Head of DevOps, Security & IT
Color
Software Engineering, IT  
Burlingame, CA, USA
USD 260k-315k / year + Equity
Posted on Oct 4, 2025
Color Health is revolutionizing cancer care with the nation’s first Virtual Cancer Clinic, delivering high-quality, physician-led multidisciplinary care across all 50 states. Our innovative, guideline-based approach spans cancer screening, risk assessment, prevention, diagnosis, treatment support, and survivorship. In addition to personalized direct medical care, our services include cancer genetics risk assessment, nutrition, mental health support and at-home cancer screening diagnostics. Using technology-driven, patient-centric solutions, Color is transforming how employers, unions, health plans, and governments address cancer. Color’s goal is to close critical cancer care gaps, improve cancer outcomes, and guide patients with empathy through their healthcare journeys. 
  Apply to join Color and do the most meaningful work of your career. If you are not sure that you’re 100% qualified but are up for the challenge - we want you to apply! 
   We’re looking for a Head of DevOps, Security & IT (hands on, startup scale) to take ownership of all things platform, security, and internal IT. This role is ideal for someone who’s scaled modern cloud infrastructure (AWS, Kubernetes, CI/CD, Terraform), built security maturity (SOC 2, HIPAA, incident response), and run lean, effective IT operations for a remote and hybrid workforce – not from the sidelines, but from the center of the action. 
  You’ll oversee three core areas:
  DevOps / Infrastructure & Developer Experience: Our cloud infra and internal platform and developer productivity team 
   Information Security: Security and compliance operations for our cloud-native, healthcare-regulated environment 
   IT: Internal tools, support, and identity systems that power our hybrid, tech-forward company 
  This is a highly cross-functional engineering leadership role that will partner with Legal, Product, Business Operations and the rest of Engineering to evolve the foundational systems that make our teams fast, secure, and effective.
  How You’ll Contribute:
Infrastructure & Developer Productivity
- Lead the team responsible for CI/CD pipelines, infrastructure-as-code, build/test/deploy tooling, and our internal developer platform.
- Drive initiatives that improve engineering velocity, reliability, and observability.
- Champion our standards for environment management, deployment safety, and DevEx best practices.
Information Security
- Own security architecture and execution across cloud infrastructure, identity, and application layers.
- As our Information Security Officer, partner with Legal and People on compliance efforts, security audits (SOC 2, HIPAA, HITRUST) and risk assessments.
- Lead vulnerability management, incident response, and secure development lifecycle practices.
IT
- Oversee a high-leverage IT team responsible for device management, SaaS access, identity systems and helpdesk support.
- Build policies and tooling strategy to support secure, frictionless workflows for a hybrid workforce.
- Design and evolve the internal SaaS and productivity stack to scale with the company’s growth.
Leadership & Strategy
- Hire, mentor, and develop a high-performing team across DevSecOps, compliance infrastructure, security, and IT.
- Define and track KPIs across platform reliability, incident response, internal SLAs, and productivity tooling.
- As a member of the Engineering senior leadership team you will collaborate cross-functionally with legal, people, operations and product.
Our Ideal Candidate Will Have:
- 10+ years of experience across infrastructure and security, with 5+ years in a management role.
- Demonstrated success leading DevOps, platform engineering, or developer productivity teams working with cloud-native environments (e.g., AWS, GCP, Kubernetes).
- Hands-on experience with security engineering, cloud security posture, and incident response.
- Experience supporting compliance frameworks to deliver on SOC 2, HIPAA, and HITRUST.
- Strong working knowledge of CI/CD, observability, identity and access management, and secure software development practices.
- Passion and outstanding ability to communicate complex ideas clearly, concisely, and persuasively across an organization.
- Experience improving IT tooling across an organization
- Proven ability to manage, develop and grow talent.
- Background in healthcare, fintech, or other regulated domains.
 Location: This is a hybrid role with 2-3 days per week in-office in Burlingame, and the other 2 days per week remote or in-office as needed. 
  The actual base pay is dependent upon many factors, such as: work experience, market data, skills, geographic location, and business need. The base pay range is subject to change and may be modified in the future. This role may also be eligible for bonus, equity, and benefits.
    Color prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability status, protected veteran status, or any other characteristic protected by law. Color conforms to the spirit as well as to the letter of all applicable laws and regulations. We are also committed to providing reasonable accommodations for qualified applicants with disabilities in our recruitment process.
