• IT Security Engineer, IT

    Job Locations US-MO-St. Louis
    Requisition ID
    2018-26911
    Category
    Information Technology
  • Overview

    IT Security Engineer, IT


     


    The Security Engineer position is primarily responsible for the design, configuration and management of the security systems and controls for Heartland Dental.  This position also participates in the planning and implementation of security policies and procedures to ensure security controls are in place that are consistent with the company goals, industry best practices and regulatory requirements.  Additionally, this role is responsible for the management and mitigation of risk for all critical systems and infrastructure by assisting with both internal and external compliance audits, use of monitoring and support tools, and continued development of Heartland’s security roadmap.


     


    Heartland Dental proudly supports 800+ dental offices and more than 10,000 team members across the country.  We are hard-working, fun-loving and fast-growing – looking for our next perfect fit!


     


    To give you an idea of the team structure, you will work on a team of technical IT professionals reporting to the IT – Security & Systems Manager.

    Responsibilities

    Below is an overview of the duties and responsibilities you would take on in this role:



    • Propose new technologies or procedures that can be used to further strengthen and improve Heartland’s information security technologies, standards and processes

    • Provide technical support with the implementation and maintenance of Heartland’s information security technologies, standards and processes

    • Analyze and respond to security threats for various offices within the organization

    • Perform network, web application, social engineering tests, and other related penetration tests

    • Ensure proper access controls by investigating unauthorized access attempts, revoking access, reporting violations, monitoring information system access requests, and recommending improvements

    • Assist with the coordination and performance of all third-party penetration testing projects, regulatory examinations, and other external audits of information systems

    • Perform review and validation procedures for all findings noted by third-party testers related to network and web application security

    • Maintain mitigation list to track progress on identified security issues

    • Assist with security incident responses, investigations and reporting

    • Participate in the annual PCI/HIPPA compliance audit assessments and provide support for any items requiring remediation

    • Develop, review and revise security procedures and policies as needed

    • Act as an escalation point of contact to for the security analyst when in depth review of security logs and incidents is necessary

    • Interface directly with the service desk and IT support technicians to provide tier 3 support for Heartland security systems

    • Ability to analyze, evaluate, and assessinformation system security policies, processes and procedures for technical best practices and frameworks

    • Conduct proactive research of the latest technology trends and methods, mentoring team members on new technologies

    • Work closely with vendors to resolve issues and manage security systems

    • Participate in CTF challenges for team building and individual skill building

    Qualifications

    Minimum Requirements:



    • Completion of one of the following:


      • Five years of experience in systems security, systems engineering experience

      • Associate degree and not less than two years of experience in systems security, systems engineering experience

      • Bachelor’s degree in Information Technology, Computer Science or related field with one year of experience in systems security, systems engineering experience




    • Knowledge of information security control practices and frameworks (e.g., CIS CSC, ATT&CK, OWASP, PTES, NIST, etc.) is preferred.

    • Understanding of Network Intrusion Detection Systems (IDS) including SNORT, Suricata, Bro IDS

    • Understanding of Endpoint Protection solutions including Antivirus, Application Whitelisting, HIPS

    • Understanding of a variety of network devices including routers, firewalls, switching, load balancers, and web application firewalls

    • Fundamental knowledge of networking concepts and protocols

    • Knowledge of Active Directory and Group Policy

    • Knowledge of PowerShell or other scripting languages to automate administration tasks

    • Knowledge of HIPAA/PCI information security standards, rules and regulations, and system security principles for risk identification and analysis.

    • Must be able to multi-task and work independently on moderate to complex assignments using independent professional discretion and judgment as well as transition quickly between projects with minimal supervision

    • Strong communications skills, both written and oral. Documentation ability is necessary.

    • Experience with various operating systems (e.g. Windows, Linux, etc.)

    • One or more of the following certifications: Sec+, Net+, CEH or other security certifications.

    • Ability to travel a couple times per year for work and training


     


    Desirable Qualifications:



    • One year or more experience working in a security operations center or network operations center

    • Experience working in an enterprise Healthcare organization

    • Two or more of the following industry certifications CISSP, CEH, GIAC (GSEC, GCIA, GCIH, GMON or similar), or other security certifications.

    • Experience with F5 Big-IP including ASM, LTM

    • Configuration/Management of Fortinet products including FortiGate, FortiManager, FortiAnalyzer or FortiSandbox

    • McAfee Security solutions including ePO, Soldicore and endpoint security threat prevention

    • Enterprise SEIM technologies

    • Nessus Vulnerability Scanner

    • Experience with network penetration test tools including Kali, Metasploit, Burp or other similar tools

    • Office 365 including Azure Information Protection, InTune, MDM or ATP


     


    We put our people first at Heartland Dental, and that shows in our generous benefits package.


     


    Company retains the sole discretion to change the duties of the position at any time.


     


    We provide all employees and applicants for employment the protections of federal, state, and local laws affording equal opportunity in employment.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.