Senior DevSecOps Engineer

At Xealth, we're revolutionizing healthcare by leveraging data and automation to empower care providers (building on EHRs such as Epic and Cerner) to seamlessly prescribe, deliver, and monitor digital health for patients. We are a detail-oriented team, committed to maintaining the highest standards while moving with agility and impact.

We are a highly skilled, collaborative, and passionate group, applying our expertise to improve health outcomes for millions. We believe in shared ownership and are looking for a team player who is a self-starter and self-driven to pioneer the next generation of intelligent, automated cloud infrastructure.

This role offers a unique opportunity to build out a cloud platform in a mission-driven environment.

As a Senior DevSecOps Engineer, you won't just be managing a cloud; you’ll be the architect of a self-healing, hyper-automated, and secure ecosystem. We’re looking for someone who views "manual tasks" as a personal affront and treats security as a fundamental feature, not a final gate.

• Architectural Security: You’ll be a critical part of the InfoSec team, championing improvements to our security posture. You won't just run scans; you’ll proactively evaluate, integrate, and tune tools (SAST/DAST/CSPM) to harden our environment before threats even materialize.
• Intelligent Infrastructure (IaC): Design and evolve our dynamic AWS environment using Terraform. We’re looking for modular, reusable patterns that drive self-scaling and self-healing systems, moving us closer to a "No-Ops" reality.
• The "Toil Killer": You’ll be part of the ownership of our automation strategy. Using NodeJS, Python, and cloud-native services, you will identify and eliminate manual friction, aiming for near-100% automation across the CI/CD lifecycle.
• AI-Augmented Engineering: You don't just use GitHub Copilot or Claude; you master them. You’ll lead the charge in rethinking our development lifecycle—using AI to generate complex IaC, automate documentation, and audit security at the speed of thought.
• Incident Leadership & Blameless Culture: Act as the ultimate escalation point for production issues. You’ll lead troubleshooting with a balance of technical precision and empathy, focusing on blameless post-mortems and long-term systemic fixes.

We need a technically deep "fast-learner" who thrives at the intersection of infrastructure and software engineering.

• AWS Mastery: Expert-level, hands-on experience with the "core heavyweights": VPC, EC2, ECS, EKS, IAM, S3, and SQS.
• Security & Compliance Guardrails: Deep familiarity with commercial and open-source security tools (e.g., Lacework/Crowdstrike, Semgrep, Checkov, or OWASP ZAP). You know how to bake these into a pipeline without slowing down the developers.
• Modern Networking: A cautious, detail-oriented approach to VPC design, VPN technologies, TLS/HTTPS, and Site-to-Site connectivity.
• Kubernetes (EKS) Specialization: Proven experience building, securing, and maintaining Kubernetes clusters at scale.
• Production-Grade Scripting: High proficiency in Python or NodeJS. You write clean, testable code for automation, not just "quick-and-dirty" bash scripts.
• Data-Driven Observability: Experience using logging and metrics (Prometheus, Grafana, LGTM stack) to guide infrastructure improvements rather than just reacting to alerts.

• Regulated Environments: Experience navigating HIPAA, PCI-DSS, or SOC2 compliance.
• GitOps Practitioner: Experience with "Pull-based" deployments using ArgoCD or Flux.
• Certified Excellence: AWS DevOps Professional or Security Specialty; or security-focused certs like OSCP or CCSP.

We aren't looking for a "Cloud Admin." We’re looking for an engineer who wants to build the future of automated, AI-driven infrastructure. If you’re constantly experimenting with new LLM prompts to optimize your workflow and you have a "security-first" brain, you’ll fit right in.

• Pioneer Automation: This role offers the autonomy to build intelligent, self-driving infrastructure — the future of cloud operations.
• Meaningful Work: Your engineering directly enables better patient care and health outcomes for millions.
• Cutting-Edge Stack: Work with modern tools and a team that prioritizes technical excellence and continuous learning.
• Best Workplace: Xealth has been named to the World's Best Digital Health Companies list by Newsweek, awarded gold in the Digital Health awards in 2024 and twice in 2023. In 2026 Xealth was also listed as one of BuiltIn's Best Places to Work, and one of Fierce Healthcare's Fierce 15 of 2023.

• Xealth created the leading digital health platform helping health systems deliver connected, personalized care at scale. Embedded in the EHR, it enables clinicians to prescribe, automate, and measure the impact of digital tools--including apps, services, and wearable data--within existing workflows. Now part of Samsung's connected care vision, Xealth enhances decision-making, reduces friction, and supports enterprise-wide digital health strategies. Trusted by more than 500 hospitals and 70+ solution partners, Xealth provides a scalable foundation for delivering connected, personalized, and preventative care--empowering health systems to drive outcomes, engagement, and operational efficiency while advancing digital transformation.

• As a market-leading digital health platform recognized for excellence and culture, some of our recent accolades include: Newsweek’s World’s Best Digital Health Companies (2024-2026), consecutive Gold Digital Health Awards, and we were named a BuiltIn Best Place to Work for 2025 and 2026.

Compensation & Benefits:

Xealth offers a multi-tiered approach when constructing a highly competitive compensation package. The compensation package would include a base salary, bonus, and a comprehensive suite of benefits. The base salary compensation range for this position is $185,000 - $225,000, depending on geographic market.

 Paid parental leave.
 Comprehensive medical, dental, and vision policies. Xealth covers 100% of employee premiums. We also provide Employee Assistance Programs.
Xealth provides your laptop and offers a home office stipend.
 Generous learning & development opportunities for you to grow your skills and career.
 401k Match: Xealth offers a dollar-for-dollar match up to 3%.
 Flexible time off & 10 standardized holidays.
 $500 yearly fitness stipend to spend on staying active.
Xealth is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures.

*Please note - you MUST be a U.S. Citizen or Permanent Resident to be hired*