Included Health

Healthcare

StaffSoftwareEngineer,CloudSecurity

₹105–155L ~AI est. Remote Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Staff candidates.

The Brief

“Staff Software Engineer, Cloud Security at Included Health. Skills: Cloud security, Software development, Automation, Access control. Engineer security controls in cloud environments. Implement security controls in cloud environments”

What You'll Achieve.

Reduce HIPAA incidents

Industry & Context.

Healthcare

Problems you'll solve

Risk mitigation; Threat modeling

What They're Looking For.

Must Have

Bachelor's degree in Computer Science, 5+ years of experience in cloud security, Hands-on software development experience, Demonstrable experience designing authorization frameworks, Experience with Infrastructure as Code, Experience with containerization, Experience with SDLC security, Experience with security logging tools, Experience with cloud security frameworks

Nice to Have

Familiarity with Ruby is a plus, GCP considerations

What You'll Do.

Engineer security controls in cloud environments

Implement security controls in cloud environments

Automate security controls in cloud environments

Mature cloud security posture

Secure product infrastructure

Prevent PHI exfiltration

Design advanced security solutions

Develop advanced security solutions

Address access control challenges

Address development environment security

Address infrastructure hardening challenges

Drive security by design culture

Implement solutions reducing HIPAA incidents

Design authorization framework for cloud resources

Develop authorization framework for cloud resources

Implement authorization framework for cloud resources

Lead JIT access control implementation

Integrate data classification with access control

Develop security automation scripts

Maintain security automation scripts

Streamline security operations

Streamline vulnerability management

Streamline compliance checks

Streamline incident response

Write clean code for security automation

Build custom security integrations

Develop security-focused tools

Implement Infrastructure as Code principles

Enforce Infrastructure as Code principles

Contribute to centralized security controls design

Contribute to centralized security controls implementation

Manage input validation

Manage request filtering

Partner to establish secure practices

Partner to implement secure practices

Mitigate supply chain risks

Design secure webhook testing mechanism

Implement secure webhook testing mechanism

Block unauthorized tunneling tools

Define container security hardening standards

Implement container security hardening standards

Enforce container security hardening standards

Drive remediation of legacy cloud environments

Inventory legacy cloud environments

Assess legacy cloud environments

Improve security controls in legacy environments

Design data access control solutions

Implement data access control solutions

Collaborate to co-design security controls

Collaborate to integrate security controls

Provide guidance on cloud security

Provide technical expertise on secure cloud adoption

Provide technical expertise on secure software development

Provide technical expertise on access control

Support organizational change management

Conduct security assessments

Conduct threat modeling

Contribute to incident response

Develop automation for prevention

Develop automation for faster response

Develop documentation for security architectures

Maintain documentation for security architectures

Develop documentation for security controls

Maintain documentation for security controls

Develop documentation for automation scripts

Maintain documentation for automation scripts

Develop documentation for incident response playbooks

Maintain documentation for incident response playbooks

How You'll Work.

Team & Collaboration

Key technical peer; Collaborate with engineering; Partner with engineering; Collaborate with infrastructure teams; Collaborate with DevOps teams; Collaborate with product teams

Communication Scope

Code reviews

Process & Methodology

SDLC security

Full Job Description

## Description The Staff Cloud Security Engineer is a critical, hands-on technical role responsible for engineering, implementing, and automating robust security controls within our cloud environments (AWS primarily, with GCP considerations). This role is pivotal in maturing our cloud security posture, securing Included Health's product infrastructure, and directly contributing to the prevention of unauthorized PHI exfiltration. You will help design and develop advanced security solutions, often through code (Python, Go, etc.) and automation (Terraform), to address critical challenges in access control, development environment security, and infrastructure hardening. This role requires deep technical expertise in cloud security, strong software development skills for building security tools and automation, and a proactive approach to risk mitigation. You will be a key technical peer to our infrastructure software and engineering teams, driving a culture of security by design and helping to implement solutions that reduce HIPAA incidents. This is a remote role reporting to the Chief Information Security Officer. ## Responsibilities Design, develop, and implement a comprehensive authorization framework for cloud resources, addressing user roles, resource-specific restrictions, task-based access, and granular engineering access Lead the technical implementation of Just-In-Time (JIT) access control systems for production environments (systems, secrets, data) to minimize standing privileges for engineering and platform teams. Collaborate with engineering to integrate data classification (e.g., safe-harbor annotations) with access control mechanisms, ensuring that data sensitivity directly informs access decisions. Develop and maintain security automation scripts, tools, and services in Python or Go to streamline security operations, vulnerability management, compliance checks, and incident response. Write clean, maintainable, and testable code (primarily Python and Go; fa

Free ATS check

Applying for this Staff Software Engineer, Cloud Security role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 32 detected · ranked by frequency

Cloud security ×3

Software development ×3

Access control ×3

Authorization framework design ×3

Just-In-Time access ×3

Data classification integration ×3

Security automation scripting ×3

Infrastructure as Code ×3

Container hardening standards ×3

Data access control ×3

Automation ×2

Terraform ×2

Docker ×2

Kubernetes ×2

EKS ×2

Python

AWS

GCP

Ruby

SIEM

CloudWatch

GuardDuty

Risk mitigation

Infrastructure hardening

Supply chain risk

Container security

Secure software development

Incident response

AWS CloudTrail

AWS CloudWatch

AWS GuardDuty

BEHAVIOURAL

Proactive approach

Role Details

Experience 8–15 yrs

Level Staff

Work Mode Remote

Salary Band 200k+

AI-Extracted Insights

Domain Areas

cloud-securityhipaaphi-exfiltrationsupply-chain-riskscontainer-securitycloud-native-architecture

How to Apply on Lever

Lever uses a streamlined one-page form — apply in under 5 minutes.
LinkedIn import works well; review parsed data before submitting.
The cover letter field is optional but visible to reviewers — use it to differentiate.
Referral codes from employees can significantly boost visibility of your application.

ANONYMOUS · UNFILTERED

What do employees actually say about Included Health?

Real rants from real employees. Read before you apply.

Read Company Rants →