Information Security Engineer

Information Security Engineer Job Description Template

Our company is looking for a Information Security Engineer to join our team.

Responsibilities:

  • Supports and maintains Certification and Accreditation (C&A) requirements;
  • Perform as a Subject Matter Expert in the realm of Information Security with cross functional teams in the organization;
  • Coordinate with vendors and external security teams to address security issues for external IT services and systems;
  • Do a penetration testing for internal and cloud environment;
  • You will be responsible for the team to evaluate, deploy, and run our current and future security technologies utilizing innovative technology;
  • Recognizes problems by identifying abnormalities; reporting violations;
  • Please note due to the exposure of PHI sensitive data — this role is considered to be a High Risk Role;
  • Contributes to team effort by accomplishing related results as needed;
  • Ensure compliance with HIPAA, HITRUST, SOC 1 Type II, AUP, NIST and other regulations and requirements;
  • Problem solving skills and ability to work under pressure;
  • Skill as a system, network, or information security engineer;
  • Experience implementing and troubleshooting endpoint security tools;
  • Knowledge of the latest security principles, techniques, and protocols;
  • Technical knowledge of database, network, telephony, and operating system security;
  • Bachelor’s degree in Computer Science or related discipline.

Requirements:

  • Manage existing tools;
  • Experience with cloud platforms such as AWS, Microsoft Azure, OpenStack and others;
  • Industry standard security certification(s) a Plus: CISSP, CISA, CISM, etc;
  • 5+ years’ of working experience in an Information Security and Compliance role;
  • 2 – 4 Years Advanced knowledge of the SLDC, QA testing, software development, or application security. (Required);
  • Prior experience in vendor assessment and interpreting and coordinating pen test results is a plus;
  • Hands on knowledge with Burp Suite and Metasploit;
  • Bachelor’s degree in Information Systems;
  • Skill as a system, network, or information security engineer;
  • Problem solving skills and ability to work under pressure;
  • Experience implementing and troubleshooting endpoint security tools;
  • Knowledge of the latest security principles, techniques, and protocols;
  • Experience working with network security controls (Routers, Firewalls, Proxies, ACL’s, Wireless networking protocols);
  • Bachelor’s degree in Computer Science or related discipline;
  • Ability to work with outsourcing vendors including US and off-shore centers.