Security Engineer (Cloud)

Sword Health is on a mission to free two billion people from pain. 
With 67% of members achieving a pain-free life and a 70% reduction in surgery intent, at Sword, we are using AI Care to change lives, and save millions for our 25,000+ enterprise clients across three continents. Today, we hold the majority of industry patents, win 70% of competitive evaluations, and have raised more than $300 million from top venture firms like Founders Fund, Sapphire Ventures, General Catalyst, and Khosla Ventures.
Recognized as a Forbes Best Startup Employer in 2024, this award highlights our focus on being a destination for the best and brightest  talent. Not only have we experienced unprecedented growth since our market debut in 2020,  but we’ve also created a remarkable mission and value-driven environment that is loved by our growing team. With a recent valuation of $3 billion, we are in a phase of hyper growth and expansion, and we’re looking for individuals with passion, commitment, and energy to help us scale our global impact. 
Joining Sword means committing to a set of core values, chief amongst them to “do it for the patients” every day, and to always “deliver more than expected” on behalf of our members and clients.
This is an opportunity for you to make a significant difference on a massive scale as you work alongside 900+ (and growing!) talented colleagues, spanning three continents. Your charge? To help us build a pain-free world, powered by AI, enhanced by people — accessible to all.

Introduction:
As a Security Engineer at Sword, you will be at the forefront of safeguarding our cloud infrastructure, and applications. Your expertise will ensure robust security measures, incident response, and continuous improvement.

What you'll be doing:

• Design, implement, and maintain secure cloud-based infrastructure and applications, and secure configurations across GCP and AWS to ensure Sword remains secure and HIPAA- and GDPR-Compliant.
• Ensure incident response capability through the evaluation of our logging and traceability resources, providing guidance on optimal resource utilization and availability.
• Monitor cloud environments for security threats, vulnerabilities and misconfigs, and respond promptly to security breaches, ensuring effective incident response protocols.
• Perform root cause analyses (RCA) and incident reviews
• Advise on compensatory and mitigatory controls strategically, serving as a key element in incident response management.
• Collaborate with cross-functional teams to design, develop, and implement infrastructure automation, shell scripts, and other programs that enhance security.
• Identify and ensure the availability of crucial data sources and logs used by the security team.
• Management of vulnerabilities and patching policies.
• Develop, evangelize, and monitor the adoption of sound cloud security practices and standards, acting proactively to hardening and fine tuning initiatives.
• Perform root cause analyses (RCA) and incident reviews.
• Develop new, and review/update existing security-related configurations of Sword Health’s infrastructure.
• Identify new, and ensure availability of existing Sword Health data sources and logs that are being used by various Sword Health Security teams.
• Ownership and management of preventative security measures and services related to Sword Health, i.e. GCP’s Security Command Center, Wiz, etc.

What you need to have:

• Bachelor's degree in Computer Science, Information Security, or equivalent work experience in a related field.
• Minimum of 5 years of experience in cloud security, with hands-on experience in GCP and AWS.
• Strong understanding of cloud security concepts, including IAM, network security, encryption, and secure cloud configurations.
• Proficiency in scripting languages (e.g., Python, Bash) for automation and infrastructure management.
• Experience with cloud security tools such as Google Security Command Center, Wiz, AWS Security Hub, AWS GuardDuty, and SIEM platforms.
• Knowledge of common security frameworks and standards, such as NIST, CIS, and COBIT.
• Excellent problem-solving skills and the ability to think critically and strategically.

What we would love to see:

• Experience with secure software development practices.
• Knowledge of container orchestration platforms (e.g., Kubernetes).
• Familiarity with threat modeling and risk assessment methodologies.
• Experience in tailoring and implementing compensatory/mitigatory controls in cloud environments.
• Strong communication skills, with the ability to convey complex security concepts to both technical and non-technical stakeholders.
• Experience leading security-related projects and working in cross-functional teams.
• Demonstrated ability to collaborate effectively with colleagues and build strong working relationships.
• Certifications such as AWS Certified Security - Specialty, Google Cloud Professional Cloud Security Engineer, or Certified Information Systems Security Professional (CISSP) are highly desirable.

Portugal - Sword Benefits & Perks:
• Health, dental and vision insurance• Meal allowance• Equity shares• Remote work allowance• Flexible working hours• Work from home• Unlimited vacation• Snacks and beverages• English class• Unlimited access to our Learning Platform

Note: Please note that this position does not offer relocation assistance. Candidates must possess a valid EU visa and be based in Portugal.

Sword Health, which includes SWORD Health, Inc. and Sword Health Professionals (consisting of Sword Health Care Providers, P.A., SWORD Health Care Providers of NJ, P.C., SWORD Health Care Physical Therapy Providers of CA, P.C.*) complies with applicable Federal and State civil rights laws and does not discriminate on the basis of Age, Ancestry, Color, Citizenship, Gender, Gender expression, Gender identity, Gender information, Marital status, Medical condition, National origin, Physical or mental disability, Pregnancy, Race, Religion, Caste, Sexual orientation, and Veteran status.