Security Engineer

POSITION SUMMARY: 

The Security Engineer is responsible for engineering oversight of the Sound Physicians technology services. Sound is on the cutting edge of many security changes within our national platform of technologies including cloud services, Identity and access management, single sign on. As part of the Sound Technology team, help us secure and transition our platforms. 

In this position, you will be the “player-coach” for the security team and will work across IT. While partnering with the broader IT department on security related issues, you will also be accountable for ensuring all aspects of the enterprise IT security. You will also work to mature the Secure Development Lifecycle and be a security champion inside and outside of the department.

The successful candidate must be comfortable diving into complex engineering discussions, and leveraging deep security expertise to ensure proper risk assessment and threat analysis is performed. 

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Engineer and build enterprise solutions to lay the groundwork for continued maturity in the cybersecurity space
• Evaluate any proposed technology solutions for adherence to documented company standards, policies, and regulatory responsibilities
• Act as a senior member of the Technology team, providing influence and collaborating with team members to elevate the team’s security knowledge and processes as a unit.
• Participate in architecture and design technology sessions
• Collaborate with teams within the organization to implement cloud and/or hybrid systems that support the business goals
• Advanced troubleshooting skills to drive to the root cause
• Move easily between big picture thinking and managing relevant detail
• Build, maintain and manage central security policies for our cloud infrastructure
• Build a continuous monitoring solution to validate systems against our security baselines
• Implementing industry leading practices around O365/EMS cyber risks and cloud security
• Conducting cloud securityMicrosoft MFA, SSO and other 3^rd party solutions.

SPECIAL KNOWLEDGE, SKILLS AND ABILITIES NEEDED:

• Understanding Microsoft Azure Cloud Security strategy and architecture
• Understanding Enterprise Mobility and Security Suite(EM+S), Advanced Threat Protection (ATP), Azure Information Protection (AIP) and Intune, Azure Key Vault, Azure Security Center, OMS;
• NSG/UDR/ASG Firewall services
• Demonstrating technical experience with enterprise level directory/messaging services (Active Directory, LDAP, Exchange, SharePoint, O365) implementation and operations;
• Cloud Security and Architecture related certifications (VMware, MS Azure etc)
• Familiarity with SOX, HITRUST and HIPAA standards
• Knowledge of NIST
• Knowledge of AWS
• Knowledge of Agile/SCRUM
• Experience in operation and configuration of both Windows and Linux systems
• Excellent oral and written communication skills 
• Excellent attention to detail
• Ability to lead projects
• Strong problem-solving skills 
• Strong knowledge of industry trends in security technology

EDUCATION / EXPERIENCE:

Education

• Minimum: Bachelor’s Degree or five or more years of work experience.  Three or more years of experience with security engineering. One or more of the following certifications: CISSP, CISM, Ethical Hacking, Forensic Handler

Experience

• Minimum: 7 years of security
• Preferred: combined 10 years of security, cloud, information technology

LIST SPECIAL JOB OR ENVIRONMENTAL CONDITIONS:

• Indoor office environment
• Some travel required

OTHER PHYSICAL AND/OR SPECIAL REQUIREMENTS ABOUT YOUR JOB:

• Sitting at desk for up to eight hours (w/breaks)
• Working on computer for up to eight hours (w/breaks)

This job description reflects the present requirements of the position. As duties and responsibilities change and develop, the job description will be reviewed and subject to amendment.