[Hiring] Principal Cloud Architect @Tulea Health
About Tulea Health
At Tulea Health, we are compassionate partners seeking to improve the infusion experience for patients who rely on complex medication therapies by supporting the health systems that serve them.
Technology plays a critical supporting role in how our teams deliver therapy - powering day-to-day clinical operations and integrating with our health system partners. We work with sensitive data and operate in a high-trust environment, so reliability, security, and engineering quality matter as much as speed. By reducing friction, errors, and delays in infusion center workflows, our technology helps care teams deliver therapy more smoothly and consistently
Join us as a founding member of our Engineering team at Tulea Health and help us profoundly improve the infusion experience.
The Role
Weâre looking for a Principal Cloud Architect (AWS) to design and evolve Tuleaâs cloud architecture - building the secure, scalable, reliable foundation that our clinical operations and product engineering depend on, including secure data exchange with hospital system partners.
This is a hands-on principal role: youâll design the target architecture and also build key components, while setting direction through standards, guardrails, and technical leadership across engineering.
In a clinical setting, the details matter. Scalability, reliability, security, and operational excellence directly affect how care gets delivered day to day. You will help ensure our systems are resilient, compliant, and predictable - so our teams can focus on patient care and operational excellence.
What youâll own
⢠Cloud strategy & target-state architecture: Define the multi-year AWS platform strategy, principles, and âgolden pathsâ for teams to build on.
⢠Security & compliance architecture: Own cloud security posture and compliance-by-design for HIPAA and audit readiness (e.g., SOC 2, HITRUST).
⢠AWS landing zone & governance: Design and operate a multi-account AWS environment (Control Tower/Organizations), including guardrails, identity, network segmentation, and centralized logging.
⢠Reliability & operational excellence: Set SRE-aligned practices for observability, incident response, disaster recovery, and operational readiness.
⢠Platform enablement: Create reusable Infrastructure-as-Code modules, templates, and reference architectures to accelerate safe delivery across teams.
⢠FinOps & cost governance: Implement cost allocation, tagging, budgeting, and optimization practices that improve visibility and reduce total cost of ownership.
What youâll do
⢠Design and evolve a secure multi-account AWS environment (Control Tower/Organizations) with clear boundaries for production/non-production, workloads, and data sensitivity.
⢠Define and socialize reference architectures for core workload types (web apps, APIs, data pipelines, event-driven/serverless), including secure defaults and âgolden paths.â
⢠Establish architectural standards and governance (design reviews, threat modeling, pre-launch checklists) that improve quality without slowing delivery.
⢠Build and maintain infrastructure as code and delivery automation (IaC modules, promotion strategies, automated checks) in partnership with engineering.
⢠Implement cloud security controls for PHI and sensitive data (identity, encryption, secrets, logging/detection, auditability) and drive continuous posture improvement.
⢠Partner with hospital IT/security teams to implement secure data exchange links, including joint testing, documentation, and operational runbooks.
⢠Operationalize reliability: SLIs/SLOs, observability, alerting, incident response, and DR readiness - improving time-to-detect and time-to-recover.
⢠Evaluate emerging cloud and AI capabilities and run focused POCs when they materially improve security, reliability, cost, or developer velocity.
What weâre looking for
⢠10+ years designing and delivering cloud solutions, with deep hands-on AWS experience running production workloads.
⢠Experience with healthcare interoperability standards and integrations (FHIR, HL7) and/or healthcare data platforms.
⢠Track record architecting secure, highly available, audit-ready systems in regulated industries (healthcare strongly preferred).
⢠Strong experience with AWS multi-account governance (Control Tower/Organizations); deep VPC/networking fundamentals (segmentation, routing, secure connectivity such as VPN/Direct Connect).
⢠Strong DevSecOps/IaC + CI/CD experience (Terraform/CloudFormation/CDK; GitHub Actions preferred) and ability to set standards teams actually adopt.
⢠Experience with containers/orchestration and serverless patterns.
⢠Expertise in AWS security primitives and tooling (IAM/least privilege, KMS, secrets, logging/monitoring; Security Hub/GuardDuty/Config/CloudTrail; zero trust concepts).
⢠Exceptional communication: can align stakeholders and explain trade-offs clearly.
⢠Keeps current on emerging cloud and AI advancements and translates them into pragmatic improvements in architecture, operations, and delivery.
Bonus points
⢠Experience building a cloud âplatformâ mindset: golden paths, self-service enablement, guardrails, and developer experience.
How we work
⢠High ownership and high trust: youâll have autonomy and real impact.
⢠AI-forward, accountability-first: we move faster with AI, but we donât outsource responsibility.
⢠Collaborative and mission-driven: we build software that improves infusion center operations and ultimately improves patient care and outcomes.
Education
Bachelorâs degree in Computer Science, Engineering, Information Systems or related field, or equivalent practical experience.
