Security Engineer III

The Security Engineer III is responsible for designing and implementing robust security measures to protect Evolent’s on premisecloud infrastructure and applications. The ideal candidate will have a deep understanding of security best practices, as well as in enhancing Evolent’s security posture through comprehensive security design, implementation, and management.

The Security Engineer III will work closely with crossfunctional teams to develop and execute security strategies that align with business objectives and industry best practices.

Responsibilities:

• Develop comprehensive on premisecloud security strategies and architectural blueprints that align with business objectives and regulatory requirements.
• • Design and implement secure data layering techniques to safeguard sensitive data across Evolent’s on premise and cloudbased systems and databases.
  • • Create and maintain security policies, standards, and guidelines to ensure consistent security practices across the organization.
    • • Evaluate and recommend security technologies and tools that enhance security and operational efficiency, including Palo Alto Prisma, ZIA, and ZPA.
      • • Implement REST API security best practices to protect data transmission and prevent unauthorized access.
        • • Collaborate with development teams to integrate security controls into the software development lifecycle.
          • • Participate in regular security assessments and vulnerability assessments within on premisecloud infrastructure and applications.
            • • Provide expertise and guidance in incident response and resolution, including identifying and mitigating security breaches.
              • • Monitor security logs and alerts using SIEM or similar tools and respond to security incidents in a timely manner.
                • • Stay up to date with the latest security trends, threats, and technologies, and proactively make recommendations for improvement.
                  • • Accept mentoring and support technical guidance to more senior security team members.

                    • Additional Responsibilities:

                      • Ensure that Evolent’s on premisecloud infrastructure and applications meet the requirements of HIPAA, HITECH, and other applicable regulations.
                      • • Assist with development and implementation of security controls to protect patient data from unauthorized access, disclosure, alteration, or destruction.
                        • • Work with the privacy team to ensure that Evolent’s privacy policies and procedures are aligned with its security practices.
                          • • Represent Evolent at industry conferences and events to share best practices and collaborate with other healthcare organizations on cloud security.

                            • Qualifications:

                              • Bachelor’s or master’s degree in computer science, Information Security, or a related field.
                              • • Proven experience (4+ years) as a Security Engineer or a similar role in designing and implementing secure infrastructure solutions.
                                • • Experience with data layering techniques and securing sensitive data.
                                  • • Strong understanding of REST APIs and their security implications.
                                    • • Handson experience with security tools such as Splunk, SIEM, IDSIPS, WAF, etc.
                                      • • Indepth knowledge of on premise and cloud security best practices, including IAM, encryption, network security, and identity federation.
                                        • • Familiarity with industry compliance standards such as ISO 27001, NIST, PCI DSS, GDPR, etc.
                                          • • Proven ability to assess and mitigate security risks and vulnerabilities.
                                            • • Excellent analytical and problemsolving skills, with strong attention to detail.
                                              • • Strong communication and interpersonal skills, with the ability to communicate complex security concepts to technical and nontechnical stakeholders.
                                                • • Relevant certifications (e.g., AWS Certified Security Specialty, Certified Cloud Security Professional (CCSP), CISSP) will be an advantage.

                                                  • To comply with HIPAA security standards (45 C.F.R. sec. 164.308 (a) (3)), identity verification may be required as part of the application process. This is collected for compliance and security purposes and only reviewed if an applicant advances to the final interview state. Reasonable accommodations are available upon request.

                                                    Technical Requirements:

                                                    We require that all employees have the following technical capability at their home: High speed internet over 10 Mbps and, specifically for all call center employees, the ability to plug in directly to the home internet router. These athome technical requirements are subject to change with any scheduled reopening of our office locations.

                                                    Evolent is an equal opportunity employer and considers all qualified applicants equally without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, or disability status. If you need reasonable accommodation to access the information provided on this website, please contact recruiting@evolent.com for further assistance.

                                                    The expected base salarywage range for this position is $88,300 128,100. This position is also eligible for a bonus component that would be dependent on predefined performance factors. As part of our total compensation package, Evolent is proud to offer comprehensive benefits (including health insurance benefits) to qualifying employees. All compensation determinations are based on the skills and experience required for the position and commensurate with experience of selected individuals, which may vary above and below the stated amounts.