Security Engineer II with Web Application Penetration Testing REMOTE
LOUISVILLE, KY, United States
Our Company
BrightSpring Health Services
Overview
The Security Engineer II is a security subject matter expert in one or more security platform, with security engineering experience in IT Enterprise and network disciplines to support the company's enterprise security objectives.
Responsibilities
- Illustrates proficiency by implementing solutions and enforcing security policies and standards
- Acts as a lead for the Security Engineering team and interacts regularly with other departments to implement solutions and/or act as the primary point of contact for information security matters
- Uses SIEMs and other threat intelligence sources to evaluate the current threat landscape
- Uses security products and techniques to routinely monitor for vulnerabilities, threats, alerts, and attacks
- Determines if any immediate or future action is necessary to protect information system assets and acts accordingly
- Works with Network and Server Administrators to achieve results and submits reports on findings, status, and recommendations to the Security Engineering Manager
- All NIST alignment is done with the expectation that the business needs are paramount
- Works with IT resources and business leaders to assist in the research, development, configuration, upgrade, and implementation of one or two IT Security platforms related products and services and leads and supports projects
- Conducts standard security investigations using data analysis and forensic techniques; supports and is a key member of the Incident Response (IR) team, including standardizing, improving, and maintaining IR processes
- Works with Business Owners and IT Application Development and Infrastructure stakeholders to assist in the planning, and implementation of enterprise-wide security systems, including physical security, authentication mechanisms, cryptography, role-based security, host and backend systems, DMZs, firewalls, VPNs, IPS/IDS systems, penetration testing, vulnerability assessments, and disaster recovery
- Performs other tasks as assigned
Qualifications
- Associate degree in Computer Information Systems or equivalent experience; Bachelor's degree in Computer Information Systems or related field desired
- Minimum of three years Security administration/management in Enterprise environment
- Two or moreyears of either SIEM, IDP, SASE, EDR, Email Security and/or security framework implementation; other end-user, network, and host-based security solutions
- Three or more years in the administration or monitoring of security platforms within an enterprise environment with combination of secure web gateways; endpoint detection and response; remote access technologies; endpoint protection methodologies; secure configuration of network equipment, Microsoft Windows Active Directory, web application development, infrastructure, and database security
- GCIH, OSCP, OSWA certifications preferred
- Preferred experience in Web Application Penetration
- Enterprise Information Security Products and Services; Security Frameworks; Advanced use of MS Office applications, including Visio and Project
- Ability to research, evaluate, and recommend security technology and solutions; define and document internal controls and procedures and conduct routine security audits and risk assessments
- Advanced knowledge of SIEMs, NIST CSF and associated NIST Standards, vulnerability management services, and MS Office applications is a plus
About our Line of Business
BrightSpring Health Services provides complementary and integrated home- and community-based pharmacy and health solutions for complex populations in need of specialized and/or chronic care. Through the Company’s service lines, including pharmacy, home health care and primary care, and rehabilitation and behavioral health, we provide comprehensive care and clinical solutions in all 50 states to over 400,000 customers, clients and patients daily. For more information, visit www.brightspringhealth.com. Follow us on Facebook, Twitter and LinkedIn.Salary Range
USD $115,000.00 - $125,000.00 / Year ApplyJob Profile
- Assist in planning security systems
- Conduct security investigations
- Implement security solutions
- Monitor vulnerabilities and threats
- Support incident response
Active Directory Administration Cryptography Data analysis Database Security Disaster Recovery Endpoint detection and response Firewalls Forensic techniques Incident Response Microsoft Office Microsoft Windows Microsoft Windows Active Directory MS Office Network security NIST CSF NIST Standards Penetration Testing Project Project Management Remote Access Technologies Security Engineering SIEM Threat Intelligence Visio Vulnerability assessment Vulnerability Management Web application development Web Application Penetration Testing
Experience3 years
EducationAssociate degree Bachelor's degree Business Equivalent experience Pharmacy Related Field
Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9