Security Engineer
-
Location
Florida
-
Sector:
-
Job type:
-
Salary:
US$110000 - US$150000 per annum
-
Contact:
Hannah Pegues
-
Contact email:
h.pegues@ioassociates.com
-
Job ref:
BBBH131357_1709058867
Our client is a leading clinically-driven, customer-centric company that prioritizes optimizing member care while significantly reducing costs for plan sponsors by placing pharmacists at the core of its service model.
Who We're Seeking -
Due to unprecedented growth, our client is actively seeking a highly skilled and experienced Security Engineer. In this pivotal position, you will leverage your security expertise to maintain and enhance our client's security controls, ensuring the confidentiality, integrity, and availability (CIA) of their information assets. As a security subject matter expert, you will act as a consultant to both the business and IT teams. If you are a motivated Security Engineer with a robust background in risk management, security enhancements, and operations, and you have a passion for making a meaningful impact in the healthcare industry, we encourage you to apply.
Your Responsibilities as a Security Engineer:
- Proactively identify and manage risks by educating staff on current cyber-attack tactics, techniques, and procedures. Conduct cyber analysis on security alerts and integrate indicators of compromise (IOCs) into sensors.
- Manage regularly scheduled vulnerability scanning, penetration testing, and remediation of identified issues.
- Informed by the latest cyber threat landscape, proactively enhance and implement controls to continuously strengthen our client's security posture to maintain CIA.
- Implement and maintain cyber security infrastructure, including IAM, SIEM, IDS/IPS, Endpoint Security, and Network Perimeter solutions, to support the cybersecurity strategy of the organization.
- Collaborate with application development teams to provide consultation on best practices regarding cybersecurity during development activities.
- Identify and implement automation opportunities within our daily processes.
- Respond to security events, working with partners to identify, contain, and remediate any security incidents.
- Manage vulnerabilities in the environment through active scanning and remediation activities.
- Develop and document SOPs for daily operational tasks.
- Stay current with the latest cybersecurity trends and technology.
- Promote cybersecurity awareness by serving in a security consulting capacity to other teams in the organization.
- Act independently within your role with a high level of integrity and ownership.
- Provide direction and guidance on matters of security to other teams in the organization.
Qualifications:
- Possess a Bachelor's degree in Cybersecurity or Computer Science. Accumulate 3-5 years of experience in a Cybersecurity role.
- Demonstrate expertise and proficiency with tools such as Azure AD, EDR, DLP, SSO, MFA, UEBA, SEIM, and Office 365.
- Showcase competence in securing and managing cloud environments, particularly Azure and AWS. Exhibit a working knowledge of common InfoSec standards, including CIS, ISO 27001/27002, NIST, PCI DSS, and HIPAA.
- Display a comprehensive understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements. Illustrate a commitment to continuous training, self-study, and maintaining proficiency in the technical information security domain.
Responsibilities -
As a Security Engineer: -
- Proactively identify and manage risks by educating staff on current cyber-attack tactics, techniques, and procedure.
- Conduct cyber analysis on security alerts and integrate indicators of compromise (IOCs) into sensors.
- Manage regularly scheduled vulnerability scanning, penetration testing, and remediation of identified issues.
- Stay informed about the latest cyber threat landscape and proactively enhance and implement controls to continuously strengthen our client's security posture, ensuring Confidentiality, Integrity, and Availability (CIA).
- Implement and maintain cyber security infrastructure, encompassing IAM, SIEM, IDS/IPS, Endpoint Security, and Network Perimeter solutions to support the organization's cybersecurity strategy.
