Logo
Paradigm Corp

IT Principal Security Engineer - Remote

Paradigm Corp, Walnut Creek, California, United States, 94598


Paradigm is an accountable specialty care management organization focused on improving the lives of people with complex injuries and diagnoses. The company has been a pioneer in value-based care since 1991 and has an exceptional track record of generating the very best outcomes for patients, payers, and providers. Deep clinical expertise is the foundation for every part of Paradigm’s business: risk-based clinical solutions, case management, specialty networks, home health, shared decision support, and payment integrity programs.We are seeking a full-time, remote Principal Security Engineer. This position will perform information security engineering, administrator, and support functions. Experience in network and endpoint threat analysis, incident response, and threat hunting methodologies is required. A well-rounded background in endpoint/network security defenses as well as some offensive security knowledge is necessary to think like an adversary. This role will work with other security analysts and engineers to understand the broader security protection levels throughout the organization, identify security gaps, and partner with others on the team to develop strategies to enhance controls, assess new security technologies, deploy, and configure new security technologies, along with regularly reviewing controls of existing security technologies. This role will contribute to the security incident response process to assess the risk, impact, and scope of identified threats, as well as developing the ability to lead security incident response efforts to include containment, eradication, and recovery.RESPONSIBILITIES:Responsible for engineering, deploying, and administrating information security solutions (hardware, software, policies, and procedures).Evaluate Paradigm’s existing defenses relative to current threats, regulatory requirements, contractual requirements, and industry practices, and recommend and/or implement changes as appropriate.Understand business needs for data transfer and system access and evaluate solutions to meet those needs in a secure fashion and recommend and/or implement changes as appropriate.Perform system administration on security-related systems, including user account administration, product updates, log file maintenance, etc.Evaluate, test, and deploy new security technology as needed, including testing and integration to ensure that all software and hardware operate properly together.Lead efforts in the development of Cyber Threat Use Cases (actionable alerting/reporting), to include development of test cases and response plans for each Use Case.Provide support and assist in the training/mentoring of junior security staff to increase their understanding of complex security analysis methodologies and issues.Collaboratively participate in threat research, analysis, correlation, and development of original intelligence to enable predictive and actionable reporting.Ensure thorough and accurate reporting during and concluding a security incident through strong verbal and written communication.Perform threat hunting efforts, focused primarily on identifying advanced threats that are not detected via traditional security tools.Provide awareness to internal teams and leadership on changes to the security threat landscape through various intelligence collections.Publish internal threat intelligence products and intelligence briefings to provide actionable information to tactical and strategic stakeholders.Establish close relationships with business stakeholders outside of the security team.Create and maintain detailed documentation.QUALIFICATIONS:Minimum 2+ years of experience in Information Security.Minimum 2+ years of Security Information and Event Management (SIEM) experience.Minimum 2+ years of experience with network security, endpoint security, or security threat vectors.Minimum 2+ years of security incident response experience.Excellent interpersonal skills.Ability to manage complex issues and develop solutions.Detail-oriented, excellent communication (oral and written), interpersonal, organizational, and presentation skills.Ability to execute in a fast-paced, high-demand environment while balancing multiple priorities.Strong understanding of attacker tools, techniques, and methodologies. Ability to gather and act on cyber threat intelligence.Programming or scripting experience a plus.Strong collaborative skills and proven ability to work in a diverse team of security professionals.Certifications preferred in one or more of the following:Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Network Forensics Analyst (GNFA), Offensive Security (OSCP/OSCE/etc.), GIAC Cyber Threat Intelligence (GCTI), or other relevant certifications.

#J-18808-Ljbffr