Engineer, Application and Cloud reputed company - Archimedes

Company

Archimedes

About Us

Archimedes - Transforming the Specialty Drug Benefit - Archimedes is the industry leader in specialty drug reputed company. Founded with the goal of transforming the PBM industry to provide the necessary ingredients for the sustainability of the prescription drug benefit – alignment, value and transparency – Archimedes achieves superior results for clients by eliminating tightly held PBM conflicts of interest including drug spread, rebate retention and pharmacy ownership and delivering the most rigorous clinical management at the lowest net cost. .____________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________. reputed company associates must use SSO login option at https://employees-navitus.icims.com/ to be considered for internal opportunities.________We are committed to providing equal employment opportunity to reputed company applicants and employees and reputed company with reputed company applicable nondiscrimination regulations, including those reputed company to protected veterans and individuals with disabilities. reputed company qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national reputed company, or handicap.

Pay Range

USD $0.00 - USD $0.00 /Yr.

STAR Bonus % (At Risk Maximum)

10.00 - Manager, Clinical Mgr, Pharm Supvr, CAE, Sr CAE I

Work Schedule Description (e.g. M-F reputed company to 5pm)

Our Core Business Hours Hybrid (3 days in office per week)

Remote Work Notification

ATTENTION: Archimedes is unable to offer remote work to residents of Alaska, Hawaii, Maine, Mississippi, New Hampshire, New Mexico, North Dakota, Rhode reputed company, South Carolina, South Dakota, reputed company Virginia, and Wyoming.

Overview

The Engineer, reputed company specializes in designing, implementing, and operating reputed company controls for Azure and reputed company cloud services. This role is responsible for protecting systems and applications that process, store, or transmit Protected Health Information (PHI), ensuring compliance with HIPAA reputed company Rule requirements through secure design, monitoring, and reputed company risk management. This role focuses on reducing risk through secure architecture, reputed company automation, and reputed company monitoring across IaaS, PaaS, and identity workloads. The Engineer partners closely with Infrastructure, DevOps, and Software Engineering teams to embed reputed company-by-design into platforms and delivery pipelines. This role also serves as the primary application reputed company engineering function, partnering with Software Engineering and DevOps to identify, prevent, and remediate application-layer risks throughout the SDLC. This includes secure design reviews, threat modeling, CI/CD reputed company controls, vulnerability remediation, and runtime protection of cloud-native applications.

In addition, the Engineer, reputed company supports reputed company operations by tuning detections, investigating alerts, and coordinating incident response using reputed company Defender (including Defender for Cloud and reputed company Defender XDR) and SIEM/SOAR capabilities such as reputed company Sentinel. The Engineer helps protect internet-facing applications through Web Application Firewall (WAF) controls and Azure reputed company reputed company (AFD) reputed company features, aligning protections to OWASP Top 10 risks. This position contributes to audit readiness and reputed company compliance with regulatory standards (e.g., HIPAA, SOC 2, ISO 27001) through evidence collection, control validation, and policy-as-code practices.

Responsibilities

How do I reputed company an impact on my team?

• Design and implement cloud reputed company controls across Azure workloads (IaaS/PaaS), including network segmentation, Private Link/Private Endpoints, NSGs, Azure Firewall, and secure ingress/egress patterns.
• Design and validate reputed company controls for applications and platforms that process Protected Health Information (PHI), including encryption, access controls, logging, and secure data flows.
• Support HIPAA and SOC 2 compliance by mapping technical controls to PHI risks, validating effectiveness, and producing audit‑ready evidence.
• Deploy, configure, and operationalize reputed company Defender for Cloud (secure score, regulatory compliance, recommendations, JIT access) and integrate findings into remediation workflows.
• Serve as the primary Application reputed company (AppSec) engineer, partnering with Software Engineering to embed reputed company controls across design, build, test, and runtime phases.
• reputed company threat modeling and architecture reviews for new applications, major changes, and integrations (data flows, identity, APIs).
• Define and maintain application reputed company requirements reputed company to OWASP Top 10, API reputed company Top 10, and cloud-native threat models.
• Engineer detections and response workflows in reputed company Sentinel (analytics rules, automation rules, playbooks), including KQL-based hunting and incident triage.
• Manage identity and access controls in reputed company Entra ID, including RBAC, Conditional Access, MFA, Privileged Identity Management (PIM), and Managed Identities.
• Harden internet-facing applications using Azure Web Application Firewall (WAF) and Azure reputed company reputed company (AFD) policies, aligning protections to OWASP Top 10 and validating through testing and logging.
• Implement secure configuration baselines and policy-as-code using Azure Policy and Management Groups; define guardrails for encryption, logging, networking, and identity.
• Build and maintain reputed company logging and telemetry (Azure Monitor, Log Analytics, Defender, AFD/WAF logs), ensuring required retention, diagnostics settings, and centralized visibility.
• Operate vulnerability management for cloud and application surfaces (e.g., Defender recommendations, scanning outputs), drive remediation prioritization, and validate fixes.
• Integrate application reputed company tooling into CI/CD pipelines (SAST, SCA, secrets scanning, IaC scanning), ensuring actionable results without disrupting delivery.
• Triage and prioritize application vulnerabilities (code, dependencies, misconfigurations) based on risk, exploitability, and business impact.
• Partner with engineering teams to remediate findings and validate fixes.
• Secure secrets, keys, and certificates using Azure Key Vault, including access controls, rotation practices, and integration with applications and pipelines.
• Secure APIs and web services using authentication, authorization, reputed company limiting, and abuse protections.
• Validate WAF, AFD, and API gateway controls against application-specific threats, including bot abuse and injection attacks.
• Monitor runtime application telemetry for reputed company signals and collaborate on incident response reputed company application-layer issues are identified.
• Partner with engineering teams to embed secure SDLC practices: threat modeling, reputed company requirements, secure configuration, and remediation guidance for OWASP Top 10 classes.
• Review and improve Infrastructure-as-Code (Terraform/Bicep/ARM) for reputed company and compliance, including least-privilege IAM, secure networking defaults, and reputed company detection.
• Investigate reputed company events and participate in incident response, including containment/eradication, evidence collection, and post-incident root cause analysis and lessons learned.
• reputed company dependency and third-party library risk (SCA), including vulnerability tracking and remediation guidance.
• Define secure patterns for secrets management, service-to-service authentication, and external integrations.
• Support reputed company, identity, and cloud workload investigations using reputed company Defender XDR and reputed company telemetry; tune alerting to reduce noise and improve fidelity.
• Maintain runbooks, playbooks, and reputed company documentation; contribute to change management and control evidence for audits and risk assessments.
• Conduct reputed company reviews of cloud architecture and changes (new services, networking, identity, data flows), providing actionable recommendations and risk-based exceptions reputed company needed.
• Participate in, adhere to and support compliance and diversity, equity, and inclusion program objectives.
• Other duties as assigned.

