Experience: 3+ years
Work Location: Bengaluru
About Candor Health Candor Health is a healthcare intelligence platform that is powering companies with high quality, transparent, and actionable data in the US on doctors, facilities, insurance plans, costs, and more. We believe that providing higher quality, transparent data not only leads to better decisions, but creates greater trust and confidence for the entire healthcare ecosystem. We are getting data from a variety of growing sources including certification boards, booking sites, claims, social media, and others, with human and automated verification. We have built a high quality data set that has been baked off favorably against other healthcare data vendors, including public companies and startups that have been compiling healthcare data for many years. We are backed by some of the most prominent VCs and angels in healthcare who have a track record of building very successful technology companies.
Life at Candor At Candor, everyone is a leader. The areas you own are yours to build and progress. Best ideas win! We value a culture where the team not only enjoys working together solving some of the biggest data challenges in the healthcare industry, but also has fun doing it. Building a great company is hard work but work-life balance is also important.
Responsibilities
Own and maintain the Kubernetes cluster infrastructure, ensuring high availability and scalability
Manage security patches and vulnerability remediation across all systems and services
Conduct regular vulnerability assessments and coordinate responses to security findings
Complete security questionnaires and compliance documentation for enterprise clients
Remediate issues identified through penetration testing and security audits
Develop, maintain, and enforce company-wide security policies and procedures
Collaborate with engineering teams to implement security best practices in development workflows
Monitor system health, performance, and security metrics using observability tools
Automate infrastructure provisioning and deployment processes
Stay up-to-date on the latest security threats, DevOps tools, and cloud security best practices
Be able to relay security risks and infrastructure insights to stakeholders using clear documentation and visuals
Write automated tests for infrastructure and security configurations
Team player and collaborates well with others across engineering and business teams
Proactive attitude on identifying security risks and providing solutions
Qualifications
Bachelor/Master degree in Engineering, Computer Science, Cybersecurity or relevant field
3+ years of experience in DevOps, infrastructure, or security engineering roles
Strong experience with Kubernetes cluster management and container orchestration
Experience with security frameworks, vulnerability management, and penetration testing remediation
Experience with Cloud security services (AWS Security Hub, GCP Security Center, Azure Security Center, etc)
Knowledge of security compliance standards (SOC 2, HIPAA, ISO 27001, etc)
Experience with Infrastructure as Code tools (Terraform, CloudFormation, etc)
Hands-on experience with security scanning tools and SIEM solutions is a bonus
Good to have knowledge of scripting languages like Python, Bash
Familiarity with k8s, docker, ELK, monitoring tools (Prometheus, Grafana), and CI/CD pipelines