Surescripts
Senior Cloud Security Engineer - GCP
Surescripts, Raleigh, North Carolina, United States, 27601
Surescripts serves the nation through simpler, trusted health intelligence sharing, in order to increase patient safety, lower costs and ensure quality care. We deliver insights at critical points of care for better decisions - from streamlining prior authorizations to delivering comprehensive medication histories to facilitating messages between providers.
Job Summary
The Senior Cloud Security Engineer - GCP helps architect, deploy, and operate the security cloud infrastructure that aligns with business needs. The position is responsible for supporting operational innovation and providing security direction to the business to elevate the company's security posture within its cloud computing infrastructure. Along with security leadership, the Senior Cloud Security Engineer - GCP will consistently assess the threat landscape and adapt quickly to protect the business from risk.Responsibilities
Develop and maintain secure, resilient enterprise-grade cloud processes in tandem with architects and system engineers.
Secure business applications and computing environments across commercial, private or hybrid cloud infrastructures.
Protect business applications in compliance with privacy, security, business resiliency and compliance frameworks as defined in corporate policies.
Maintain a consistent, secure cloud security environment. Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
Deploy strong identity and access management (IAM) controls across applications and computing environments.
Assist with development, maintenance, and utilization of scripts (e.g., Python, Ruby, PowerShell, JavaScript) to support custom extract, transform load (ETL) tools with a security focus for data flow.
Attend regular technical project and implementation meetings and serve as the security consultant to help guide secure cloud application and infrastructure configurations.
Actively monitor, assess, and recommend tactical and strategic initiatives based on new and emerging threats posing risk to cloud computing environments.
Manage remediation efforts after security assessment findings identify weaknesses requiring attention.
Document, formulate and enforce areas of security improvement that balance risk with business operations and do not diminish efficiencies or innovation.
Assist in maintaining strong oversight with cloud computing vendors and solution providers to safeguard against undue risk presented by external entities. Escalate to security management and business unit leads when points of weakness are discovered.
Stay apprised of current and proposed security changes impacting regulatory, privacy and security industry best practice guidance. Apply learned knowledge across key lines of business, including products, practices, and procedures.
Serve as a key resource in incident response to track occurrence and resolution, with strict documentation and reporting as well as engagement with security operations and incident response teams.
Attend and fully engage in change and project management meetings.
Produce security metrics for security and business leaders.
Provide and participate in cross training to ensure business continuity.
Perform other duties as assigned.
QualificationsBasic Requirements:
Bachelor's degree in computer science, information systems, MIS or related field, or equivalent experience.
5+ years of experience in progressive, related experience in cybersecurity as a practitioner.
2+ years of experience with Google Cloud Platform (GCP).
Strong Linux and Windows support skills.
Experienced in cloud networking architecture and cloud operations.
Familiarity with tools such as Terraform, Git, Jenkins, Chef, Puppet and Salt.
Network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI).
Familiarity with security solutions such as CrowdStrike, Tenable, XSOAR, Proofpoint, Splunk.
Experience with scripting languages such as Python, Ruby, PowerShell and JavaScript.
Experience and understanding of various regulatory requirements and laws, including but not limited to: HITRUST, HIPAA, NIST, SOC2.
Up-to-date understanding of a wide range of incident response, system configuration, vulnerability management and hardening guidelines.
Cyber security experience and proficiency in: API's, infrastructure layers, hardware, OS, virtualization, storage, network, database and other related systems and technologies, information security risk and vulnerability remediation, automation and scripting, network monitoring, malware protection and analysis, intrusion detection and SIEM systems.
Solid understanding of data security requirements, policies, compliance, auditing and regulatory processes.
Preferred Qualifications:Holds or working toward one or more: CCSP, CISSP, GCP Certification.
Keywords: cloud security, Google Cloud Platform, GCP, SIEM, XSOAR, Terraform, Splunk, scripting#LI-REMOTESurescripts embraces flexibility through its Flexible Hybrid Work model for most positions. This model allows employees to work virtually while still utilizing our offices as collaboration centers. With alignment and agreement from your leadership, you can come and go from the office as needed.
What You're Like
You're technical. Analytical. Imaginative. Maybe you're building your own crypto-mining rig-or not. Either way, your mind works to anticipate vulnerabilities and protect the company and its information against those vulnerabilities. You do the right thing because it's the right thing without seeking to point fingers or brag. And of course, you're always willing to keep learning.
