Senior Security Engineer
Job Description
Planned Parenthood of Orange and San Bernardino Counties has a full-time opportunity for a Senior Security Engineer in Anaheim, CA.
The Senior Security Engineer role is to architect overall cyber security posture for our organization. This position is responsible for securing critical infrastructure against vulnerabilities and deploying appropriate countermeasures. Additional responsibilities include troubleshooting, implementing, and supporting cybersecurity technologies and practices.
The primary duty is to maintain and implement security layers to protect the usability and integrity of company’s network and data. It includes both hardware and software technologies. Other duties include maintaining and monitoring Firewalls, IDS, IPS, AV, Patching, Vulnerability Scanning, Internal/External Penetration testing, Active Directory, Exchange, file sharing, VMware virtual servers, desktops, and storage.
This individual will apply proven communication, analytical, and problem-solving skills to help identify, communicate, and resolve security issues as part of the overall effort to provide the highest quality service in support of the organization’s administrative and healthcare functions.
At PPOSBC, we understand the importance of a well-rounded benefits program and are dedicated to providing you with unique benefits that meet the needs of you and your family. We are proud to offer a range of plans that help protect you in the case of illness or injury including:
- A competitive benefits package including medical, dental, and vision coverage for you and eligible dependents, life insurance, and long term disability.
- Benefits coverage starts after one full month of employment!
- Generous vacation, sick, and holiday benefits!
- Generous 401(k) matching contributions and more!
- To view our detailed benefits guide, please visit our career site at www.pposbccareers.org
Responsibilities
Essential Functions: Essential functions encompass the required tasks, duties, and responsibilities performed as part of the job and the reason the job exists.
Technology Architecture, Security, and Service Delivery:
- Assist with the implementation of cyber security measures protecting information and communication technologies.
- Design and implement robust, scalable, and secure solutions. - Develop and maintain security diagrams and documentation. - Evaluate and integrate new technologies to improve security.
- Overseeing and participating in penetration testing and security risk assessments including remediation of discovered vulnerabilities
- Conduct audits of enterprise systems to ensure security posture in alignment with industry best practices.
- Lead efforts to automate patch management and ensure systems are patched timely.
- Manage all security-related systems and appliances
- Identifying and resolving security incidents in a timely manner, collaborating with IT teams.
- Architecting secure cloud-based solutions.
- Ensuring data classification and protection is conducted and aligned with regulatory requirements such as HIPPA and PCI.
- Administration and management of security solutions, including end-point protection, hard drive encryption, web content filtering, firewalls, third-party software patch management, and MFA.
- Architecting Cyber Security Recovery plan including business continuity and disaster recovery.
- Design and deployment of Role Based Access control in the cloud.
- Responsible for Data Loss Prevention including email encryption and protecting against data exfiltration.
- Management of organization wide security awareness training.
- Mentoring junior Engineers.
Non-Essential Functions:
- Other duties as assigned.
Job Requirements
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Licensure and/or Certification Requirements:
- Security related IT Certifications such as CEH, CISSP, CCSP, OSCP, Azure Security.
Minimum Education:
- BS in computer science or related field preferred or a proven combination of education and/or experience.
Minimum Work Experience:
- 7+ years with IDS, IPS, End Point Protection tools, Next Generation Firewalls, and SDWAN appliances.
- 7+ years with batch file scripting and PowerShell scripting.
- Experience with various Security platforms including vulnerability scanning and penetration testing and using industry standards.
- 7+ years of experience with Linux Operating Systems.
Other Requirements:
- Passion for Security.
- Ability to identify and resolve security threats.
- Excellent written and verbal communication skills.
- Accuracy and attention to detail essential.
- Ability to teach and communicate effectively regarding system and data needs with diverse users with a wide range of computer and analytical skills. Maintain professional demeanor at all times.
- The ability to function at a high level in a team-oriented environment is required.
- Availability to work flexible hours as required.
Agency Standard Requirements:
- Strong commitment to quality healthcare and excellent customer service is required.
- Must thrive in a fast-paced, rigorous environment with changing priorities.
- Ability to meet deadlines and work under pressure.
- Must demonstrate high-level computer skills, including Microsoft Word, Excel, and Outlook. Electronic medical records experience may also be required.
- This position requires travel to other sites and locations; if using a personal vehicle to meet this requirement, a valid CA driver’s license and current auto insurance in compliance with the minimum requirements of CA vehicle code are required.
- Abortion patients are cared for at each of our health centers and in part through the administrative, support, and other non-clinical services provided at all PPOSBC locations and by all PPOSBC employees, and supporting these critical services is an essential job duty and fundamental responsibility of all employees.
PHYSICAL REQUIREMENTS:
The physical requirements of this position are identified below. Reasonable accommodations may be made for individuals with disabilities to perform the essential functions of this position.
CORE COMPETENCIES – WE CARE:
- Welcoming: Anticipates customer requirements and gives high priority to customer satisfaction and service. Handles problems quickly and efficiently. Maintains a pleasant, positive and professional approach. Embraces opportunities to help team members, stakeholders, and other departments.
- Equitable: Creating equitable access and opportunity for all through education, practicing inclusive behavior, elevating others’ voices, creating spaces for honest conversation, and listening without judgment. Values and uplifts our collective diversity within in our agency.
- Confidential: Respects the information shared by our patients, employees, and vendors and maintains appropriate confidentiality. Follows all policies and laws that protect private & privileged information.
- Accessible: Is available and approachable to others, open-minded, fair and non-defensive. Appreciates constructive feedback and is a team player. Demonstrates good listening skills.
- Respectful: Values diversity and treats everyone with dignity and courtesy. Dependable and courteous of other people’s time and commitments.
- Empathetic: Demonstrates interest and understanding in other people’s feelings, attitudes and reasoning. Maintains an open and non-judgmental demeanor that is patient, flexible, and understanding.
