Sr. Security Engineer Job in Mountain View 94035, California US
eHealthInsurances Services, Inc.
Job Description
Sr. IT Security Engineer
Position Summary:
The Sr. Information Security Engineer is responsible for the architecture, implementation, operation and maintenance of mission-critical enterprise security infrastructure solutions that ensures enterprise information, including health information (PHI, ePHI, PII) is secure from unauthorized access, protected from inappropriate alteration, physically secure, available to authorized users in a timely fashion, and monitored for incidents, breaches, and other anomalies.
This highly visible position will focus on the implementation and management of next generation security solutions, including IPS/IDS, DLP SIEM technologies and will be responsible for the development and documentation of detailed information security designs; for the implementation of said designs through the engineering and operations phases of implementation. The Sr. Information Security Engineer will be expected to work with Information Technology staff on the security controls environment as appropriate and provide feedback on engineering and operational aspects of the Information Security Architecture in order to provide a feedback loop on its effectiveness and efficiency and inform the future direction of the Information Security Architecture and any/all applicable roadmaps.
Responsibilities:
- Design and implement infrastructure to protect the eHealth network.
- Conduct sophisticated security reviews of core infrastructure online applications
- Evaluate the impact of current security advisories and publications
- Evangelize security within eHealth and provide security advice and guidance
- Ensure all security solutions and designs meet local and federal compliance requirements such as HIPAA, SOX, NIST-800, and PCI DSS and coordinate with the Internal Audit and Information Technology teams to successfully complete periodic audits.
- Efficiently manage multiple simultaneous projects
- Provide accurate and timely reporting on all project deliverables.
- Candidate will be expected to participate in an on-call rotation.
- Ability to effectively communicate to technical and non-technical users.
Requirements:
- Knowledge of network-based and system-level attacks and mitigation methods and related Networking hardware - routers, switches, load balancers, etc.
- Knowledge of system-level attacks and mitigation methods with a core competency in Windows, Linux or Mac OS X.
- Next generation firewalls and application identification and tuning. Experience with Palo Alto Networks is highly desirable
- Wireless network security devices such as Cisco WAS
- SSL VPNs - Cisco ASAs
- IPS technology experience with Sourcefire 3D, RNA and RUA preferred
- Vulnerability management - QualysGuard Enterprise Suite PCI
- SIEM - such as ArcSight, Q1 Labs, LogLogic, etc.. Experience with RSA envision preferred.
Experience and Education:
- BS, MS in Computer Science or equivalent experience
- 3 years’ experience in Information Security Engineering, in a technical capacity. Ability to demonstrate experience in performing security design, build, implement, and support for Information Security infrastructure in an enterprise-level environment. Demonstrated experience in technical assessment and design; for both in-house developed solutions and provider-based solutions (cloud, ASP).
- 8 years General Information Technology experience required.
- CISSP preferred (special consideration given for ISSEP concentration certification).
See Job Description
