Chamber Cardio Logo

Chamber Cardio

IT Systems Engineer

Posted Yesterday
Remote
Hiring Remotely in USA
Mid level
Remote
Hiring Remotely in USA
Mid level
Build and operate Chamber's IT and security infrastructure: manage macOS/Windows endpoints, identity (Okta/Azure AD/M365), endpoint protection (Sophos), monitoring (Datadog), incident response, compliance (SOC 2/HIPAA), and run day-to-day IT support and onboarding/offboarding processes.
The summary above was generated by AI

About Chamber

Cardiovascular disease remains the leading cause of death in America. At Chamber, we’re rebuilding the system for cardiology, creating a world where outcomes, not volume, define success. We partner with independent cardiologists to help them lead population health efforts in their communities, equipping them with technology, data, and operational tools that turn complex insights into better care for every patient.

Our model blends clinical expertise, thoughtful design, and a modern operating platform that supports physicians, patients, and payers alike. We believe innovation and empathy go hand in hand, and that by combining cutting-edge AI tools with a relentless focus on human care, we can transform heart health at scale.

About the Role:

Chamber is hiring its first IT & Security Engineer — a foundational hire who will report directly to the Head of Security and IT. You're not walking into an established playbook; you're helping write it. From endpoint management to security operations, you'll build and own the infrastructure that keeps Chamber's team secure and running as we scale across the cardiology value-based care space.

This role sits at the intersection of IT administration and security operations. You'll need to be equally comfortable provisioning a MacBook and triaging a security alert — and know when each one needs your full attention.

Key Responsibilities:

IT Administration & Endpoint Management

  • Provision, configure, and maintain Apple (macOS/iOS) and Windows 11 endpoints using MDM solutions (Intune, NinjaOne, Apple Business or equivalent).

  • Manage the full device lifecycle: imaging, enrollment, patching, retirement, and asset tracking.

  • Administer Okta IdP & Microsoft 365 (Exchange Online, SharePoint, Teams, OneDrive, Azure AD) including user provisioning, licensing, and policy enforcement.

  • Maintain identity and access controls — enforce MFA, Conditional Access policies, and least-privilege principles across all platforms.

  • Own the Keeper Password Manager environment: administer vaults, shared folders, role-based permissions, and enforce enterprise password policies.

  • Serve as Tier 2/3 helpdesk escalation for macOS and Windows issues; build self-service documentation to reduce repeat tickets.

Compliance & Policy

  • Contribute to SOC 2, HIPAA, and internal audit readiness by maintaining accurate records of access, configurations, and security controls.

  • Develop and maintain IT policies, acceptable use agreements, and onboarding/offboarding checklists.

  • Conduct periodic access reviews and user entitlement audits across M365, AWS, Keeper, and SaaS applications.

  • Support security awareness training initiatives and phishing simulation programs.

Security Operations & Monitoring

  • Monitor and triage security alerts in Datadog (logs, APM, infrastructure metrics) and Sophos Central (endpoint protection, firewall, XDR).

  • Investigate and respond to endpoint threats, phishing attempts, and anomalous behavior; document incidents and escalate appropriately.

  • Tune Sophos policies (web filtering, application control, device encryption, threat intelligence rules) to balance security with productivity.

  • Build and maintain Datadog dashboards and monitors for infrastructure health, authentication events, and security KPIs.

  • Participate in on-call rotation for critical security incidents; conduct post-incident reviews and implement remediations.

  • Support vulnerability management: track CVEs, coordinate patching windows, and validate remediation closure.

What You’ll Achieve in Your First 90 Days:

  • Deploy and configure Mobile Device Management across all endpoints

  • Evaluate, select, and implement a Data Loss Prevention solution

  • Stand up a scalable IT support desk — ticketing system, documentation, and initial playbooks

Requirements:

  • 3–6 years of combined experience in IT administration and/or security operations in a corporate or startup environment.

  • Hands-on experience managing macOS and Windows endpoints at scale; familiarity with Apple Business Manager and Intune or similar MDM.

