About Us:
CyncHealth is a statewide Health Information Exchange (HIE) with a purpose to achieve health care transformation through community betterment and collaboration while protecting the security and privacy of medical information. Join our team to play a key role in leading a health data utility, advancing interoperability, and improving healthcare.
Position Summary:
The Senior Cloud Security Engineer is responsible for securely designing, implementing, and ensuring the secure operation of enterprise infrastructure, system interfaces and integrations, and platforms required for cloud computing.
Responsibilities:
- Design and implement security controls on AWS cloud, applying the cloud native security services.
- Monitor cloud environments and respond to security events in accordance with established policy and best practices.
- Routinely complete complex assignments requiring independent action and a high degree of initiative to resolve issues with consistency, urgency, and accuracy.
- Architect, plan, implement, upgrade, and monitor security measures for the protection of local computer networks and AWS cloud infrastructure.
- Collaborate with engineers, integrations team, project managers, and product owners to secure solution deployment throughout product lifecycles.
- Lead security assessments and audits, penetration tests, and vulnerability assessments.
- Lead cross-functional teams in the implementation of infrastructure-as-code (IAC) security, CI/CD pipeline security, and automated security testing.
- Consult and advise staff members on how to appropriately apply cloud security best practices to achieve goals.
- Design and manage IAM policies, roles, and permissions to ensure only authorized users have access to appropriate, required cloud resources based upon role.
- Troubleshoot incidents, identify root causes, fix and document problems, and implement preventative measures for AWS architecture.
- Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies.
- Develop and maintain up-to-date documentation and diagrams for security tools, system environments, and cloud operations; foster a culture of documentation and evidence.
- Perform risk assessments, audits, and tests to ensure proper functioning of data processing activities and security measures.
- Stay up to date with the latest cloud security threats, vulnerabilities, and trends. Share insights with security team to support a culture of continuous learning.
- Collaborate with users to discuss computer data access needs, to identify security threats and violations, and to identify and recommend needed programming or process changes to promote security awareness.
- Act as a liaison across cross functional teams.
- Follow all CyncHealth and applicable regulatory security protocols and procedures.
- Protect assets and the integrity, security and privacy of information entrusted to or maintained by the organization.
- Model CyncHealth code of conduct.
- Other duties as assigned.
Experience/Requirements:
- Bachelor’s degree in computer science, information security or related field required. Master’s degree strongly preferred. Relevant work experience may be considered as an alternative.
- Minimum 7 years of experience working with and managing cloud infrastructure required.
- Ability to identify, remediate, and document complex security risks.
- A recognized cybersecurity certification that demonstrates advanced knowledge and experience (e.g., CISSP, GIAC, CISA, OSCP, CEH, etc.) required.
- Experience in one of the major cloud service providers required. Experience with AWS strongly preferred.
- Advanced knowledge of virtual firewalls, IPSEC VPN tunnels, and networks in AWS cloud environment.
- Experience deploying native AWS Security Services.
- Experience with vulnerability management programs, including identification, remediation, and reporting.
- Advanced understanding of security concepts and tools - Certificates, DLP, WAF, SIEM, firewalls, DDOS prevention, IDS/IPS, privileged access management, Encryption, SSL, VPN, IPSec, TCP/IP, DNS and web security architecture etc.
- Prior experience with CSFs, including HITRUST, NIST, or others.
- Experience mentoring junior security staff members.
- Excellent verbal and written communication skills.
- Organized with attention to detail.
- Ability to maintain strict confidentiality.
Expectations:
- Ability to work on a computer for extended periods of time.
- Ability to stand or sit for extended periods of time.
- Hours are generally Monday-Friday, 8:00 AM-5:00 PM. As operational deliverable deadlines emerge there will likely be extended working hours.
- Light work requiring exertion up to 20 pounds of force occasionally, and/or up to 10 pounds of force frequently, and/or a negligible amount of force constantly to move objects.
- Ability to work from La Vista, NE office with reliable and predictable attendance.
Benefits:
- Medical, Dental, & Vision
- 20 days paid time off annually + 9 paid holidays annually.
- Long & short-term disability (fully paid by CyncHealth)
- Life Insurance (fully paid by CyncHealth)
- 401(k) with 4% matching & immediate vesting
- Parental Leave
- Pet Insurance
- Other voluntary benefits
Disclaimer:
The above statements are intended to describe the general nature and level of work being performed by individuals assigned to this position. The statements are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required for this position.
Must be authorized to work in the United States
Incase you would like to apply to this job directly from the source, please click here
Linked-in
Google