SecOps Engineer - InfoMC

SecOps Engineer

InfoMC is a fast-paced, growing company which provides collaborative healthcare process management technology to improve the quality, cost and value of care. At InfoMC, we believe that it is possible to directly improve care through technology, and provide state of the art capabilities that improve care coordination of chronic illness and wellness. Our solution provides process management software to the commercial and public sector markets, for use in managed behavioral healthcare, disease management, and EAP/Work-Life. Our member centric approach offers integrated technology solutions that enhance interaction between payers, providers and consumers.

Do you enjoy working in an entrepreneurial environment solving complex technical problems and delivering innovative solutions?  Are you an energetic, focused, and skilled Security Operations Engineer that has a track record of owning large scale security initiatives while advocating enterprise compliance?  If so, then InfoMC is looking for you.  InfoMC is a fast-paced, growing company which provides collaborative healthcare process management technology to improve the quality, cost and value of care. At InfoMC, we believe that it is possible to directly improve care through technology and provide state of the art capabilities that improve care coordination of chronic illness and wellness. Our solution provides process management software to the commercial and public sector markets, for use in managed behavioral healthcare, disease management, and EAP/Work-Life. Our member centric approach offers integrated technology solutions that enhance interaction between payers, providers and consumers.

The SecOps Engineer is a member of the Technology Operations team and will provide support and enhancements to InfoMC’s cloud security and information security programs including our HITRUST certification. You will work closely with the Product team to evaluate code-bases for secure practices and work to tighten security in our applications and prevent data breaches. The SecOps Engineer will automate the monitoring of existing and future data integrations and applications to ensure best security practices and standards are upheld. Our healthcare-focused business requires stringent adherence to security policies, procedures, and controls. We expect you are well-versed in a healthcare environment with a focus on the confidentiality, integrity, and availability of client information.

The ideal candidate will have a history of repeatedly delivering sustainable solutions that are as simple as they are elegant. You are a constant-learner and strive to set a great example for the team where developing and contributing to a healthy, positive culture is important to you. You are serious about your work and your career and get satisfaction from working on a team that compliments and supports each other.

Duties and Responsibilities

  • Monitors and tests information systems to identify vulnerabilities.
  • Executes or manages mitigation remediation of identified vulnerabilities.
  • Responds to security incidents and perform root cause analysis.
  • Contributes to the development and maintenance of the security strategy, policies, and procedures.
  • Assesses and understands InfoMC’s current security framework and future architecture, providing recommendations for risk reduction.
  • Designs and evangelizes automated security capabilities.
  • Serves as a security expert in application development, database and micro service design, containers, technical policy compliance, HIPAA regulations, and best practices.
  • Analyzes business impact and exposure, based on emerging security threats and risks.
  • Communicates security risks and solutions to stakeholders.
  • Monitors security industry trends, developments and emerging threats, including sharing insight with stakeholders where appropriate.

Qualifications

  • 3+ years’ experience with Microsoft stack web application delivery using C#/.NET, JavaScript, MS SQL Server, TCP/IP, MS Windows.
  • 3+ years’ experience scripting with languages such as PowerShell, Python, Ruby, etc.
  • 3+ years’ experience with security management tools, including ID/PS, WAF, SIEM, FIM, vulnerability scanning, and penetration testing.
  • 2+ years’ experience with HITRUST and HIPAA data privacy practices and regulations and continued compliance.
  • 2+ years’ experience with cloud provider ecosystems, including Amazon Web Services, Microsoft Azure, etc.
  • 2+ years’ experience with security strategy, with a passion to make security realistic, achievable, and integrated into the business processes.
  • Solid interpersonal, written, and oral communication skills and ability to effectively work in an agile team.
  • Authorized to work in the United States. No sponsorship provided by Company.

InfoMC is an equal opportunity employer. Please note that due to COVID, all positions are temporarily remote.

Please send resume and salary requirements to Brooke.Cardarelli-Huff@infomc.com

 

 

Stay in the know.

Sign up to receive InfoMC's emails!