Principal System Engineer

Health Catalyst

Website: healthcatalyst.com
Job details:

About Us

We are Health Catalyst, a leading provider of data and analytics technology and services to healthcare organizations. Our mission is to be the catalyst for massive, measurable, data-informed healthcare improvement. We partner with health systems, hospitals, and other healthcare entities to help them use data to make smarter decisions, improve clinical outcomes, reduce costs, and enhance patient experience. Joining Health Catalyst means becoming part of a team dedicated to transforming healthcare through innovation, collaboration, and a relentless focus on value.

Job Summary:

Be part of a World Class Team responsible for:

• End-to-end ownership of the Lumeon SaaS platform — from deployment pipelines to production reliability across cloud and data center environments.
• Collaborating closely with development teams and customers to design, operate, and secure a world-class network and cloud infrastructure — from deployment pipelines and database administration to compliance and monitoring — serving as the reliable backbone for meaningful, data-informed healthcare improvement.
• Troubleshooting and building cloud network infrastructure across AWS; including VPCs, VPNs, ExpressRoutes, and secure customer-facing connectivity, and ensuring reliable, low-latency interconnectivity across cloud and data center environments.

If you love…

• Jumping in and help solve problems and provide sustainable solutions.
• Taking on delegated responsibility and contribute your expertise to the product and have opportunities to grow and improve.
• Collaborating with others when facing problems or situations that you seem to be stuck on.
• Networking with others inside and outside of your team to solve problems that cross organizational boundaries.
• Investing time and effort to learn about new and changing technologies.
• Helping others, constructively reviewing Pull Requests and testing software.
• Taking your turn on support rotations.
• Learning about the big picture, including how your software is used and fits into the company strategy.
• Fostering a no-blame team culture including hard-work, humility, ownership and transparency where team members feel safe to express their opinion and work together on better outcomes.
• Helping engineering teams to build and operate great software on a robust and resilient infrastructure and application platform that stretches across the world.

What you bring to the role:

• Ability to administer and maintain Linux servers (CentOS and Rocky distributions) across the full operational stack — covering service management, kernel updates, disk and filesystem operations, log rotation, cron job management, file permissions, process and resource monitoring, package management, and hands-on troubleshooting of system-level failures and degraded states.
• Own end-to-end MySQL and Aurora database administration across versions 5.6 to 8.x — spanning backups, migrations, schema validation, replication, performance tuning, SQL scripting, data obfuscation, and GDPR/SAR-compliant data extraction and handling of large-scale datasets.
• Practical experience across the DevOps toolchain — Ansible, Jenkins, Terraform/Env0, Bash scripting, and Git/Bitbucket — with the automation mindset and CI/CD knowledge needed to keep infrastructure deployments consistent, repeatable, and safe to roll back when needed.
• Providing support for and troubleshooting network infrastructure to include on-prem and AWS networks, DNS, and firewalls.
• Implementing, configuring and troubleshooting network services.
• Experience with DevOps/Site Reliability methodologies.

You may also bring this:

• Cisco route/switch/firewall experience.
• A documentation-first mindset to everything you do — managing Jira tickets through to closure, maintaining Confluence runbooks, capturing thorough evidence of actions taken, and championing knowledge transfer and repeatability across the team.
• Experience maintaining compliance with training directives required by the organization pertaining to Information Security, Acceptable Use Policy and HiTrust Privacy and Security.
• A working knowledge of user access lifecycle management, secure credential handling, GDPR-compliant data practices, TLS/SSL certificate management, secure data delivery tooling such as Egress or Virtru, vulnerability response awareness, and the ability to maintain thorough audit trail and compliance documentation.
• Experience administering and maintaining integration middleware including Mirth Connect upgrades, HL7/FHIR integration troubleshooting, API authentication and connectivity diagnostics, and secure file transfer workflows via SFTP and other secure channels.
• A solid working knowledge of the LNMP stack — covering upgrade cycles, pre-flight validation, PHP/Symfony configuration and console operations, cache and asset management, log analysis, and the rollback planning skills needed to keep production deployments safe and recoverable.

Preferred Experience & Education:

• BS degree and demonstrable experience (3+ years) in network development, operations, and automation.
• 7+ years working experience maintaining networks and deployments, both on-prem and in the the cloud.
• 3+ years setting up, maintaining and troubleshooting site-to-site VPNs.
• 2+ years working experience with Palo Alto firewalls.
• Superb communication and writing skills with the ability to convey technical concepts to non-technical partners.

Working Hours and On-Call

• Required working hours: 08:00-17:00 UTC.
• Participation in a 24/7 on-call rotation.

Information Security and Compliance Responsibilities

• Maintain compliance with training directives required by the organization pertaining to Information Security, Acceptable Use Policy and HIPAA Privacy and Security.
• Adhere to and comply with the organizations Acceptable Use Policy.
• Safeguard information system assets by identifying and reporting potential and actual security events to the organizations Security and Compliance Officers.

The above statements describe the general nature and level of work being performed in this job function. They are not intended to be an exhaustive list of all duties, and indeed additional responsibilities may be assigned by Health Catalyst.

Click on Apply to know more.