Director of Security Engineering and SRE AlayaCare AlayaCare is a revolutionary cloud-based home care software platform for agencies looking for innovation and efficiencies across the entire agency. AlayaCare is revolutionizing the way home health care is delivered. Our leading cloud -based software allows our clients around the world to manage their employees, scheduling, billing, and enable better delivery of care. We aim to be the world leader in home healthcare software solutions. AlayaCare is on the cusp of a home healthcare revolution, and your expertise could help shape the software platform driving this change. If you're passionate about cloud-native and security engineering, we want to hear from you. AlayaCare is looking for an enthusiastic and pragmatic Director of Security Engineering and SRE. Reporting to the SVP of Engineering, you will work closely with the Chief Architect and all Engineering Directors and Managers. Firstly, you'll focus on streamlining processes for our end-to-end product teams, enabling them to deliver high-quality, secure solutions efficiently, and facilitating rapid experimentation. Secondly, you'll be dedicated to maintaining the security and availability of the AlayaCare Cloud SaaS platform and its data. Within the Site Reliability Engineering domain, you will lead a team responsible for maintaining the uptime and security of our business-critical home care and home health systems. Operating on a follow-the-sun model spanning Canada East & West, Brazil, and Australia, this team automates environment management, acts as first responders to production incidents, and owns the Cloud Architecture and infrastructure roadmap. In the realm of Security Engineering, you will champion a proactive approach to Secure SDLC and Application security, improving SOC2 and HIPAA controls in an automated manner, and promoting best practices for Cloud Security and DevSecOps throughout the organization. Define and drive the vision and execution of the roadmap for the Cloud Infrastructure and the Security Engineering, ensuring timely and budget-conscious delivery. Oversee Application Security and Secure Software Development Lifecycle, SOC2, HIPAA or equivalent controls implementation such as access controls, BCP/DRP, hardening containers and more. Manage security monitoring and incident response processes, ensuring swift and effective action in the event of security incidents. Expose trade-offs of cost vs availability vs performance vs security, and track AWS cost and continuously look for ways to optimize them. Foster the development of high-performing teams, providing coaching and guidance to team leaders and senior staff to support their professional growth and excellence. Budget and vendors management Defining and managing the budget. Managing vendors agreements with the procurement function. Leveraging vendors knowledge to help us achieve our outcomes, and constantly look for ways to reduce or eliminate costs. 15+ years in software engineering, including 10+ in a leadership position. ~5+ years in cloud engineering environment in a continuous delivery environment. ~5+ years exposed to Information Security preferably for a SaaS company. ~ You have done it! scaled Cloud Engineering, ensured proper built-in quality in the development workflow, drove constant improvement of security in both the SDLC and the Cloud. Firm believer of "everything as code", moving quality and security to the left; ~ Able to explain to a 6-year-old child the difference between IaaS and PaaS, and how to build quality and secure software; ~ Familiar with our tech stack of AWS, EKS, K8s, ArgoCD, Microservices Python & JS; ~ Experience in fast-growing SaaS start-ups, and/or scale-up; ~ You have read and loved these books: "Accelerate, the science of DevOps", "Continuous Delivery: Reliable Software Releases through Build, Test, and Deployment Automation", "The DevOps Handbook", "The Phoenix Project", "Team Topologies", "Site Reliability Engineering", "Infrastructure as Code", "Building Secure and Reliable Systems" and few others. Location, and in-office requirements: AlayaCare supports a flexible hybrid working model, expecting that our employees have a regular in-office presence at their closest office location while offering flexibility for some remote work. Flexible vacation policy As well as joining a great culture and a market-leading company, you will be part of a team making a positive difference in the post-acute care market. If you want to explore AlayaCare further, please visit our website . Having a pulse on our employee feedback is important to us as we aim to continuously evolve Diversity, Equity, Inclusion, Belonging, and Accessibility within AlayaCare's policies, total rewards offerings, discussions, learning & development programs, and community partnerships. Explore more InfoSec / Cybersecurity career opportunities Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below. #