VirtualHealth is hiring a
Security Operations Engineer

Summary

Join VirtualHealth as a Senior Security Operations Engineer to oversee SecOps, conduct threat modeling, and contribute to IAM and IT teams. The ideal candidate has 3-5+ years of experience in security technical roles, with expertise in DevOps-style tools, AWS architecture, and compliance obligations.

Requirements

• 3-5+ years experience in a security technical role
• Comfortable with DevOps-style tools like Ansible, Chef, Terraform, GitHub, Jenkins, Puppet, etc
• Solid understanding of AWS architecture with secure coding practices and automating security checks in pipelines
• Understands the principle of least privilege and the confidentiality, integrity, and availability triad and will work to enforce those concepts in our environment
• Experience with languages such as Python, Javascript, Java, Node.js
• Understanding of compliance obligations including HITRUST and FedRamp
• Demonstrable knowledge of security concepts and common vulnerabilities like the OWASP Top 10
• Strong understanding of virtual machines, containerization, and cloud architecture
• Proven experience with web application and infrastructure penetration testing
• Ability to multitask and prioritize work effectively
• Attention to detail
• Ability to work independently and as part of a team
• US Citizenship per client requirements

Responsibilities

• Oversee the entire SecOps and Cloud Security Operations
• Conduct threat modeling and risk assessment exercises with DevOps team
• Contribute to the IAM and IT teams at VirtualHealth
• Perform regular security assessments of VirtualHealth cloud platforms and software
• Configure systems to comply with industry best practices and hardening standards
• Monitor remediation of vulnerabilities utilizing third-party tools such as Veracode and Orca
• Assist the security team in expanding cybersecurity awareness across the organization through a security review and training sessions with internal staff
• Document security standards and guidelines pertaining to secure cloud management, configuration, and deployment
• Evaluate new technologies, tools, and development techniques that impact security
• Build and maintain security partnership with DevOps and Development leads to remediate vulnerabilities and drive SDLC process improvements

Benefits

• Competitive salary
• Unlimited PTO
• Health, dental, and vision insurance
• 401(k) Participation