Head of Technical Infrastructure

ABOUT TRUDATARX

TruDataRx Inc. uses objective clinical data to help clients improve the clinical efficacy and reduce the costs of pharmacy benefits for its members. We are independent from all players in the pharmaceutical manufacturing and distribution industries enabling us to best serve our clients. We value the following characteristics in our team members:

• Outward Mindset foundation of our culture which influences the right behaviors that leads to results
• Entrepreneurial the ability to get things done with resources you dont control
• Humility deep comfort in knowing when you dont know and asking questions
• Collaboration we always give benefit of doubt that each person has something to contribute

Position Summary

The Head of Technical Infrastructure is a hands-on technical leader responsible for overseeing TruDataRxs DevOps and IT functions driving all security and compliance programs and ensuring the reliability security and scalability of the companys cloud infrastructure. This role owns the organizations SOC2 and HIPAA compliance posture and manages technical infrastructure contractors and the third-party IT vendor responsible for day-to-day IT operations. The ideal candidate is equally comfortable setting strategic direction and rolling up their sleeves to execute in a fast-paced resource-conscious environment.

Essential Functions

• DevOps Leadership: Own and evolve the DevOps function including CI/CD pipelines (GitHub Actions Azure DevOps) container orchestration (Kubernetes) and infrastructure-as-code (Terraform) across Microsoft Azure and AWS environments. Actively contribute hands-on including supporting the ongoing AWS-to-Azure migration.
• Security & Compliance: Serve as the internal owner of TruDataRxs SOC2 and HIPAA compliance programs including leading annual SOC2 audit cycles maintaining controls and driving continuous security improvements across the organization.
• Security Incident Response: Lead the detection containment response and post-mortem process for security incidents. Develop maintain and regularly test the companys incident response plan.
• IT Vendor Oversight: Manage the third-party IT vendor responsible for laptop provisioning basic account management and day-to-day IT support. Ensure all vendor activities align with TruDataRxs technical security and compliance roadmaps.
• Infrastructure Cost Optimization: Own cloud infrastructure budgeting across Azure and AWS. Monitor spend identify optimization opportunities and drive cost efficiency without compromising reliability or security.
• Vendor Relationship Management: Evaluate select and manage infrastructure and security tooling vendors. Hold third parties accountable to contractual obligations SLAs and TruDataRxs compliance standards.
• Compliance Operations: Drive IT adherence to critical healthcare and data security frameworks specifically maintaining HIPAA and SOC 2 compliance across all systems.
• Cross-functional Collaboration: Partner with Engineering Product and executive leadership to align infrastructure strategy with business objectives. Communicate infrastructure risks priorities and progress clearly to non-technical stakeholders.
• Other duties as required.*

*This job description is not designed to cover or contain a comprehensive listing of activities duties or responsibilities that are required of the employee. Duties responsibilities and activities may change or new ones may be assigned at any time with or without notice.

• 58 years of experience in infrastructure DevOps or platform engineering with at least 2 years in a director or senior leadership capacity
• Experience overseeing IT Operations and vendor management
• Demonstrated experience leading an organization through a SOC2 Type II audit; current knowledge of SOC2 controls and audit lifecycle
• Hands-on experience with HIPAA technical safeguard requirements in a cloud-hosted environment
• Deep proficiency with Microsoft Azure; working knowledge of AWS (experience with AWS-to-Azure migration a strong plus)
• Strong infrastructure-as-code skills with Terraform
• Production-level experience with Kubernetes and container orchestration
• Hands-on experience with CI/CD tooling including GitHub Actions and/or Azure DevOps
• Demonstrated experience monitoring Logging and Observability Stack: monitoring logging and performance management (e.g. Datadog Prometheus Grafana ELK/Splunk)
• Experience owning cloud infrastructure budgets and driving cost optimization
• Proven ability to manage third-party vendors and hold them accountable to technical security and compliance standards
• Experience recruiting and developing engineering talent
• Ability to work effectively in a fast-paced resource-conscious startup environment with a high degree of autonomy
• Experience in defining implementing and regularly testing a comprehensive Disaster Recovery and Business Continuity strategy including setting Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO).
• Demonstrated experience with Reliability Engineering (SRE) Principles: defining and meeting Service Level Indicators (SLIs) and Service Level Objectives (SLOs) managing error budgets and actively prioritizing toil reduction for the engineering team.
• Experience with incorporating security tooling including:
• DevSecOps integration: Incorporating security testing (SAST/DAST) directly into the CI/CD pipelines.
• Identity and Access Management (IAM): Experience managing complex cloud-native IAM systems across Azure/AWS especially privileged access management.

Preferred Qualifications

• Relevant Certifications: E.g. Azure or AWS certifications (e.g. Solutions Architect DevOps Engineer) or security certifications (e.g. CISSP CISM).
• Data Infrastructure Experience: experience with managed database services data warehousing (e.g. Snowflake Azure SQL Data Warehouse) or big data platforms would be a strong plus.

Company Standard Requirements:

• Ability to work well with others in a collaborative environment
• Ability to get things done with resources you dont control
• Willingness to admit you dont know and ask for help
• Exhibit constant curiosity and a drive to problem solve
• Exhibit desire to learn and grow on a continuous basis