Sr. Cloud, Security Engineer

Insulet started in 2000 with an idea and a mission to enable our customers to enjoy simplicity, freedom and healthier lives through the use of our Omnipod® product platform. In the last two decades we have improved the lives of hundreds of thousands of patients by using innovative technology that is wearable, waterproof, and lifestyle accommodating.

We are looking for highly motivated, performance driven individuals to be a part of our expanding team. We do this by hiring amazing people guided by shared values who exceed customer expectations. Our continued success depends on it!

Position overview:  

The Sr Cloud Security Engineer is a key member of the technical team responsible for the security of the infrastructure and applications that support Insulet products.  You will help ensure product focused infrastructure and applications are hardened against attacks and provide security services to protect highly sensitive data such as user and customer information. You will champion a culture of security by design with early collaboration with our product teams. You will work with software engineers to proactively identify and fix security flaws and vulnerabilities. You will also work to secure cloud infrastructure and enable configuration management and effective security monitoring. You use your industry experience to own and drive the resolution of complex security incidents and technical security issues. Beyond the methodologies and tools, it is important for you to drive a culture of security.  Your ultimate goal is to ensure Insulet’s cloud services meet the highest standards of security and regulatory compliance.  

Responsibilities:

• Drive security by design principles, ensuring security is integrated into the software development lifecycle.
• Interact closely with software and security architects, privacy officers, engineering, and product management teams to ensure adequate security capabilities and controls are in place within the technology stack to mitigate security risks and meet the highest security and compliance requirements.
• Continuously research, design, advocate and recommend new security technologies, architectures, and products that will ensure meeting all the compliance requirements.
• Function as the go-to individual with in-depth understanding of all security and compliance related nuances within the Insulet cloud. Develop the ability to effectively navigate a highly complex environment to independently retrieve technical evidence for gaining assurance over effectiveness of controls.
• Conduct security architecture/application reviews to assess new risks, manage penetration testing researcher relationships, keep abreast of latest cyber security technical risks, and foster a culture of continuous service improvement and service excellence.
• Automate the enforcement of cloud security and compliance policies.
• Develop security test cases to ensure security requirements, security standards, and regulatory compliance test coverage across all cloud-based applications.
• Support the publication of documentation related to the management of cyber security in medical devices submissions.

Job Qualifications

• 3+ years of cloud security experience is preferred
• 5+ years of experience in implementing and managing cloud services. Preferably in AWS or Azure is preferred
• 5+ years of experience with Web, API, and security testing tools is preferred
• Experience building security into software applications used in cloud platforms is preferred.
• Experience validating that a cloud environment meets all security and compliance controls is preferred
• Experience with microservice architecture, SDLC, RESTful API, OAS / Swagger is preferred.

Knowledge / Education

• BS degree or higher in Computer Engineering, MIS or in a STEM major (Science, Technology, Engineering or Math) is preferred
• 3+ years of relevant experience in architecting security solutions and in-depth knowledge of security protocols/tools, and automation in a regulated industry such as healthcare, banking or financial services is a plus

Skills/Competencies

• Strong analytical and problem-solving skills.
• Excellent communication skills to effectively annotate findings in both written and oral form.
• Ability to communicate clearly and present security with technical staff as well as non-technical colleagues.
• Ability to prioritize multiple tasks and develop innovative solutions to meet project expectations without compromising good design.
  
  ​NOTE: This position is eligible for hybrid working arrangements and requires on-site work from an Insulet office at least three (3) days per week. #LI-Hybrid