Sr. Security Engineer, Data Privacy Security

NextGen Healthcare

India
Remote
Education
Industry
Benefits
Experience
Skills
Apply
1,000+ Similar Jobs

Job Description:

Responsible for engineering, implementing, and monitoring security controls and measures for the protection of company confidential and sensitive information systems. Partner with cross-functional teams in a variety of environments to provide updates, analysis, reporting in support of the Data Privacy Security and Risk team daily operations.

  • Responsible for the day-to-day risk management, threat assessment, and incident response; remediate and reduce risk through identification of larger security threats.
  • Develop, execute, and track the performance of security measures to protect information and network infrastructure.
  • Plan, configure, and manage security tools and processes to ensure security controls are met and leveraged against security standards baseline.
  • Create and update project timelines to build out security services, procedures, business processes, technologies, and controls; identify security needs based on ongoing testing and inventory review.
  • Perform Compliance and Audit management review through Governance, Risk, and Compliance (GRC) Tooling.
  • Manage standardization and testing of security system controls to ensure continuity and resilience of security operations.
  • Identify and validate vulnerabilities from a variety of sources; act as a resource and guide to engineering teams to provide guidance for resolution.
  • Monitor information systems for security incidents, threat notifications, and vulnerabilities; develop monitoring and visibility capabilities; report on incidents, vulnerabilities, and trends.
  • Research system vulnerabilities such as malware, ransomware, and other exposures to cloud or system infrastructures.
  • Respond to information security incidents, including investigation, recovery, necessary countermeasures, leadership notification, and appropriate report documentation.
  • Participate in the audit process by external organizations.

Education Required:

  • Bachelor’s degree in Computer Science, Programming, Engineering, or similar field. 
  • Or, any combination of education and experience which would provide the required qualifications for the position.

Experience Required:

  • 6+ years of experience in Cloud Architecture and Networking.
  • Experience working in an environment with one or more of the following: Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley Act (SOX), Security Operation Center (SOC), Payment Card Industry (PCI), GRC, Health Information Trust Alliance (HITRUST).
  • Experience working on cloud-based, enterprise applications and systems.

License/Certification Required: 

  • Certified Information Security Systems Professional (CISSP).
  • Amazon Web Services (AWS) Security Certification.
  • AWS Architecture Certification.
  • Networking, Architecture and Security Certifications such as Information Systems Security Architecture Professional-(ISSAP) or Certified in Risk and Information Systems Control (CRISC).

Knowledge, Skills & Abilities:

  • Knowledge of: Security vulnerability tools; architecture security planning; cloud architecture, security tools, reporting, audit and compliance, and frameworks; crisis operations, risk management, and crisis communication; audit and compliance procedures and best practices; framework adoption; access control systems and physical security systems/components; Microsoft Office Suite.
  • Skill in: Working as member of a team; communicating effectively; establishing and maintaining effective working relationships.
  • Ability to: Design secure networks, systems, and application architectures; work in a fast-paced environment; stay organized, prioritize workload, multi-task, and meet deadlines. Mentor and train colleagues on security protocols to raise awareness of security hygiene to lower threat risk.

The company has reviewed this job description to ensure that essential functions and basic duties have been included. It is intended to provide guidelines for job expectations and the employee's ability to perform the position described. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills and abilities. Additional functions and requirements may be assigned by supervisors as deemed appropriate. This document does not represent a contract of employment, and the company reserves the right to change this job description and/or assign tasks for the employee to perform, as the company may deem appropriate.

NextGen Healthcare is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Read Full Description
Apply
Jobs at NextGen Healthcare
Similar Jobs
Confirmed 18 hours ago. Posted 30+ days ago.

Discover Similar Jobs

Suggested Articles

Managing a Software Career
Demand for (Artificial) Intelligence: Jobs for Engineers & Scientists
Is it Really 10 Times Harder to Get Into Google Than Goldman Sachs?
How to Master the Technical Interview at Google and Facebook
Customer Success
What I Learned In My First Year as a Product Designer

Software Jobs That Allow Remote Work