The Role
As a Senior Cloud Security Engineer, you'll secure cloud environments, implement guardrails, enhance threat defense, manage vulnerabilities, and collaborate on automated security solutions.
Summary Generated by Built In
About Us:
Role:
To be a strong fit, you also need:
Company Overview:
Function Health is the AI operating system for health, designed to empower people to live 100 healthy years. We are redefining how individuals understand, measure, and improve their health by moving beyond reactive care and enabling proactive, data-driven insight into human biology. Function has been recognized as one of Fast Company’s Most Innovative Companies of 2024, and is venture-backed by Andreessen Horowitz (a16z). Hundreds of thousands of members have joined Function to take control of their health.
Through advanced diagnostics, deep biomarker testing, longitudinal data, and AI-enabled insights, Function equips members with actionable intelligence to take control of both the quality and length of their lives.
Function recently announced a $298M Series B and is entering its next chapter of growth. As we scale, the quality and durability of our People systems, data, and insights will directly shape our ability to attract, retain, and support exceptional talent.
We are growing our team and seeking out world-class talent that deeply believes in our mission to positively impact global health, has a relentless bias toward action, and a growth mindset. Function fosters a collaborative and dynamic environment where every day we build the future.
Role:
Function Health is building a modern cloud security program to protect our members and platform as we scale. As a Cloud Security Engineer, you’ll focus on securing our Google Cloud Platform (GCP) environments, designing and enforcing guardrails that make our infrastructure secure by default. This role is hands-on and impact-driven: you’ll own detection, hardening, and automation that directly reduce risk across production systems.
We’re looking for someone who thrives on solving hard technical problems in cloud environments, knows how to balance speed and control, and can turn complex GCP security challenges into practical, automated solutions.
Key Responsibilities
- Multi-Cloud Engineering: Serve as the primary security partner for teams building across AWS, GCP, and Azure, ensuring pragmatic, high-impact risk reduction and consistency across all environments.
- Infrastructure Guardrails: Orchestrate and implement organization-level constraints to enforce guardrails and prevent misconfigurations using a "secure-by-default" philosophy.
- Edge Defense & Connectivity: Own the Cloudflare stack, including the deployment and tuning of WAF rules for public endpoints, global DNS management, and edge-level threat mitigation.
- Code-to-Cloud Remediation: Partner with engineering to address risks at their origin by mapping cloud vulnerabilities back to source code and integrating automated security checks into CI/CD pipelines.
- Workload Hardening: Drive deep visibility into cloud workloads, enforcing secure defaults for OS-level hardening, network segmentation, logging, and runtime monitoring.
- Identity & Access Governance: Lead the adoption of identity best practices across all cloud providers, focusing on least privilege and the elimination of long-lived credentials.
- Automated Response & Remediation: Design and build automated workflows to remediate high-priority cloud risks and misconfigurations, turning manual security tasks into scalable code.
- SecOps Partnership: Support the Detection and Response function by integrating cloud-native telemetry and CSPM findings into centralized workflows, providing expertise on cloud forensics and containment.
- Vulnerability Management: Lead the identification and lifecycle management of cloud-based vulnerabilities, including secrets exposure and service misconfigurations, while partnering with teams on practical fixes.
- Metrics & Strategy: Define and track cloud security KPIs (e.g., remediation velocity, public endpoint coverage, IAM hygiene) to help shape the long-term infrastructure security roadmap.
Must-Have Qualifications
- Multi-Cloud Expertise: 5-8 years in cloud security with proven experience managing security controls in AWS, GCP, and Azure.
- Hands-on experience with the Wiz platform. Preference for candidates who have moved beyond the dashboard and into WizOS, Runtime, and Response & Remediation.
- Deep knowledge of GCP services (IAM, VPC, GKE, Cloud Run, GCS, KMS, SCC) and their security implications.
- Experience implementing guardrails with Terraform.
- Strong grasp of IAM design, service account lifecycle, and secrets management in the cloud.
- Familiarity with cloud logging/monitoring (Cloud Logging, VPC Flow Logs, Wiz findings) and integration into SIEM/SOAR.
- Proficiency in Python and Terraform is required. You should be comfortable writing scripts that interact with Cloud APIs to automate infrastructure changes.
- Ability to work as a peer to Engineering, providing the "how" of security remediation, not just the "what."
- Bonus: experience with HIPAA/HITRUST environments, SOC 2 Type II audits, or healthcare data protection.
- Bias Toward Action: Demonstrated ability to take initiative, make decisions under uncertainty, and move projects forward even in the face of ambiguity. We value individuals who are self-starters and ready to act on opportunities and challenges alike.
- Entrepreneurial Spirit: Strong adaptability to changing business needs with a knack for building and optimizing processes. Your entrepreneurial mindset will be crucial in navigating the dynamic landscape of our industry, ensuring our platform remains competitive and responsive to user needs.
- Communication: Excellent communication skills, capable of explaining complex technical concepts to non-technical stakeholders. Effective communication is vital for cross-functional collaboration and ensuring alignment across our organization.
- Remote Work Adaptability: Comfort with remote work environments, demonstrating the ability to stay productive and connected with the team irrespective of physical location.
- Continuous Improvement: A willingness to question assumptions and a commitment to continuous improvement. Your openness to feedback and dedication to personal and professional growth will contribute significantly to our collective success.
Why You'll Love Working With Us:
We value our team at Function and offer a competitive salary and benefits package, flexible working hours, and a dynamic work environment where creativity and innovation are encouraged. If you are a highly motivated and experienced individual who is passionate about using technology to improve people’s lives, we would love to hear from you.
At Function, we celebrate diversity and are committed to building an inclusive and equitable workforce. We are proud to be an equal opportunity employer and do not discriminate based on race, color, religion, sex (including gender identity and sexual orientation), national origin, age, disability, veteran status, marital status, ancestry, or any other characteristic protected by applicable law.
Join the Function Health team and become a part of our mission to revolutionize healthcare. Work with us to make a difference in the lives of thousands, ensuring a healthier future for all. Discover more about us and how we're changing the face of healthcare at Function Health.
Important Notice: Legitimate communication from the Function Health team will always come from an email address ending in @functionhealth.com. Function Health will never request personal information such as banking details or payment during the hiring process. Please be cautious of communications or job offers that come from other email domains, instant messaging platforms, or unsolicited calls. If you ever have doubts about the legitimacy of a communication, please reach out to us directly at [email protected]
Top Skills
AWS
Azure
Google Cloud Platform
Python
SIEM
Soar
Terraform
Wiz
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
One mission—empowering you to live 100 healthy years. Starting with 100+ lab tests and insights from medical experts in heart, hormones, cancer, and more
.png){kind=logo}
