\nRo is a direct-to-patient healthcare company with a mission of helping patients achieve their health goals by delivering the easiest, most effective care possible. Ro is the only company to offer nationwide telehealth, labs, and pharmacy services. This is enabled by Ro's vertically integrated platform that helps patients achieve their goals through a convenient, end-to-end healthcare experience spanning from diagnosis, to delivery of medication, to ongoing care. Since 2017, Ro has helped millions of patients in nearly every single county in the United States, including 98% of primary care deserts.\n\n\nThe healthcare system today is not designed to help patients achieve their goals. It’s designed around institutions such as hospitals and insurance companies. A patient centric healthcare system is one that is designed around the goals a patient wants to achieve. We’re building healthcare that puts patients in control, provides reactive and proactive care, has transparent pricing and process, is extremely effective and ridiculously convenient, and evolves over time based on patients’ goals.\n\n\nRo has been recognized as a Fortune Best Workplace in New York and Health Care for four consecutive years (2021-2024). In 2023, Ro was also named Best Workplace for Parents for the third year in a row. In 2022, Ro was listed as a CNBC Disruptor 50. \n\n\nThe Cloud Security function at Ro is dedicated to protecting the security and privacy of our patients by continually raising the security bar across our cloud environments. We achieve this by collaborating closely with engineers and leaders across Ro’s platform, data, and product teams, devising, implementing, and communicating a well-rounded approach to security. In this role, you’ll have direct influence on strategic initiatives, providing the engineering expertise necessary to make confident, scalable, secure, and privacy-respecting decisions—all while employing a hands-on builder mindset to “build it in.”\n\n\nThis role is a senior-level individual contributor position, where you’ll serve as a hands-on technical expert, building internal products and infrastructure to protect Ro’s cloud security posture and meet compliance objectives. As a key member of the Product Security team, which comprises expertise in product security, cloud security, architecture, and privacy engineering, you will design and automate scalable architectures and tools. You will be the technical advocate for cloud security decisions, driving discussions and designs, and working closely with Ro’s infrastructure and engineering teams to make secure infrastructure solutions. You are an expert communicator and a kind, team player.\n\n\nYou will be working remotely, with quarterly travel to our NYC headquarters.\n\n\n\n\n\nWhat You'll Do:\n* Maintain and Operate Secure Cloud Infrastructure: Lead the ongoing maintenance and operation of secure cloud infrastructures, focusing on AWS and cloud-native technologies. Ensure environments are resilient, compliant, and secure through multi-layered protection strategies.\n* Cloud Native Application Protection: Secure applications built for cloud environments by automating security assessments, monitoring runtime environments, and integrating security practices into the development lifecycle. Focus on containers, serverless architectures, and virtual machines, adapting to emerging threats.\n* Cloud Workload and Data Protection: Implement robust security controls for cloud workloads and data, including containers, virtual machines, and serverless architectures. Protect against threats while maintaining performance and scalability, using encryption, data loss prevention, and access controls.\n* Kubernetes and Cloud Security Hardening: Lead security hardening across all cloud security layers, with a focus on Kubernetes clusters and cloud-native environments. Secure container runtimes, implement stringent network policies, manage secrets securely, and ensure resilience against attacks at scale.\n* Collaborate on Secure Platform Solutions: Partner with infrastructure, product security, security engineering, and engineering teams to design and implement secure platform solutions. Provide expertise in developing Infrastructure as Code (IaC), CI/CD pipelines, and deployment processes, ensuring security is integrated throughout the development lifecycle.\n* Automation of Security Operations: Develop and deploy automation solutions to enhance security operations, reduce manual efforts, and ensure consistent security practices. Create reusable templates and modules for secure infrastructure to enable rapid, secure deployments.\n* Security Incident Response: Contribute to incident response efforts, including detection, analysis, containment, and recovery. Work with internal and external stakeholders to minimize the impact of incidents and prevent future occurrences.