What We're Like
We're a team of friendly folks who do serious work. Our best work is done by rising to the occasion under stress, but we keep each other cool under pressure. We're a tight team but we also look for ways to partner across the business. Our style is casual and laid back, but we shoulder our responsibility to protect patient data from sophisticated adversaries, which sometimes means delivering a difficult truth.
What the Work is Like
Our challenge is to protect our customers' data and our company. This requires anomaly analysis, risk reviews, pen testing of our controls, red-teaming and tabletops, policy and procedure work, documentation, and audits. We also engineer and maintain our security products and tools. It's not always a typical 9-to-5 gig, of course, but then again, you work in information security, so you already know that.
Why Wait? Apply NowWe're a midsize company. This means you're not just another employee ID number. Here, you can build real relationships and feel supported by truly awesome people with diverse backgrounds and talents in an innovative and collaborative work culture. We strive to create an environment where you can be yourself, share your ideas and work your way. We offer opportunities for employee development, as well as competitive compensation packages and extensive benefits.
At Surescripts, base pay is one part of our Total Rewards Package (which may also include bonus, benefits etc.) and is determined within a range. The base pay range for this position is $119,700 - $146,300 per year. Your base pay may vary within or outside of this range depending on a number of factors, including (but not limited to) your qualifications, skills, experience, and location.Benefits include, but are not limited to, comprehensive healthcare (including infertility coverage), generous paid time off including paid childbirth and parental leave and mental health days, pet insurance, and 401(k) with company match and immediate vesting. To learn more, review the Keep You and Yours Healthy, Balancing Work and Life, and Where Talent Takes Shape links under the Better Benefits. Better Work. Better Life section of our careers site.
Physical and Mental RequirementsWhile performing duties of this job, an employee may be required to perform any, or all of the following: attend meetings in and out of the office, travel, communicate effectively (both orally and in writing), and be able to effectively use computers and other electronic and standard office equipment with, or without, a reasonable accommodation. Additionally, this job requires certain mental demands, including the ability to use judgement, withstand moderate amounts of stress and maintain attention to detail with, or without, a reasonable accommodation.Work EnvironmentSurescripts embraces flexibility through its Flexible Hybrid Work model for most positions. This model allows employees to work virtually while still utilizing our offices as collaboration centers. With alignment and agreement from your leadership, you can come and go from the office as needed.Surescripts is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate on the basis of race, color, religion, age, national origin, ancestry, disability, medical condition, marital status, pregnancy, genetic information, gender, sexual orientation, parental status, gender identity, gender expression, veteran status, or any other status protected under federal, state, or local law.
Job Summary
The Senior Cloud Security Engineer - GCP helps architect, deploy, and operate the security cloud infrastructure that aligns with business needs. The position is responsible for supporting operational innovation and providing security direction to the business to elevate the company's security posture within its cloud computing infrastructure. Along with security leadership, the Senior Cloud Security Engineer - GCP will consistently assess the threat landscape and adapt quickly to protect the business from risk.Responsibilities
Develop and maintain secure, resilient enterprise-grade cloud processes in tandem with architects and system engineers.
Secure business applications and computing environments across commercial, private or hybrid cloud infrastructures.
Protect business applications in compliance with privacy, security, business resiliency and compliance frameworks as defined in corporate policies.
Maintain a consistent, secure cloud security environment. Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
Deploy strong identity and access management (IAM) controls across applications and computing environments.
Assist with development, maintenance, and utilization of scripts (e.g., Python, Ruby, PowerShell, JavaScript) to support custom extract, transform load (ETL) tools with a security focus for data flow.
Attend regular technical project and implementation meetings and serve as the security consultant to help guide secure cloud application and infrastructure configurations.
Actively monitor, assess, and recommend tactical and strategic initiatives based on new and emerging threats posing risk to cloud computing environments.
Manage remediation efforts after security assessment findings identify weaknesses requiring attention.
Document, formulate and enforce areas of security improvement that balance risk with business operations and do not diminish efficiencies or innovation.
Assist in maintaining strong oversight with cloud computing vendors and solution providers to safeguard against undue risk presented by external entities. Escalate to security management and business unit leads when points of weakness are discovered.
Stay apprised of current and proposed security changes impacting regulatory, privacy and security industry best practice guidance. Apply learned knowledge across key lines of business, including products, practices, and procedures.
Serve as a key resource in incident response to track occurrence and resolution, with strict documentation and reporting as well as engagement with security operations and incident response teams.
Attend and fully engage in change and project management meetings.
Produce security metrics for security and business leaders.
Provide and participate in cross training to ensure business continuity.
Perform other duties as assigned.
