DevSecOps Engineer

There is no quality healthcare without a quality dialogue—and now, no powerful AI without a robust platform. We need you to help us shape both.

Doctors and nurses are facing immense pressure: growing administrative burdens, tighter resources, and the risk of burnout. They deserve tools that restore their focus on care, not paperwork. Corti began by building the world’s leading AI assistant for healthcare, supporting clinicians in real time by listening, documenting, prompting, and safeguarding critical conversations.

Now, we’re opening up that intelligence through our API platform—enabling developers, partners, and providers to build with Corti’s AI in their own tools and workflows. From ambient scribing to clinical decision support, our infrastructure is unlocking new ways to scale healthcare excellence.

Entire health systems trust Corti. Millions of patient interactions have already been improved by our AI. With your help, we’ll reach millions more.

The Role

As a DevSecOps Engineer at Corti, you’ll work at the intersection of security, development, and operations — building secure-by-default tooling and infrastructure that supports our AI-powered platform.

You’ll collaborate with platform engineers,, and IT security colleagues to design systems that are automated, resilient, and secure — with special attention to network architecture and cloud-native environments.

If you’re excited about enabling secure innovation, automating guardrails, and balancing risk with pragmatism, this is the role for you.

What You’ll Be Doing

• Build and automate security into CI/CD pipelines — from code to deployment.

• Embed security controls in our Infrastructure as Code (IaC), including auto-remediation where possible.

• Harden and monitor cloud environments (Kubernetes, Azure), with an eye on both internal threats and external attack surfaces.

• Design and maintain secure networking configurations, including segmentation, VPNs, firewalls, and service mesh policies.

• Support secure development workflows by partnering with engineers to provide reusable patterns and tooling.

• Work with the IT & Security team to support audit readiness and policy enforcement (e.g., access control, patch management, versioning).

• Participate in incident response, root cause analysis, and postmortems as needed.

You'll thrive in this role if you:

• Have 3+ years of experience in DevOps, Security Engineering, or Platform Engineering roles.

• Are comfortable coding in one or more languages (Python, Go, TypeScript, Kotlin, etc.).

• Know how to implement and enforce secure CI/CD workflows and secrets management.

• Have hands-on experience with Kubernetes and cloud security practices (especially Azure).

• A good grasp of cloud security fundamentals, including how to secure modern architectures (sidecars, microservices, service mesh), and the ability to balance tradeoffs in cost, security, and complexity

• Understand network-level security — VLANs, DNS filtering, firewall rules, ingress/egress policies, zero-trust networking.

• Bring experience with common security frameworks (e.g., ISO 27001, SOC2, GDPR).

• Communicate clearly and collaborate across roles — you coach rather than control.

• Take a pragmatic approach to security: secure systems should work with engineers, not against them.

Nice To Have

• Experience with Drata or similar compliance automation tools.

• Familiarity with MDM and endpoint hardening across Linux, MacOS, and Windows.

• Understanding of audit tooling and compliance KPIs (MTTR, version skew, access policies).

• Certifications like CISSP, CISM, or Azure Security Specialty are a plus.

Your success will be measured on:

• Access Control Compliance - Percentage of users whose access levels match the need-to-have principle based on role/title in e.g. Drata, Slack, Notion.

• Security Incident Response Time (MTTD/MTTR) – How quickly cybersecurity incidents are detected and resolved.

• Audit Pass Rate – Success rate of external security audits (e.g., GDPR, SOC2, ISO 27001).

• Version skew – How up-to-date our external dependencies and systems are.

• Standardization Rate – How many pipelines have been implemented and enforced across the organisation.

• Policy Deployment Rate – Percentage of IT policies successfully implemented.

What you will experience at Corti

• If you are successful, healthcare professionals all around the globe will have more time with patients, make fewer mistakes, have more mandates, and be under less pressure.

• You’ll get to help redefine how we work with AI, the biggest challenge we face as a society in decades to come

• You’ll learn much more about machine learning, generative AI, healthcare, product, and commercial excellence, making you a powerhouse on stage at a conference and a tech connoisseur at every dinner table.

• You’ll work in a multidisciplinary company with over 28 nationalities anchored in a flat meritocracy.

• You’ll work with some of the smartest people you have met, who have all left fantastic jobs to work precisely here. We do not recruit, we court.

Practicalities:

• The role sits in the IT & Security squad under Platform Engineering

• The position reports to the Lead Platform Engineer

• The position is full-time

• This role is based in our Copenhagen office

• Requirement to visit data centres from time to time.

Ready to dive into the world of Corti? Hit that 'Apply' button, and let's start working together on reshaping the dialogue in healthcare, making a real difference for millions of patient outcomes around the world.

🤝 Bringing in top talent from all backgrounds is crucial in our pursuit to improve the world of healthcare. We encourage applications from all people and do not discriminate based on race, religion, national origin, gender, sexual orientation, age, and/or disability status.

At Corti, experience comes in many forms, and we’re passionate about creating teams with a multitude of perspectives! If you believe your experience is close to what we’re looking for but not an exact match, we still hope you’ll consider applying!