\n* Compliance, Risk Management, and Data Governance: Ensure cloud infrastructures comply with standards such as SOC 2, HIPAA, and HITRUST. Implement automated compliance checks, data governance practices, and reporting to maintain alignment with these frameworks and protect data integrity.\n* Technical Leadership and Mentorship: Act as a technical leader and mentor, promoting a security-first mindset. Guide best practices in cloud security and data protection, and integrate secure practices into the organization’s culture and processes.\n\n\n\nWhat You'll Bring:\n* 7+ years of experience in cloud security engineering and architecture, with advanced expertise in AWS, Azure, or Google Cloud Platform\n* Deep understanding of cloud security principles and best practices, with proven experience in implementing and managing cloud-native security tools at scale\n* Extensive knowledge of fundamental security technologies, including firewalls, IDS/IPS, endpoint protection, IAM, encryption, and DLP\n* Expertise with key tooling: Cloud Security Posture Management (CSPM), Cloud Native Application Protection Platforms (CNAPPs), Cloud Workload Protection Platforms (CWPPs) and Data Security Posture Management (DSPM)\n* Expertise in securing and hardening cloud workloads, including containers, serverless architectures, and virtual machines, with a track record of enhancing security posture\n* Advanced experience with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, and Pulumi, and expertise in integrating security into CI/CD pipelines\n* High proficiency in programming or scripting languages for developing complex security automation solutions\n* Comprehensive understanding of cloud and network security, with experience in securing cloud architecture across multiple environments\n* Demonstrated ability to perform in-depth security reviews of SaaS product architecture and its supporting infrastructure, with a focus on driving improvements\n* Familiarity with and ability to implement compliance standards HIPAA, HITRUST, CIS, NIST 800-53 and others with a low-touch approach\n* Strong leadership and communication skills, with a proven track record of collaborating with cross-functional teams, including product teams and developers, to drive a security-first culture, effect change across the organization and further the cloud security roadmap\n\n\n\nWe've Got You Covered: \n* Full medical, dental, and vision insurance + OneMedical membership\n* Healthcare and Dependent Care FSA\n* Commuter benefits\n* 401(k)\n* Flexible PTO\n* Fitness reimbursement\n* Paid maternity/parental leave \n* A never-ending supply of office snacks + coffee + tea\n* The cutest office dog you’ve ever seen\n\n\n\n\n\n\nThe target base salary for this position ranges from $200,000 to $245,000, in addition to a competitive equity and benefits package (as applicable). When determining compensation, we analyze and carefully consider several factors, including location, job-related knowledge, skills and experience. These considerations may cause your compensation to vary.\n\n\nRo recognizes the power of in-person collaboration, while supporting the flexibility to work anywhere in the United States. For our Ro’ers in the tri-state (NY) area, you will join us at HQ on Tuesdays and Thursdays. For those outside of the tri-state area, you will be able to join in-person collaborations throughout the year (i.e., during team on-sites).\n\n\nAt Ro, we believe that our diverse perspectives are our biggest strengths — and that embracing them will create real change in healthcare. As an equal opportunity employer, we provide equal opportunity in all aspects of employment, including recruiting, hiring, compensation, training and promotion, termination, and any other terms and conditions of employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, familial status, age, disability and/or any other legally protected classification protected by federal, state, or local law.\n\n\nSee our California Privacy Policy here. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, SaaS, Travel, Cloud and Engineer jobs that are similar:\n\n $40,000 — $80,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nNew York, NY or Remote

