DevSecOps Engineer - Cloud Security and Compliance

About DoctusTech:

DoctusTech is a fast-growing technology company focused on driving innovation in the US Healthcare domain. We build impactful, AI-driven solutions that solve real-world problems for our clients. Our team is agile, collaborative, and passionate about technology, and we're looking for people who share that same energy and commitment.

About the Role:

We are seeking an experienced DevSecOps Engineer to join our fully remote team. In this critical role, you will manage secure cloud infrastructure, automate deployments, and ensure system reliability, compliance, and security across environments. The ideal candidate will have a strong Linux background, deep AWS expertise, hands-on GCP experience, and strong knowledge of cloud security, compliance frameworks, and infrastructure automation.

Key Responsibilities:

• Design, implement, and maintain secure, scalable cloud infrastructure on AWS and GCP
• 
  
• Define, enforce, and automate security, compliance, and governance controls
• 
  
• Ensure adherence to HIPAA, ISO 27001, SOC 2, and internal security standards
• 
  
• Manage and optimize CI/CD pipelines with integrated security checks
• 
  
• Monitor infrastructure performance and ensure system reliability, uptime, and observability
• 
  
• Collaborate with engineering teams to improve deployment workflows and strengthen security posture
• 
  
• Implement Infrastructure as Code using tools like Ansible or Terraform
• 
  
• Perform regular threat analysis, vulnerability assessments, and remediation
• 
  
• Troubleshoot system issues across environments and conduct root cause analysis
• 
  
• Manage secure Linux-based environments across development, staging, and production
• 
  
• Support AI/LLM infrastructure needs in collaboration with data and ML teams

Must-Have Skills:

• 6–8 years of DevOps / DevSecOps experience
• 
  
• Strong hands-on experience with AWS services (EC2, RDS, S3, IAM, VPC, Lambda, etc.)
• 
  
• Hands-on experience with GCP (Compute Engine, Cloud Storage, IAM, VPC, etc.)
• 
  
• Deep knowledge of Linux system administration and OS hardening
• 
  
• Strong understanding of cloud security, governance, HIPAA, ISO 27001, SOC 2 compliance
• 
  
• Experience integrating security into CI/CD (SAST, DAST, Dependency Scanning)
• 
  
• Expertise in CI/CD tools like Jenkins, CircleCI, TravisCI, or GitHub Actions
• 
  
• Infrastructure automation experience with Ansible or Terraform
• 
  
• Solid hands-on experience with Kubernetes (EKS preferred) and Docker
• 
  
• Proficiency in scripting languages (Bash, Python, etc.)

Good to Have:

• Exposure to multi-cloud or hybrid architecture (AWS + GCP)
• 
  
• Familiarity with monitoring/logging tools (CloudWatch, ELK, New Relic, Prometheus, Grafana)
• 
  
• Experience with vulnerability scanners (Nessus, Trivy, Qualys, etc.)
• 
  
• Understanding of infrastructure needs for LLMs, AI/ML deployments, and GPU workloads
• 
  
• AWS or GCP certifications
• 
  
• Prior experience in B2B SaaS, US Healthcare, Lifescience or Finance.

What We Offer:

• 100% remote work
• 
  
• Dynamic and collaborative team culture
• 
  
• Opportunity to work on innovative projects in the healthcare space
• 
  
• Competitive compensation and career growth opportunities

Candidates Must Have:

• Own laptop (minimum 8GB RAM, Intel i5 or equivalent)
• 
  
• Stable Wi-Fi/internet connection
• 
  
• Power backup during outages