Senior DevSecOps Engineer

Who We Are

QGenda is redefining healthcare workforce management everywhere care is delivered. We're on a mission to empower the healthcare industry to better onboarding, deploy, and manage their workforce. Over 4,500 healthcare organizations have trusted us to help them make strategic workforce decisions through our unified software platform. With more than 600 employees across the US, we are united in our vision and culture to make a difference for our customers, while enjoying the day-to-day. 

At QGenda, we value our employees and their contributions toward the success of the business. We strive to create a dynamic work environment that fosters growth, innovation, and collaboration, where employees can be proud of the work they do and the impact it has on the healthcare industry. 

QGenda is headquartered in Atlanta. 

To learn more about QGenda, visit us at qgenda.com or follow us on Instagram or LinkedIn. 

About Your Role 

As a Senior DevSecOps Engineer at QGenda, you will help further secure our customer data, applications, and infrastructure from growing cybersecurity threats. You will leverage your security expertise and work closely with Product, Development, and Infrastructure Teams to assess and remediate risk, as well as design and support security-related processes within our Software Development Life Cycle. Here at QGenda, you will play an integral role in our end-to-end product delivery to our customers with security at top of mind.  

How You’ll Make an Impact 

• Collaborate with Development, Operations, and Security Teams to integrate security into the CI/CD pipeline, ensuring that security is embedded at every stage of the software development lifecycle. This includes leading projects to implement tools such as Static Application Security Test (SAST), Dynamic Application Security Test (DAST) and Source Code Analysis (SCA)
• Identify security design gaps in existing and new architectures and recommend changes and/or enhancements. Collaborate with developers to address security issues.
• Design, implement, and maintain security automation tools and processes to identify, manage, and remediate vulnerabilities in the development and production environments
• Implement AWS security services such as GuardDuty, SecurityHub, Inspector, and Config.
• Apply DevOps expertise to develop and enforce security policies, standards, and best practices for cloud-based infrastructure
• Perform regular security assessments, including code reviews, vulnerability scans, infrastructure reviews, and coordinate penetration tests, to ensure the security of applications and infrastructure.
• Design, develop, and implement solutions to address infrastructure and security requirements
• Communicate security metrics and activities across various levels of the organization, including executive leadership team
• Lead efforts on performing security audits, ensuring we adhere to the standards required for SOC and FedRAMP 

Who You Are 

• Experience implementing security tooling in CI/CD platforms, including SCA and SAST tools
• Ability to participate in software architecture discussions to ensure security best practices are implemented
• Deep knowledge and experience with AWS Security tools such as GuardDuty, SecurityHub, Inspector, and Config.
• Proven experience developing, operating, and maintaining security systems
• Knowledge of DevOps Automation tools and experience with Terraform
• Extensive knowledge of operating system, network, and database security
• Experience with security tools such as Wiz and Mend/Snyk, or equivalent
• Proficiency in networking technologies, network security, and network monitoring solutions
• Knowledge of security systems including anti-virus applications, content filtering, firewalls, authentication systems and intrusion detection and notification systems
• Knowledge of Windows and Linux patch management and related information security functions 
• In-depth knowledge of security protocols and principles
• Should possess knowledge of the implementation of risk assessment techniques and the latest security best practices.

Experience You Bring 

• Bachelor's degree from an accredited college or university or equivalent industry experience
• 5-7+ years of experience
• AWS Certifications a plus (i.e. DevOps Engineer, Security Specialty)

At QGenda, we value and respect our employees and their contributions, and we recognize their individual efforts to promote career development, financial security and well-being. The salary range for this role is $135,000. USD to $160,000. USD, and actual pay is based on skills, experience, education and other relevant factors for a potential new employee. This job is eligible for bonus/incentive pay.

Applicants for this position must be authorized to work for any employer in the U.S, including located in the US. We are unable to sponsor or take over sponsorship of an employment visa at this time. 

What’s In It For You

We offer a comprehensive total rewards package to support our full-time employees and their family’s day-to-day needs, well-being and major life events, which includes: 

• Fully company-paid options for medical (both in-person and virtual), dental and vision insurance
• Flexible paid time off (PTO) policy to enjoy periods of uninterrupted rest and relaxation for a healthy work/life balance
• Paid parental leave for birth, adoption or permanent placement 401(k) with company match 
• Options to work in a hybrid-working model or remotely from home, depending on the position
• Annual Costco membership, cell phone stipend, commuter benefits, in-office perks and more 

QGenda delivers technology solutions to improve how healthcare is delivered and increase access - for everyone. We can only succeed by bringing together diverse minds, thoughts, ideas and team members to create better solutions for our customers and make us a better company as a whole. We are committed to creating a culture of embracing diversity, inclusion and equity for all. 

QGenda is an Equal Employment Opportunity employer and makes all employment decisions without regard to race, color, religion, creed, gender, sex (including pregnancy), sexual orientation, gender identity or expression, natural origin, ancestry, age, marital status, disability or genetic information, military status, status as a disabled or protected veteran or any other protected status under applicable law. 

If you require accommodations or assistance to complete the online application process, please contact recruiting@qgenda.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. We will respond to your email promptly.