should be commonplace before release, common release patterns, and how to implement them in a high developer autonomy workflow.  
• Have worked past the point of intimidation in your career that may exist around reaching out to anyone (especially developers).
• Work directly with senior members of the team to ensure maturity, depth, and coverage of security controls. You’ll be expected to interface with your team members daily.
• Review components being built (via pull request reviews and contribution), these may include helping our peers in AppSec. During these reviews you’ll be mentally present and use your ability to evaluate risk such that you assist in the delivery of secure code. This role is not merely a +1.
• Work directly with Developer, and DevOps peers to help build practical and usable security into the SDLC and AWS.
• Collaborate on new projects for advancing security in our environment. You’ll offer an open mind to your teammates and a can-do attitude in all projects. Your impact here cannot be understated, you are a core contributor and have deep influence to empower Datavant greatness.

What you will bring to the table: 

• You are humble.
• You can build in at least a single language (Golang, Python) and have a strong grasp of design patterns for extendable, testable, and reliable software. It is expected that you have a “git native” skillset.
• You can articulate start to finish what a secure release cycle might look like.
• You have opinions and options on most of the steps.
• You are a consummate collaborator, it’s inherent in your work behavior.
• You value time deeply and optimize for greatest impact.
• 3+ years of Developing in either Containers/Serverless, particularly in Kubernetes/AWS environments.
• On projects, you are accountable. In moments of gray area, you don’t “let the work come to you” via assignment but are proactive and pick up work you think may be valuable to the team. Datavant is a high autonomy company, we expect everyone at every level to act as owners.

Bonus points if:

• You have developed in event based patterns using Event Bridge or Kafka.
• You have experience with security in healthcare or other highly regulated space. Examples: HIPAA/HITRUST, SOC 2, PCI experience from an operational response standpoint.

We are committed to building a diverse team of Datavanters who are all responsible for stewarding a high-performance culture in which all Datavanters belong and thrive. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.

Our compensation philosophy is to be externally competitive, internally fair, and not win or lose on compensation. Salary ranges for this position are developed with the support of benchmarks and industry best practices. 

We’re building a high-growth, high-autonomy culture. We rely less on job titles and more on cultivating an environment where anyone can contribute, the best ideas win, and personal growth is driven by expanding impact. The range posted is for a given job title, which can include multiple levels. Individual rates for the same job title may differ based on their level, responsibilities, skills, and experience for a specific job. The estimated salary range for this role is  [$X,XXX - $X,XXX].

At the end of this application, you will find a set of voluntary demographic questions. If you choose to respond, your responses will be anonymous and used to help us identify areas of improvement in our recruitment process. (We can only see aggregate responses, not individual responses. In fact, we aren’t even able to see if you’ve responded or not.) Responding is your choice and it will not be used in any way in our hiring process.