[Hiring] Network Security & Application Engineer @Humata Health, Inc

Role Description

We are seeking a Network Security & Application Engineer to assist in design, implement, and maintain secure, scalable infrastructure across our cloud environments. This role is critical in safeguarding our systems and data both from the networking as well as application security side. You will work within our Azure Cloud , and Google Cloud Platform (GCP) , and other applicable infrastructure, ensuring adherence to strict regulatory frameworks including HIPAA, SOC 2, and HITRUST .

Key Responsibilities

• Network & Cloud Security
  • Manage secure network architectures across Azure and GCP
  • Implement and maintain zero-trust security models, including identity-aware proxies and segmentation
  • Configure and monitor Cloudflare services (WAF, DDoS protection, Zero Trust, CDN)
  • Manage firewall rules, VPNs, private endpoints, and secure inter-service communication
  • Continuously assess and remediate vulnerabilities across infrastructure
• Identity & Access Management
  • Administer and optimize Azure Active Directory (Entra ID) for identity governance
  • Implement SSO, MFA, Conditional Access Policies, and RBAC across cloud platforms
  • Integrate identity systems with internal and third-party applications
  • Enforce least-privilege access and access lifecycle management
• Application Security
  • Partner with engineering teams to embed secure development practices (DevSecOps)
  • Conduct threat modeling, code reviews, and security assessments
  • Implement API security, secrets management, and secure authentication flows (OAuth, OIDC)
  • Support secure deployment pipelines (CI/CD) with automated security controls
• Compliance & Risk Management
  • Ensure systems meet HIPAA, SOC 2, and HITRUST requirements
  • Support audits by maintaining documentation, controls, and evidence
  • Implement logging, monitoring, and alerting aligned with compliance standards
  • Drive continuous improvement of security posture and control frameworks
• Monitoring & Incident Response
  • Deploy and manage security monitoring tools (SIEM, IDS/IPS, cloud-native tools)
  • Investigate and respond to security incidents and anomalies
  • Conduct root cause analysis and implement preventative measures

Qualifications

• 4+ years of experience in network security, cloud security, or application security
• Hands-on experience with:
  • Azure Active Directory (Entra ID)
  • Google Cloud Platform (GCP)
  • Cloudflare (WAF, Zero Trust, DNS, DDoS protection)
• Strong understanding of:
  • Network protocols, firewalls, VPNs, and secure architectures
  • Identity & access management (SSO, MFA, RBAC)
  • Secure application design and API security
• Experience working in regulated environments (HIPAA, SOC 2, HITRUST)
• Familiarity with security frameworks (NIST, CIS, ISO 27001)

Preferred

• Experience with Infrastructure as Code
• Knowledge of container security
• Familiarity with SIEM tools

Key Skills

• Cloud Security Architecture (Azure & GCP)
• Identity & Access Management (AAD / Entra ID)
• Web & Network Security (Cloudflare, WAF, Zero Trust)
• DevSecOps & Secure SDLC
• Compliance & Risk Management (HIPAA, SOC 2, HITRUST)
• Incident Response & Threat Detection

What You’ll Bring

• A security-first mindset with strong problem-solving skills
• Ability to balance security, usability, and scalability
• Strong communication skills to work cross-functionally with engineering and compliance teams
• A proactive approach to identifying and mitigating risk

Benefits

• Impactful Work: Contribute to innovative solutions that improve healthcare efficiency and patient outcomes
• Remote Flexibility: Enjoy working remotely while being part of a collaborative team, with access to our new office in Winter Park, FL
• Competitive Compensation: Enjoy competitive base compensation, equity through our Employee Stock Option Plan, and bonus-eligible roles
• Comprehensive Benefits: Full benefits package including unlimited PTO and 401k program with employer match
• Growth Opportunities: Advance your career in a fast-paced, high-impact environment with ample professional development
• Inclusive Culture: Join a diverse workplace where your ideas and contributions are valued