About Droxi

Droxi is a digital health startup reducing EHR inbox overload for primary care providers. We integrate with Epic and Athena to automate clinical workflows, helping physicians focus on patient care instead of administrative burden.

The Role

We're looking for a hands-on Infrastructure & Compliance Lead to own our cloud infrastructure, security posture, and compliance programs (HIPAA, SOC 2 Type II).

This is a dual-track role: You will directly manage one DevOps engineer (setting priorities, conducting 1:1s, supporting their growth) while also being deeply hands-on with infrastructure, security, and compliance work yourself. We need someone who can context-switch between leading their direct report and executing critical technical work independently.

You'll also coordinate with external IT vendors and be the single point of accountability for keeping our systems secure, reliable, and audit-ready.

Ideal for someone who thrives in high-ownership environments and wants to build a small, high-performing infrastructure function from the ground up.

What You'll Do

Infrastructure & DevOps

Own and evolve our AWS infrastructure (EKS, Lambda, S3, CloudFront, networking)

Manage MongoDB Atlas clusters: scaling, security, backup/restore, performance tuning

Build and maintain CI/CD pipelines using GitHub Actions and ArgoCD for GitOps deployments

Maintain infrastructure-as-code with Terraform

Drive reliability improvements: uptime, incident response, disaster recovery

Support developers with tooling, environments, and deployment automation

Security

Implement and maintain security controls: IAM, encryption, network segmentation, vulnerability scanning

Conduct periodic security assessments and remediation

Manage SIEM/logging, intrusion detection, and incident response procedures

Own security awareness training and policy enforcement

Compliance

Serve as Compliance Officer for HIPAA and SOC 2 Type II

Maintain policies, procedures, and evidence for audits

Coordinate with external auditors and manage remediation timelines

Track regulatory changes and update controls accordingly

Manage BAA documentation and vendor risk assessments

Vendor & IT Management

Manage external IT vendor for endpoint devices, access provisioning, and corporate IT

Own identity and access management (MFA, access reviews)

Maintain asset inventory and offboarding procedures

Requirements:

Must Have

5+ years in DevOps / Infrastructure roles

2+ years of experience directly managing engineers (not just mentoring or tech-leading)

Strong hands-on AWS experience (networking, compute, storage, security services)

Production Experience With Kubernetes (EKS Preferred) And GitOps (ArgoCD)

Experience with MongoDB Atlas or similar managed NoSQL databases

Proficiency with Terraform for infrastructure-as-code

Familiarity with compliance frameworks (SOC 2, ISO 27001, or similar)

Experience managing external vendors

Strong documentation and communication skills

Comfortable working across Israel and US timezones as needed

Nice to Have

Prior Compliance Officer or Security Officer title

Experience In Healthcare Or Other Regulated Industries

Experience with Elasticsearch or similar observability stacks

Familiarity with healthcare integrations (HL7/FHIR, EHR APIs)

Certifications: AWS Solutions Architect, CISSP, CISM, or HCISPP

Why Droxi

High-ownership role in a mission-driven healthcare AI startup

Direct impact on product reliability and patient safety

Build and lead an infrastructure team from the ground up

Competitive compensation + equity

Flexible hybrid work environment