Info Security Engineer II (Remote)
Description
American Specialty Health Incorporated is seeking an Information Security Engineer II to join our Information Security Operations (ISO) team. This position will improve, validate, complete and enhance the security functionality and effectiveness of our Information Technology investments. This position will work closely, almost embedded with, Information Technology Operations and be integral to the great relationship that Security Operations and IT Operations maintain, reducing cyber risks to the organization.
Remote Worker Considerations
Candidates who are selected for this position will be trained remotely and must be able to work from home (WFH) in a designated work area with company-provided technology equipment. This remote/WFH position requires you have a stable connection to your Internet Service Provider with the ability to participate by video in online meetings over a reliable and consistent network (minimum internet download of 50 Mbps and 10 Mbps upload speed).
Responsibilities
- Performs day-to-day information security functions.
- Monitoring, threat hunting and validating firewall effectiveness; optimizing firewall policies and security configuration for both Internet, hardware, virtual and software defined platforms.
- Building out and managing enterprise level vulnerability management program.
- Optimize logging, eventing and alerting for ASH and MSSP data flows.
- Resource IT Operations and Security Operations projects, change management events, security and ITO incidents, can vulnerability/patching events as a subject matter expert and representative of Enterprise Security Programs.
- Promote understanding and adherence to the necessary policies, standards, and procedures to maintain security posture
- Participate in incident response planning as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary
- Build system baselines to be adhered to for all future build outs.
- Keep abreast of emerging security technologies and make appropriate recommendations regarding their implementation.
- Coordinates security issue and remediation efforts between different ASH teams, sets clear expectations about responsibilities, communicate about outcomes and measure success, escalates and communicates to management appropriately.
- Responds to security alerts and identify alerts from raw observations.
- Maintains updated documentation of technical controls, processes and procedures.
- Implements, manages, and enforces company information security policy and procedures.
- Availability for afterhours work and occasional travel required.
Qualifications
- Bachelor’s degree in IT or Information Security related field, or relevant work experience. If equivalent experience, high school diploma required.
- 4 years of experience in IT with minimum 3 years with an information security focus, and/or security administration roles.
- Strong experience and detailed technical knowledge in security architecture, systems and network security, authentication, and application security
- Experience with enterprise vulnerability management solutions and reporting to key stakeholders.
- Experience with security vulnerabilities, risk handling and secure systems design.
- Experience with firewall, endpoint, and other information security mitigating technologies.
- Experience with SIEM, MSSP/MDR management, and related security logging implementations and architecture.
Core Competencies
- Demonstrated ability to interact in a positive, respectful manner and establish and maintain cooperative working relationships.
- Ability to display excellent customer service to meet the needs and expectations of both internal and external customers.
- Excellent listening and interpersonal communication skills to identify critical core competencies based on success factors and organizational environment.
- Ability to effectively organize, prioritize, multi-task and manage time.
- Demonstrated accuracy and productivity in a changing environment with constant interruptions.
- Demonstrated ability to analyze information, problems, issues, situations and procedures to develop effective solutions.
- Ability to exercise strict confidentiality in all matters.
Mobility
Primarily sedentary, able to sit for long periods of time.
Physical Requirements
Ability to speak, see and hear other personnel and/or objects. Ability to communicate both in verbal and written form. Ability to travel within the facility. Capable of using a telephone and computer keyboard. Ability to lift up to 10 lbs.
Environmental Conditions
Work-from-home (WFH) environment.
American Specialty Health is an Equal Opportunity/Affirmative Action Employer.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected Veteran Status, or any other characteristic protected by applicable federal, state, or local law.
Please view Equal Employment Opportunity Posters provided by OFCCP here.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our career center as a result of your disability. To request an accommodation, contact our Human Resources Department at (800) 848-3555 x6702.
ASH will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company’s legal duty to furnish information.
#LI-Remote #Security #InfoSec #Firewall #Engineer