Security Engineer at Stedi

**Who this is for** Stedi seeks an experienced Security Engineer to join their Platform Team. You will be instrumental in managing AWS infrastructure, developin

Work type: remote

Location: Remote in the USA | Remote in Canada

Type: Full-time

Summary

**Who this is for** Stedi seeks an experienced Security Engineer to join their Platform Team. You will be instrumental in managing AWS infrastructure, developing security practices, and ensuring compliance with industry standards like SOC and HIPAA. **Key highlights** This role is central to Stedi's infrastructure, focusing on building secure and compliant applications in a serverless AWS environment. You'll work with Infrastructure as Code (CDK) and contribute to improving the company's overall security posture. **You might be a good fit if you...** - Have 4+ years of experience as a Security Engineer or in security-adjacent roles. - Are familiar with compliance frameworks such as SOC, HIPAA, and/or HITRUST. - Possess 4+ years of experience with AWS services, including compliance and governance tools. - Can collaborate effectively with engineering teams to enhance application security.

Job Description

# We're building a new healthcare clearinghouse

In the healthcare sector, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) requires that all insurance payers exchange transactions such as claims, eligibility checks, prior authorizations, and remittances using a standardized EDI format called X12 HIPAA. A small group of legacy clearinghouses process the majority of these transactions, offering consolidated connectivity to carriers and providers.

Stedi is the world's only programmable healthcare clearinghouse. By offering modern API interfaces alongside traditional real-time and batch EDI processes, we enable both healthcare technology businesses and established players to exchange mission-critical transactions. Our clearinghouse product and customer-first approach have set us apart. Stedi was [ranked by Ramp](https://ramp.com/velocity/top-saas-vendors-on-ramp-march-2026) as one of the fastest-growing SaaS vendors.

Stedi has lightning in a bottle: engineers and designers shipping products week in and week out; a lean business team supporting the company’s infrastructure; passion for automation and eliminating toil; $142 million in funding from top investors like Stripe, Addition, USV, Bloomberg Beta, First Round Capital, and more.

## What we’re looking for

We are seeking an experienced Security Engineer to join our Platform Team. This team is at the core of our infrastructure, responsible for managing multiple AWS Organizations and providing the foundational tools and services that enable our engineering teams to build reliable, secure, and compliant applications.

The Platform Team’s responsibilities span a wide range of areas, including:

• The AWS infrastructure that our engineering teams rely on.

• Management of our GitHub organization and IT operations.

• Supporting compliance efforts to ensure alignment with industry standards (SOC, HIPAA, HITRUST).

## How we build

• We use AWS exclusively for our backend infrastructure that processes customer data. We use tools like GitHub, Stripe, Vanta, and PagerDuty, but all of our application work happens on AWS.

• We use serverless technologies almost exclusively: Lambda, API Gateway, SQS, SNS, DynamoDB, Aurora Serverless, and more. We don’t run a single server on prem or in the cloud.

• We use the CDK (TypeScript) to define infrastructure-as-code.

• We have a strong preference for using AWS products over 3rd party solutions. This simplifies vendor management and compliance, and ensures we can benefit from AWS's integration capabilities and innovations now and in the future.

• Develop playbooks and address security-related tasks in our AWS serverless environments.

• Drive improvements in our broader security posture, including application security, endpoint security, access management / just-in-time access, email and web gateways, browser security, and data loss prevention.

• Collaborate with product engineering teams to raise the bar for security, supporting CI/CD pipelines, dependency management, and secure application design reviews.

• Help secure and improve our AWS organization using infrastructure as code (CDK), enforcing security controls, and ensuring strong tenant isolation.

• Continuously assess vulnerabilities and perform regular risk assessments.

• 4+ years of experience in engineering, working as a security engineer or in security-adjacent roles

• Familiarity with compliance frameworks such as SOC, HIPAA, and/or HITRUST

• 4+ years working with AWS services, including compliance and governance services like AWS Organizations, AWS CloudTrail, AWS Config, Security Hub, and GuardDuty.

• Proficiency in TypeScript.

• Ability to prioritize your work based on the needs of the business and the customers

• High bandwidth; thoughtful attention to many areas simultaneously

• Ability to context switch throughout the course of the day or week as priorities shift

• Philosophical alignment with the[ Stedi Standards](https://www.stedi.com/careers) and the[ Unwritten laws of engineering](https://www.stedi.com/blog/the-unwritten-laws-of-engineering-at-stedi).

• All official communication about roles at Stedi will only come from an @[stedi.com](http://stedi.com)email address.

• If you’re unsure whether a message is legitimate or have any concerns, feel free to contact us directly at [careers@stedi.com](mailto:careers@stedi.com).

At Stedi, we're looking for people who are deeply curious and aligned to our ways of working. You're encouraged to apply even if your experience doesn't perfectly match the job description.

View this job on nocollar jobs