Imagine Pediatrics is hiring a
Security Engineer

Summary

The job is for an Information Security Analyst at Imagine Pediatrics, a pediatrician-led medical group that provides virtual-first care services. The role involves implementing security standards, monitoring and responding to cyber threats, assessing third-party vendor risks, and ensuring compliance with industry standards.

Requirements

• Bachelor of Science degree in Computer Science, Information Security, Business, Management, or related field is desired
• Relevant license or certification(s): GIAC, CISSP, CISA, CISM, CRISC, GCIH, Security+, CySA+, CEH, SSCP, ITIL preferred
• 6+ years of experience as an Information Security Analyst, Risk Analyst, Security Engineer, Information Security Engineer, or similar role
• 4 of the 6+ years of experience are within the healthcare industry
• Experience with managing HITRUST programs
• Proficiency with security tools within the healthcare industry – assessing third-party vendor risks, in relation to compliance and appropriate regulations, safeguarding data, and the identification of potential threats and impacts
• Knowledge of IT systems, processes, and experience within internal technical control systems required
• Experience designing, monitoring, and evaluating controls for effectiveness and efficiency to mitigate areas of risk
• Strong diagnostic abilities
• Comfortable working knowledge of key technology concepts such as access control, confidential data, encryption, business continuity, information security vulnerability scans, and could services
• Proven history executing business impact projects within defined scope, providing deliverables, and within timeframe
• Ability to analyze and perform research
• Strong organizational, analytical, and problem-solving skills
• Works well and is effective in a dynamic and fast-paced environment, adaptable to shifting priorities

Responsibilities

• Designs and implements information security standards for applications and databases
• Assists with designing the IT environmental security controls to conform to relevant industry standards, such as CIS, HIPAA, NIST, HITRUST, and other related state requirements
• Interprets log outputs from a wide selection of physical and virtual network/ host devices and application classes
• Integrates appropriate system and application related logs into SIEM to monitor and alert on threats to the assets supporting enterprise
• Protects against unauthorized access, modification, or destruction
• Creates, implements, and tests incident response procedures for new threat content and alerts
• Continually monitors and shares cyber security intelligence with the IT team
• Designs, implements, and operates information security best practices and procedures utilizing software (examples: utilization of Microsoft Entra, InTune, JAMF, Zscaler)
• Monitors external threat environment to ensure Imagine Pediatrics is responsive to near and far term threats
• Responds to and resolves cyber security threats that may impact the confidentiality, integrity, or availability of Imagine Pediatrics systems and personnel

Benefits

• Competitive medical, dental, and vision insurance
• Healthcare and Dependent Care FSA; Company-funded HSA
• 401(k) with 4% match, vested 100% from day one
• Employer-paid short and long-term disability
• Life insurance at 1x annual salary
• 20 days PTO + 10 Company Holidays & 2 Floating Holidays
• Paid new parent leave