The SecOps Engineer is a member of the Technology Operations team and will provide support and enhancements to InfoMC’s cloud security and information security programs including our HITRUST certification. You will work closely with the Product team to successfully evaluate code-bases for secure practices and work to tighten security in our applications and prevent data breaches. The SecOps Engineer will automate the monitoring of existing data integrations, applications, and onboarding of future clients to ensure best engineering security practices and standards are upheld. Our healthcare-focused business requires stringent adherence to security policies, procedures, and controls. We expect you are well-versed in a healthcare environment with a focus on the confidentiality, integrity, and availability of client information.
The successful candidate will have a history of repeatedly delivering sustainable solutions that are as simple as they are elegant. You are a constant-learner and strive to set a great example for the team where developing and contributing to a healthy, positive culture is important to you. You are serious about your work and your career and get satisfaction from working on a team that complements and supports each other.
Duties and Responsibilities:
- Assesses and understands InfoMC’s current security framework and future architecture, providing recommendations for vulnerability remediation and risk reduction
- Contributes to the development and maintenance of the information security strategy
- Designs and evangelizes automated security capabilities in support of DevOps processes
- Serves as a security expert in application development, database and micro service design, container and/or virtual machine technologies, helping teams comply with information security policies, HIPAA regulations, and best practices
- Analyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks
- Communicates security risks and solutions to business partners and product teams
- Monitor security industry trends, developments and emerging threats including sharing insight with wider team and customers where appropriate
- Strong experience with cloud provider ecosystems, including Amazon AWS, Microsoft Azure, etc.
- Experience scripting with languages such as Python, Ruby, etc.
- Experience with security strategy, with a passion to make security realistic, achievable and integrated into the business processes
- Good understanding of security management solutions including IDS, IPS, SIEM, Vulnerability Scanning, Denial of Service and Continued Compliance
- Experience with HITRUST and HIPAA data privacy practices and regulations
- Solid interpersonal, written, and oral communication skills and ability to effectively work in an agile team
- Local Candidates ONLY – Conshohocken, PA (Suburb of Philadelphia Metro Area)
- Authorized to work in the United States. No sponsorship provided by Company.
Highlighted benefits for being a Team member:
InfoMC is an equal opportunity employer with a generous compensation plan
- Excellent earning potential with qualifying annual bonuses
- Health, Dental and Vision Plan
- Weekly in-office yoga classes
- Monthly lunch provided, fresh fruit, dry snacks available daily
- Life insurance, short- and long-term disability
- 401(k) retirement savings plan
- Paid holidays and vacation
- Gym on premises
- Community volunteering opportunities
- Conveniently located in the heart of Conshohocken, PA; adjacent to the Conshohocken train station for SEPTA Regional Rail Line
- Conveniently located near the 130-mile Schuylkill River Trail
Please send resume to: firstname.lastname@example.org