\nWho We Are: \n\n\nKarmaCheck is a dynamic technology startup headquartered in San Francisco and is founded by Eric Ly, a trailblazer in the internet industry and former Co-founder and CTO of LinkedIn. Our mission is clear: to revolutionize digital identity verification. We're disrupting the antiquated healthcare credentialing sector within the Background Check industry using our cutting-edge proprietary technology powered by automation, machine learning, and data. Our cost-effective solutions are helping shape the future of digital identity and contributing to the authenticity of the evolving digital landscape.\n\n\n\n\nWe are looking for Senior Software Engineers to join our rapidly expanding team of highly skilled, dedicated, and efficient developers.  We are looking for fullstack and backend-focused engineers. You will work in a fast-paced environment that is moving together with a common goal to provide the best solutions for our customers in markets desperate for innovation.\n\n\nDay to day activity as a senior member of the team will be to design and implement solutions that enable the KarmaCheck platform to scale and perform while adding functionality and maintaining our high degree of security. Your knowledge and experience will be leveraged by acting as a mentor and guide to other engineers on the team and your work ethic will shine as you lead by example to continuously improve the product, technology, processes, and culture of the engineering organization. \n\n\nThis is a 100% telecommute position with the rare exception of (paid) travel for company/team meetings. \n\n\n\nWhat You'll Do:\n* Contribute as part of a cross functional Agile team to build scalable APIs and web application features using Javascript/Typescript (NodeJS) while meeting coding and security best practices.\n* Design and build software with an eye towards modular, extensible, and scalable design.\n* Actively participate in technical product development sessions with other members of the Product and Engineering organization.\n* Enhance existing development processes with best practices for continuous integration, testing, and deployment.\n* Act as a technical solution advisor to engineering and product management \n* Participate in production deployments.\n* Troubleshoot production runtime issues that may arise throughout the entire system.\n* Measure the effectiveness of new features, find and address performance issues, and drive continuous improvement.\n* Participate in electronic communication channels on a constant basis as part of your daily work.\n\n\n\nWhat You'll Need: \n* 7+ years Full Stack design and development\n* 5+ years Javascript experience with a focus on Node JS\n* 3+ years developing software on AWS (API Gateway, Lambda, SQS, SNS, EventBridge, Cloudwatch, RDS, etc)\n* Experience with async data integration patterns and approaches (Webhooks, Pub/Sub, Batch, Asynchronous Messaging, etc.)\n* 3+ years experience with modern front-end frameworks (Vue, React, Angular, etc)\n* 2+ years experience with SQL (preferably MySQL)\n* Extensive experience in Server side communications and integrations with 3rd party APIs\n* Ability to adjust to changing priorities as is common in a startup environmentMust have a passion for building GREAT software\n\n\n\nBonus Points if You Have:\n* Experience working in a fast paced startup\n* Knowledge of async data integration patterns and approaches (Webhooks, Pub/Sub, Batch, Asynchronous Messaging, etc.)\n* Experience with Javascript API frameworks like NestJS\n* You have experience writing infrastructure as code using Serverless Framework \n* You have knowledge of Java/SpringYou have knowledge of SQL / noSQL design fundamentals\n* Demonstrated successful experience working in a remote engineering capacity\n\n\n\nBenefits & Perks: \n* Become a key team member at a startup set to disrupt the background check industry and innovate digital identity.\n* 100% remote work environment with only limited required travel\n* Competitive benefits package including medical, dental, 401k, and EAP.\n* Take the time to Check Yourself - we have an unlimited time off policy.\n* The expected base compensation for this role is between $140,000 - $180,000.00  for work performed in the United States. Starting pay for the successful applicant will depend on a variety of job-related factors, which may include seniority level, experience level, transferable skills, education, location, business needs, training, and market demands. This range may be modified in the future.\n\n\n\n\n$140,000 - $180,000 a year\n\n\nInterview Process: \n1. Recruiter Screen (30 minutes via Zoom, video OFF)\n2. Hiring Manager Screen (60 minutes via Zoom, video ON) \n3. Team Interview (60 minutes via Zoom, video ON); 25 minutes on technical aptitude, 25 minutes on culture & core values alignments, 10 minutes intros & Q&A\n4. Final Project Presentation (60 minutes via Zoom, video ON); You’ll meet with a panel of 3-4 people and present on a technical project you’ve completed and are proud of. \n\n\n\n\n\n\nDisclaimer:\n\n\nKarmaCheck is an equal opportunity employer committed to fostering an inclusive and diverse environment for our employees. We are committed to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status, or any other reason protected by law.\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Recruiter, Travel, JavaScript, Video, Serverless, NoSQL, Node, API, Senior and Engineer jobs that are similar:\n\n $60,000 — $90,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nRemote