QualificationsBasic Requirements:
Bachelor's degree in computer science, information systems, MIS or related field, or equivalent experience.
5+ years of experience in progressive, related experience in cybersecurity as a practitioner.
2+ years of experience with Google Cloud Platform (GCP).
Strong Linux and Windows support skills.
Experienced in cloud networking architecture and cloud operations.
Familiarity with tools such as Terraform, Git, Jenkins, Chef, Puppet and Salt.
Network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI).
Familiarity with security solutions such as CrowdStrike, Tenable, XSOAR, Proofpoint, Splunk.
Experience with scripting languages such as Python, Ruby, PowerShell and JavaScript.
Experience and understanding of various regulatory requirements and laws, including but not limited to: HITRUST, HIPAA, NIST, SOC2.
Up-to-date understanding of a wide range of incident response, system configuration, vulnerability management and hardening guidelines.
Cyber security experience and proficiency in: API's, infrastructure layers, hardware, OS, virtualization, storage, network, database and other related systems and technologies, information security risk and vulnerability remediation, automation and scripting, network monitoring, malware protection and analysis, intrusion detection and SIEM systems.
Solid understanding of data security requirements, policies, compliance, auditing and regulatory processes.
Preferred Qualifications:Holds or working toward one or more: CCSP, CISSP, GCP Certification.
Keywords: cloud security, Google Cloud Platform, GCP, SIEM, XSOAR, Terraform, Splunk, scripting#LI-REMOTESurescripts embraces flexibility through its Flexible Hybrid Work model for most positions. This model allows employees to work virtually while still utilizing our offices as collaboration centers. With alignment and agreement from your leadership, you can come and go from the office as needed.
What You're Like
You're technical. Analytical. Imaginative. Maybe you're building your own crypto-mining rig-or not. Either way, your mind works to anticipate vulnerabilities and protect the company and its information against those vulnerabilities. You do the right thing because it's the right thing without seeking to point fingers or brag. And of course, you're always willing to keep learning.
What We're Like
We're a team of friendly folks who do serious work. Our best work is done by rising to the occasion under stress, but we keep each other cool under pressure. We're a tight team but we also look for ways to partner across the business. Our style is casual and laid back, but we shoulder our responsibility to protect patient data from sophisticated adversaries, which sometimes means delivering a difficult truth.
What the Work is Like
Our challenge is to protect our customers' data and our company. This requires anomaly analysis, risk reviews, pen testing of our controls, red-teaming and tabletops, policy and procedure work, documentation, and audits. We also engineer and maintain our security products and tools. It's not always a typical 9-to-5 gig, of course, but then again, you work in information security, so you already know that.
Why Wait? Apply NowWe're a midsize company. This means you're not just another employee ID number. Here, you can build real relationships and feel supported by truly awesome people with diverse backgrounds and talents in an innovative and collaborative work culture. We strive to create an environment where you can be yourself, share your ideas and work your way. We offer opportunities for employee development, as well as competitive compensation packages and extensive benefits.
At Surescripts, base pay is one part of our Total Rewards Package (which may also include bonus, benefits etc.) and is determined within a range. The base pay range for this position is $119,700 - $146,300 per year. Your base pay may vary within or outside of this range depending on a number of factors, including (but not limited to) your qualifications, skills, experience, and location.Benefits include, but are not limited to, comprehensive healthcare (including infertility coverage), generous paid time off including paid childbirth and parental leave and mental health days, pet insurance, and 401(k) with company match and immediate vesting. To learn more, review the Keep You and Yours Healthy, Balancing Work and Life, and Where Talent Takes Shape links under the Better Benefits. Better Work. Better Life section of our careers site.
Physical and Mental RequirementsWhile performing duties of this job, an employee may be required to perform any, or all of the following: attend meetings in and out of the office, travel, communicate effectively (both orally and in writing), and be able to effectively use computers and other electronic and standard office equipment with, or without, a reasonable accommodation. Additionally, this job requires certain mental demands, including the ability to use judgement, withstand moderate amounts of stress and maintain attention to detail with, or without, a reasonable accommodation.Work EnvironmentSurescripts embraces flexibility through its Flexible Hybrid Work model for most positions. This model allows employees to work virtually while still utilizing our offices as collaboration centers. With alignment and agreement from your leadership, you can come and go from the office as needed.Surescripts is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate on the basis of race, color, religion, age, national origin, ancestry, disability, medical condition, marital status, pregnancy, genetic information, gender, sexual orientation, parental status, gender identity, gender expression, veteran status, or any other status protected under federal, state, or local law.