SCA Health
Senior Information Security Engineer
SCA Health, Myrtle Point, Oregon, United States, 97458
Senior Information Security EngineerBirmingham, AlabamaSurgical Care AffiliatesTechnologyRegularFull–time1USD $88,000.00/Yr.USD $104,000.00/Yr.36236OverviewToday, SCA Health has grown to 11,000 teammates who care for 1 million patients each year and support physician specialists holistically in many aspects of patient care. Together, our teammates create value in specialty care by aligning physicians, health plans and health systems around a common goal: delivering on the quadruple aim of high–quality outcomes and a better experience for patients and providers, all at a lower total cost of care.As part of Optum, we participate in an integrated care delivery system that enables us to support our partners as they navigate a complex healthcare environment.ResponsibilitiesWe are seeking a seasoned Senior Information Security Engineer to strengthen our IT Security team. This role involves overseeing a broad range of security functions, including vulnerability management, intrusion prevention systems (IPS), data classification, web proxy management, SIEM monitoring, anti–virus management, and comprehensive security monitoring. The Senior Information Security Engineer will be responsible for maintaining the security posture of the organization's infrastructure, collaborating with cross–functional teams, and ensuring the implementation of security best practices across all areas.As a key contributor, the ideal candidate will have a strong technical background across multiple security domains and be capable of leading initiatives to detect, respond to, and remediate threats. They will also play a vital role in mentoring junior engineers and analysts, fostering a culture of continuous learning and collaboration.Key Responsibilities:Perform vulnerability assessments and collaborate with IT Teams to implement remediation strategies.Participate in incident response efforts by identifying, analyzing, and responding to security threats.Continuously gather and integrate threat intelligence to improve detection and defense capabilities.Implement and manage data classification protocols to safeguard sensitive information.Maintain and enhance the organization's intrusion prevention systems (IPS) and anti–virus management tools.Oversee security monitoring activities, ensuring timely detection of potential security incidents.Work closely with IT and business teams to implement security best practices and ensure compliance with established policies.Lead security–related projects from design through implementation, ensuring timely completion and alignment with security objectives.Conduct security control assessments and recommend enhancements to improve the organization's security posture.Mentor and train junior engineers and analysts to promote knowledge sharing and professional growth within the team.Develop and maintain up–to–date Information Security policies, guidelines, and standards based on evolving security trends and internal needs.Stay informed with the latest security threats and vulnerabilities, sharing knowledge with the team to adjust security strategies accordingly.Perform other duties related to security operations as required.QualificationsDesirable Skills:Experience with scripting languages (Powershell, Python, Perl, etc.) to automate routine security tasks.Familiarity with penetration testing methodologies and tools to identify vulnerabilities and enhance security system defenses.Knowledge of cloud security practices and controls, particularly in hybrid environments.Understanding of network protocols, packet analysis, and the ability to use forensic tools for investigation purposes.Ability to work effectively in a fast–paced dynamic environment with shifting priorities.Mentoring and Development:Serve as a mentor to junior security staff, guiding them in technical growth and fostering a collaborative and innovative work culture.Lead by example in fostering an environment of continuous learning and professional development.Minimum Qualifications :Bachelor's degree in Computer Science, Information Security, Information Technology, or a related field. Equivalent experience and relevant certifications may be considered.3–5 years of experience in information security, managing and deploying a range of security tools and technologies such as SIEM, IPS/IDS, Vulnerability Management, and Endpoint Security.Security certifications such as CISSP, CEH, GCIH, or equivalent are preferred.Other QualificationsProven experience in incident response, including threat detection, analysis, and remediation.Experience with security projects such as system hardening, security tool implementation, or risk assessments.Extensive knowledge of security tools and technologies, including SIEM, IDS/IPS, web proxies, anti–virus, and vulnerability management systems.Strong communication skills, with the ability to translate complex security concepts into actionable recommendations for both technical and non–technical stakeholders.Strong analytical and troubleshooting skills to diagnose security incidents and implement effective countermeasures.Ability to balance security requirements with business operational needs.
#J-18808-Ljbffr
#J-18808-Ljbffr