Information Security Engineer (Remote)

LOCATION:  Remote – This is a home based, virtual position that operates within the hours of 8:30am-5:00pm EST. Vaya Health welcomes applications from NC, SC, GA, TN, VA, MD, and FL.

GENERAL STATEMENT OF JOB

The Information Security Engineer serves on the Security Operations Team, employing knowledge and experience to help develop strategy, standards, and processes and to utilize technology to discover, remediate, and recover from security incidents. Utilize on-premises and Cloud technologies such as the Endpoint Protection, Vulnerability Management, Security Information and Event Management (SIEM), Intrusion Detection and Prevention System (IDPS), Data Loss Prevention (DLP), measure and content filtering, provide access control management for all staff, and other tools to support and maintain overall security operations. Compiles metrics to demonstrate the effectiveness of the security tools and processes.

ESSENTIAL JOB FUNCTIONS

Operational Processes:

• Assist in design and management of security technology processes, procedures, and solutions, which include Endpoint Protection, Vulnerability Management, Content Filtering, SIEM, and IDPS.
• Monitor viruses, malware, and intrusions.
• Conduct incident prevention, detection, containment, eradication and recovery across IT systems, including developing processes, monitoring events, responding to incidents, summarizing, and reporting of findings.
• Conduct advanced log analysis; monitor and respond to escalated security incidents.
• Assist for onboarding, transfer, and separation of Vaya Health staff regarding information systems to include New Employee Orientation (NEO).
• Maintain documentation of security standards, procedures, processes, and guidelines, including security breach resolution procedures.

Projects:

• Understand and provide recommendations for security policies and standards and how they align to the business.
• Understand the different regulatory compliance standards and can communicate how they are applicable.
• Ability to communicate the NIST 800-53 controls to business and IT.
• Assist with path to SOC 2 Type 2 certification.

Customer Service:

• Provide direct support to business and IT staff for security related issues, which may include issues with security tools.
• Provide after hours on-call support as required.
• Responsible for end user training and education regarding security procedures and policies for incident mediation.

KNOWLEDGE OF JOB

• Experience in understanding and implementing NIST controls.
• Experience with host and network security technologies such as firewalls, proxies, and operating systems.
• Experience with Windows Active Directory.
• Knowledge of application and network security.
• Experience communicating conceptual and technical information.
• Experience translating technical data into business impact information.
• Ability to manage timelines and meet tight deadlines.
• Detail oriented with excellent oral and written communication skills.
• Manage and prioritize multiple tasks.
• Excellent interpersonal skills needed to work with various levels of technical and managerial staff members.
• Self-motivated, constructive and positive attitude.
• Strong analytical and problem-solving skills.
• Ability to present data in a consistent and clear manner.

QUALIFICATIONS & CREDENTIALING REQUIREMENTS 

Bachelor’s degree required, preferrable in IT, Business, Information Technology, Information Security, or closely related field. Four (4) to Seven (7) years of experience in Information Security with demonstratable hands-on technical skills required.

Required licensure/certification/membership:

PHYSICAL REQUIREMENTS 

• Close visual acuity to perform activities such as preparation and analysis of documents; viewing a computer terminal; and extensive reading. 
• Physical activity in this position includes crouching, reaching, walking, talking, hearing and repetitive motion of hands, wrists and fingers. 
• Sedentary work with lifting requirements up to 10 pounds, sitting for extended periods of time. 
• Mental concentration is required in all aspects of work.

RESIDENCY REQUIREMENT: The person in this position must live in NC, SC, GA, TN, VA, MD, or FL.

SALARY: Depending on qualifications & experience of candidate. This position is exempt and is not eligible for overtime compensation.

DEADLINE FOR APPLICATION: Open until filled

APPLY: Vaya Health accepts online applications in our Career Center, please visit https://www.vayahealth.com/about/careers/.

Vaya Health is an equal opportunity employer.