Full-Time Senior Security Engineer

• Facilitate architecture, design, and deployment of information security solutions, compliance and policies
• Manage and oversee HIPAA, SOC 2, and ISO, compliance policy implementations, certifications and audit processes. Ensures information security policies, standards, and procedures are up-to-date.
• Perform/Develop test plan and identify testing requirements, scenarios, methodologies, and configurations as part of technology evaluations and vendor integrations
• Evaluates security trends, evolving threats, risks and vulnerabilities and applies tools to mitigate risk as necessary
• Works closely with the Chief Privacy Officer and Chief Security Officer to ensure alignment between security and privacy compliance programs including policies, practices and investigations, and acts as a liaison to the information systems and compliance departments
• Troubleshoot, diagnose, and resolve or escalate Incidents and problems
• Design and implement best practice security solutions (tools and services) to mitigate security threats and risks that may impact the business
• Manage and conduct ongoing security training to the workforce. Drive and promote activities to foster information security awareness within the organization and related entities
• Collaborate with leadership on network design improvements, capacity planning, risk mitigation, vulnerability, and security event management
• Establish and administer a process for investigating and acting on security incidents which may result in a privacy breach breaches

• Bachelor’s degree in computer information security/related field or equivalent experience
• 5+ years of experience in a security engineering role
• Experience architecting, designing, and deploying security solutions for enterprise environments and working with enterprise security solution sets
• Extensive experience and knowledge of HIPAA, SOC-2 and other security policies
• Experience with deploying and managing diverse set of security technologies
• Experience with penetration testing tools
• Demonstrated technical understanding of system architecture and design, operating systems, network infrastructure, device configuration hardening, and patch and configuration management
• Extensive experience and knowledge of AWS services and technologies
• Thorough understanding of the latest security principles, techniques, and protocols
• Working knowledge of shell scripting and Python programming language
• Knowledge of authentication protocols such as LDAP, SAML, OAUTH
• Experience with securing one or more of: CI/CD, Kubernetes, Docker

What is the last date for applying to the job?

Which countries are accepted for this remote job?