Apply tot his job
Apply To this Job
At Tulea Health, we are compassionate partners seeking to improve the infusion experience for patients who rely on complex medication therapies by supporting the health systems that serve them.
Technology plays a critical supporting role in how our teams deliver therapy - powering day-to-day clinical operations and integrating with our health system partners. We work with sensitive data and operate in a high-trust environment, so reliability, security, and engineering quality matter as much as speed. By reducing friction, errors, and delays in infusion center workflows, our technology helps care teams deliver therapy more smoothly and consistently
Join us as a founding member of our Engineering team at Tulea Health and help us profoundly improve the infusion experience.
The Role
Weâre looking for a Principal Cloud Architect (AWS) to design and evolve Tuleaâs cloud architecture - building the secure, scalable, reliable foundation that our clinical operations and product engineering depend on, including secure data exchange with hospital system partners.
This is a hands-on principal role: youâll design the target architecture and also build key components, while setting direction through standards, guardrails, and technical leadership across engineering.
In a clinical setting, the details matter. Scalability, reliability, security, and operational excellence directly affect how care gets delivered day to day. You will help ensure our systems are resilient, compliant, and predictable - so our teams can focus on patient care and operational excellence.
What youâll own
⢠Cloud strategy & target-state architecture: Define the multi-year AWS platform strategy, principles, and âgolden pathsâ for teams to build on.
⢠Security & compliance architecture: Own cloud security posture and compliance-by-design for HIPAA and audit readiness (e.g., SOC 2, HITRUST).
⢠AWS landing zone & governance: Design and operate a multi-account AWS environment (Control Tower/Organizations), including guardrails, identity, network segmentation, and centralized logging.
⢠Reliability & operational excellence: Set SRE-aligned practices for observability, incident response, disaster recovery, and operational readiness.
⢠Platform enablement: Create reusable Infrastructure-as-Code modules, templates, and reference architectures to accelerate safe delivery across teams.
⢠FinOps & cost governance: Implement cost allocation, tagging, budgeting, and optimization practices that improve visibility and reduce total cost of ownership.
What youâll do
⢠Design and evolve a secure multi-account AWS environment (Control Tower/Organizations) with clear boundaries for production/non-production, workloads, and data sensitivity.
⢠Define and socialize reference architectures for core workload types (web apps, APIs, data pipelines, event-driven/serverless), including secure defaults and âgolden paths.â
⢠Establish architectural standards and governance (design reviews, threat modeling, pre-launch checklists) that improve quality without slowing delivery.
⢠Build and maintain infrastructure as code and delivery automation (IaC modules, promotion strategies, automated checks) in partnership with engineering.
⢠Implement cloud security controls for PHI and sensitive data (identity, encryption, secrets, logging/detection, auditability) and drive continuous posture improvement.
⢠Partner with hospital IT/security teams to implement secure data exchange links, including joint testing, documentation, and operational runbooks.
⢠Operationalize reliability: SLIs/SLOs, observability, alerting, incident response, and DR readiness - improving time-to-detect and time-to-recover.
⢠Evaluate emerging cloud and AI capabilities and run focused POCs when they materially improve security, reliability, cost, or developer velocity.
What weâre looking for
⢠10+ years designing and delivering cloud solutions, with deep hands-on AWS experience running production workloads.
⢠Experience with healthcare interoperability standards and integrations (FHIR, HL7) and/or healthcare data platforms.
⢠Track record architecting secure, highly available, audit-ready systems in regulated industries (healthcare strongly preferred).
⢠Strong experience with AWS multi-account governance (Control Tower/Organizations); deep VPC/networking fundamentals (segmentation, routing, secure connectivity such as VPN/Direct Connect).
⢠Strong DevSecOps/IaC + CI/CD experience (Terraform/CloudFormation/CDK; GitHub Actions preferred) and ability to set standards teams actually adopt.
⢠Experience with containers/orchestration and serverless patterns.
⢠Expertise in AWS security primitives and tooling (IAM/least privilege, KMS, secrets, logging/monitoring; Security Hub/GuardDuty/Config/CloudTrail; zero trust concepts).
⢠Exceptional communication: can align stakeholders and explain trade-offs clearly.
⢠Keeps current on emerging cloud and AI advancements and translates them into pragmatic improvements in architecture, operations, and delivery.
Bonus points
⢠Experience building a cloud âplatformâ mindset: golden paths, self-service enablement, guardrails, and developer experience.
How we work
⢠High ownership and high trust: youâll have autonomy and real impact.
⢠AI-forward, accountability-first: we move faster with AI, but we donât outsource responsibility.
⢠Collaborative and mission-driven: we build software that improves infusion center operations and ultimately improves patient care and outcomes.
Education
Bachelorâs degree in Computer Science, Engineering, Information Systems or related field, or equivalent practical experience.
Apply tot his job
Apply To this Job