SENIOR SECURITY ENGINEER/ARCHITECT NaviMedix
As America?s largest real-time healthcare communications network, it is NaviNet?s mission to advance the efficiency and quality of care by delivering health plans, providers, patients and partners the advanced solutions, services and expertise needed to streamline business processes and drive industry-leading innovation.
Provide expertise for design and support of Security Administration & Compliance on systems and applications. Responsible for planning and designing security solutions, including installation, upgrades, structure, documentation, 24x7 operational support, process maintenance and security/data protection. Provide guidance in the development of infrastructure requirements with the business, architecture team, and solution teams. Ensure the seamless integration and synchronization of business applications, security, and infrastructure technologies. Lead the introduction of new/incoming security technology projects into production.
(in order to be considered for this position, the individual must be able to perform essential functions listed below):
Subject matter expert for NaviNet?s technical security architecture and roadmap.
Represent the interests and perspective of security and compliance while balancing business requirements.
Develop automated and integrated solutions to meet NaviNet?s Security and Compliance program.
Work with Engineering to introduce secure development and release engineering practices, automation and tools.
Represent the Security function from a secure coding, secure SDLC and tools perspective.
Craft the technical vision for system and network hardening process.
Provide Security Administration on a variety of security tools and utilities.
Proactively monitor and fine tune security systems and processes.
Documenting all security procedures including installation/configuration, environmental variables, maintenance history and upgrades.
Advise, guide and instruct as necessary to promote security best practices and awareness.
Perform Security Administration, proposing enhancements to existing architecture and supporting deployment efforts.
Perform root cause analysis and resolution for all security applications.
Apply industry best practices and tools for threat and vulnerability management
Proactively assess new security products and their integration with existing tool suite.
Develop, support and enforce reference security architecture.
Work with business requirements to develop technical solutions during solutions design.
Recognize, identify, and communicate risks.
ADDITIONAL DUTIES AND RESPONSIBILITIES:
Ability to conceptualize and launch technology projects with demonstrated oral and written ability to communicate effectively with an array of team members.
Testing controls and performing substantive procedures in complex and specialized areas.
Supports and engages in security, technology evaluations and operational activities
Maintain working knowledge of IT pre-production (e.g. system development life cycle, change control, o/s, applications and security) and post- production controls.
Project team leadership as required
Incident management leadership as required
To perform this job successfully, an individual must be able to perform each essential function listed above satisfactorily. Reasonable accommodations may be made in certain circumstances to enable individuals with qualified disabilities to perform the essential functions.
Technical bachelor?s degree or equivalent and relevant experience/training.
Requires 7+ years of related Security Administration infrastructure experience.
Certified Information Systems Security Professional (CISSP) or progress toward and a strong willingness to obtain.
Possess strong analytical and troubleshooting skills.
Interpersonal and Influencing/negotiation skills
Approachable, teachable and a team player
Strong desire to improve operational efficiency
Willingness to work beyond core business hours, if necessary to minimize business interruption during planned or unplanned system events.
Knowledge of security frameworks, operating models and vendor management.
Self-Starter, Results Oriented, Engaged and Professional
NaviNet is committed to providing equal employment opportunity (EEO) to all persons, regardless of proscribed category as protected by local, state and federal regulations. This applies to hiring, tenure of employment, and all terms and conditions of employment.
||Boston, MA |