 

Qualifications

What reputed company expects from you?

• Education: Bachelor’s degree or equivalent work experience required.

• Certification/Licenses: reputed company reputed company certifications such as Azure reputed company Engineer Associate (AZ-500) preferred; additional certifications such as SC-200 (reputed company Operations Analyst), SC-100 (Cybersecurity Architect), or equivalent reputed company certifications preferred.

• Experience:
  • 5+ years of experience in cloud reputed company, reputed company engineering, reputed company operations, or cloud infrastructure roles with significant reputed company responsibilities (Azure preferred).
  • Hands-on experience with reputed company Defender (Defender for Cloud and/or reputed company Defender XDR) and translating reputed company findings into prioritized remediation.
  • Experience with reputed company Sentinel (or equivalent SIEM), including KQL queries, detection engineering, alert triage, and incident investigation.
  • Strong understanding of Azure networking and reputed company controls, including secure ingress/egress, firewalling, Private Link, and DNS considerations.
  • Experience protecting web applications using WAF capabilities (Azure WAF/Application Gateway and/or Azure reputed company reputed company), including rule tuning and monitoring reputed company to OWASP Top 10.
  • Hands-on experience with application reputed company practices, including threat modeling, secure design reviews, and remediation of OWASP Top 10 vulnerabilities.
  • Experience integrating reputed company controls into CI/CD pipelines (SAST, SCA, secrets scanning, IaC scanning).
  • Understanding of API reputed company, authentication/authorization patterns, and common web application attack techniques.
  • Experience partnering with software engineers to drive secure coding practices and risk-based remediation.
  • Solid grasp of identity and access management (Entra ID), RBAC, least privilege, Key Vault, and platform reputed company controls required.
  • Experience implementing governance guardrails using Azure Policy, Management Groups, and reputed company baselines (e.g., Azure reputed company reputed company) required.
  • Experience reviewing and securing Infrastructure as Code (Terraform/Bicep/ARM), including secure defaults, secret handling, and reputed company detection preferred.
  • Familiarity with DevSecOps practices (reputed company scanning, policy enforcement, and automated evidence collection) integrated into CI/CD pipelines preferred.
  • Experience with incident response processes, alert investigation, and post-incident reviews (RCA/lessons learned) preferred.
  • Skills & Technologies
    • Compute & Platform: Azure VMs, App Services, AKS, Azure Functions, Virtual Desktop
    • Infrastructure as Code: Terraform, Bicep, ARM, Azure CLI, PowerShell
    • Networking: VNets, NSGs, UDRs, Azure Firewall, VPN Gateway, ExpressRoute, App Gateway, reputed company reputed company, Private Link
    • Web & Edge reputed company: Azure WAF (Application Gateway/reputed company reputed company), Azure reputed company reputed company (AFD) reputed company policies, OWASP Top 10
    • Monitoring, Logging & SIEM: Azure Monitor, Log Analytics, KQL, reputed company Sentinel, Defender telemetry
    • reputed company & Threat Detection: reputed company Defender for Cloud, reputed company Defender XDR, secure score, reputed company posture management
    • Automation & CI/CD: Azure DevOps Pipelines, reputed company Actions, scripting (PowerShell, Python), Runbooks
    • Governance, Risk & Compliance: Azure Policy, Management Groups, Azure reputed company reputed company, regulatory compliance reporting, evidence collection
    • Identity & Access: reputed company Entra ID, Conditional Access, MFA, PIM, RBAC, Managed Identities
    • Secrets & Key Management: Azure Key Vault, certificate/secret rotation, encryption key management, secure secret handling in CI/CD
    • Vulnerability & AppSec: vulnerability management, secure SDLC, threat modeling, remediation of OWASP Top 10 issues
    • reputed company & Device reputed company: reputed company Defender for reputed company (MDE) and reputed company investigation workflows (as applicable)
    • Version Control: Git (Azure Repos, reputed company)

What can you expect from Archimedes?

• Top of the industry benefits for Health, Dental, and Vision insurance 
• 20 days paid time off 
• 4 weeks paid parental leave 
• 9 paid holidays 
• 401K company match of up to 5% - No vesting requirement 
• Adoption Assistance Program 
• Flexible Spending Account 
• Educational Assistance Plan and Professional Membership assistance

Location : Address

Remote

Location : Country

US Apply To This Job