Member of Technical Staff, Site Reliability

About Mandolin

Nearly every disease will become treatable in our lifetimes. Mandolin is laying the clinical and financial infrastructure to get groundbreaking treatments to patients faster powered by AI agents.

Mandolin partners closely with the largest healthcare institutions in the US covering more than $10B drug spend across the country. Were backed by Greylock SV Angel Maverick SignalFire and the founders of Vercel Decagon and Yahoo.

Why we need you

Mandolins usage is climbing quickly and were preparing for a broad public launch. The platform must deliver enterprise-grade reliability airtight security and effortless developer productivity while processing sensitive healthcare data. Were looking for a DevSecOps leader who can build and operate a rock-solid cloud foundationthen codify the best-practice guardrails that every engineer will rely on as we scale.

What youll do

• Design & own cloud infrastructure on GCP. Establish autoscaling policies HA networking and cost-efficient environments across staging and prod.

• Implement comprehensive security controls. Centralize secrets management and rotation define zero-trust IAM policies and integrate continuous vulnerability scanning into CI/CD.

• Stand up first-class observability. Deploy and maintain metrics tracing and log pipelines (Prometheus Grafana Cloud Logging etc.) plus actionable SLOs and alerting.

• Streamline developer experience. Provide dev-containers local-env scripts and clear runbooks that let new engineers ship safely on day one.

• Embed security into the SDLC. Own IaC (Pulumi) automated compliance checks and incident-response playbooks.

• Collaborate across teams. Review architectural changes for security impact and partner with backend teams on scalability initiatives.

• Scale the function. Optionally hire or mentor a junior engineer once the foundation is solid.

Must-have experience

• 8 years building and securing production cloud infrastructure with deep GCP knowledge (Cloud Run Cloud Build IAM).

• Expert with container orchestration and autoscaling strategies.

• Proven record deploying centralized secrets management and automated rotation.

• Ownership of observability stacks and incident-response pipelines.

• Strong application-security background (OWASP API gateway/WAF dependency & image scanning).

• Mastery of IaC (Terraform Pulumi or equivalent) and CI/CD (GitHub Actions Cloud Build GitLab CI etc.).

• Comfortable operating in a fast results oriented and scaling startup environment.

Nice-to-haves

• Experience with workflow orchestration platforms (Temporal Cadence Airflow).

• Prior work in HIPAA SOC 2 or similarly regulated environments.

• Exposure to edge-security patterns (zero-trust networking service-mesh mTLS).

• Background building internal developer platforms or golden-path tooling.

Compensation Philosophy

Compensation for this position will include a base salary equity and a variety of comprehensive benefits. The U.S. base salary range for this role is $160000 - $270000. Actual base salaries will be based on candidate-specific factors including experience skillset and location and local minimum pay requirements as applicable.

Benefits & Perks

As part of our total rewards package we offer attractive benefits and perks to our employees including:

• Free lunch in the office daily & dinner if youre in the office past 7PM

• Comprehensive health dental & vision insurance for you and your family

• Life insurance

• 10 company holidays

• Take what you need PTO

• 4% 401k matching

• $300/month company-sponsored commuter benefits

• State of the art gym in the office

• And more!

Please note the above benefits & perks are for full-time employees