About Outcomes
At Outcomes®, we power connections across pharmacy, payers, and pharma through our patient-centric technology platform. With more than 46 years of pharmacy-focused innovation, Outcomes supports 48,000 pharmacies and helps improve care for over 70 million patients.
We build pharmacy-first technology that enables better workflows, stronger clinical services, and measurable healthcare impact.
Role Overview
The Sr Engineer, Information Security & Risk is a senior, hands-on security engineer with architect-level responsibility, focused on securing cloud platforms and modern application environments.
You design and implement security controls that protect cloud infrastructure, APIs, and sensitive healthcare data—while enabling engineering teams to move fast and safely.
What You’ll Do
- Design and implement cloud security architectures across AWS and other cloud platforms.
- Define and enforce authentication, authorization, and API security patterns.
- Partner with engineering and IT teams to secure cloud-native services and applications.
- Embed security into the software development lifecycle through design reviews and guidance.
- Build and maintain reusable security patterns and reference architectures.
- Identify and mitigate cloud and application security risks.
- Support risk assessments, audits, and regulatory requirements.
- Act as a trusted security advisor and mentor across security and IT teams.
What You’ll Bring
- 7+ years of engineering experience, with 5+ years in security engineering.
- Strong experience securing cloud environments.
- Deep understanding of application, API, and identity security.
- Experience with cloud-native architectures and modern development practices.
- Ability to clearly communicate security risks and solutions.
Preferred Qualifications
- Degree in Computer Science or equivalent experience.
- Security certifications (CISSP, CISM, CCSP, CSSLP, CISA, GIAC, or similar).
- Experience in healthcare or regulated environments.
- Experience integrating security into CI/CD pipelines.
Technology Environment
- Cloud platforms: AWS (primary), Azure, GCP, OCI
- Security engineering: IAM, network security, encryption, logging, monitoring, and infrastructure-as-code security
- Application & API security: Authentication, authorization, secrets management
- AI & data security: Secure use of AI services; protection of data, models, and access
- Tooling & automation: Security monitoring, vulnerability management, CI/CD security integrations
