Career Opportunities: Information Security Architecture and Engineering Lead (27664)

Summary

As an ​Information Security Architecture and Engineering Lead at Gainwell, you will be a part of an innovative healthcare technology company with a mission to serve the healthcare needs of our communities. Gainwell is seeking an experienced Information Security Architecture and Engineering Lead who can provide technical leadership and be accountable for all security-related compliance and delivery for the customers assigned.

Your role in our mission

• Identifies security risks, threats and vulnerabilities of networks, systems, databases, and applications.
• Develops, tests, and operates security platforms including but not limited to Endpoint Protection/XDR solutions, Data Security solutions, and Cloud Security solutions.
• Performs complex engineering analysis; reacts to and initiates corrective action regarding security violations; proactively seeks out areas of improvement.
• Defines and enforces the information security configuration; develops technical and programmatic assessments, evaluates engineering and integration initiatives, and provides technical support in relation to security policies, standards, and guidelines.
• Develops, implements, enforces, and communicates security configuration changes and updates to stakeholders.
• Performs thorough product evaluations, recommends, and implements products/services for new or replacement security technologies.
• Designs and architect’s solutions that meet security requirements and business objectives in a scalable and cost-effective way.
• Reviews, recommends, and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security.
• Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures for the enterprise including but not limited to end-user computing, datacenter, and cloud environments.
• Develops, maintains, and reviews operating procedures and reporting metrics.
• Influences and contributes to the security program development and roadmap planning.
• Provides positive leadership and work guidance to engineering and supporting role resources including governance to business partners and suppliers.

What we're looking for

• Nine or more years of experience in network, host, data, cloud and/or application security in multiple operating system environments
• Experience working with internet, web, application and network security technologies
• Experience working with relevant operating system security (Windows, Solaris, Linux, etc.)
• Experience defining, assessing and deploying Azure, AWS, Microsoft 365 and other cloud security controls
• Experience with desktop management and security controls using Microsoft Defender products and Intune
• Experience with Microsoft Purview and conditional access policies within Entra ID, Azure and Microsoft 365
• Experience working with federal regulations related to information security (FISMA, Computer security Act, HIPAA, etc.)
• Experience working with NIST Special Publications and C & A process methodology
• Possess relevant vendor and industry security and technical certifications (CISSP, CCSP, etc.)
• Strong documentation, communication, and workflow design skills

What you should expect in this role

• Fully Remote Opportunity with the option to work anywhere within the United States
• Opportunities to travel through your work (0-10%)
• Video cameras must be used during all interviews, as well as during the initial week of orientation

This posting is intended for pipelining. We will accept applications on an ongoing basis.