  • Strong understanding of SSO and oAuth and general IAAA access control.

  • Proficiency with Microsoft 365 administration: Exchange Online, Teams, SharePoint, Azure AD, Conditional Access, and Defender for Business.

  • Working knowledge of Sophos Central — endpoint protection, XDR, firewall management, and policy configuration.

  • Experience with Datadog for infrastructure monitoring, log management, and alerting; ability to write log queries (QLDB / Datadog query language).

  • AWS fundamentals: IAM, EC2, S3, VPC, CloudTrail, and security group management; AWS Solutions Architect Associate (SAA-C03) or equivalent experience preferred.

  • Experience administering an enterprise password manager (Keeper, 1Password, or similar).

  • Understanding security frameworks and best practices: Zero Trust, NIST CSF, CIS Controls, and/or HIPAA technical safeguards.

Preferred Qualifications

  • Experience in a healthcare or health-tech startup environment with exposure to HIPAA compliance.

  • Scripting skills in Python, PowerShell, or Bash for automation of routine IT/security tasks.

  • Experience with endpoint detection and response (EDR) platforms beyond Sophos.

  • Prior exposure to SOC 2 Type II audits and evidence collection workflows.

Chamber Values

Our values guide how we lead, collaborate, and care:

  • Low Ego: We stay grounded, curious, and open to feedback.

  • Empathy: We build trust through compassion and thoughtful communication.

  • Courage: We take action, think critically, and challenge ideas respectfully.

  • Ownership: We follow through with integrity and hold ourselves to high standards.

  • Grit: We push through ambiguity, move with urgency, and solve problems with horsepower and heart.

Location:
Applicants must be based in the United States and authorized to work in the United States without restriction. We are unable to provide sponsorship.

Similar Jobs

10 Days Ago
Remote
2 Locations
Mid level
Mid level
Information Technology • Consulting
Provide network and systems engineering support for IT refresh/migration projects: troubleshoot hardware/software, run migration scripts, manage Meraki/Cisco deployments, administer Windows/AD/O365, maintain documentation and asset records, and act as escalation point for field service customer issues.
Top Skills: Active DirectoryCiscoData CenterDatabaseDhcpJSONLinuxMerakiNetstationOffice 365OutlookPowershellPrinter DriversRmmSAPSccmSharepointTeamsWindows 11Windows Server
10 Days Ago
In-Office or Remote
80K-110K Annually
Mid level
80K-110K Annually
Mid level
Artificial Intelligence • Healthtech • Software • Database
Design, deploy, operate, and improve secure, scalable AWS infrastructure for SaaS platforms. Automate operations with PowerShell and DevOps practices, monitor platform health, troubleshoot performance, manage networking components, support migrations and hybrid-cloud initiatives, and participate in on-call rotation and occasional travel to support customers and on-prem needs.
Top Skills: Application GatewayAWSAzure DevopsCi/CdDnsFirewallsIisLinuxLoad BalancersMicrosoft PowershellMongoDBMySQLRed HatSource ControlVpnWindows
16 Days Ago
Remote or Hybrid
165K-180K Annually
Expert/Leader
165K-180K Annually
Expert/Leader
Big Data • Cloud • Security • Software • Cybersecurity
Lead architecture, implementation, and evolution of enterprise hybrid/multi-cloud infrastructure. Drive automation, IaC, observability, and security best practices. Serve as technical escalation, mentor engineers, and lead cross-functional initiatives to improve scalability, reliability, and operational efficiency.
Top Skills: Active DirectoryAnsibleAWSAzureBashChefContainer TechnologiesDnsGCPGoogle WorkspaceHttp/SInfrastructure-As-CodeLdapLinuxOauthObservability/MonitoringOktaPuppetPythonSAMLShellSshTcp/IpTerraformTlsUnixVirtualizationWindows

What you need to know about the Colorado Tech Scene

With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.

Key Facts About Colorado Tech

  • Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
  • Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
  • Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
  • Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
  • Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account