NantHealth, through its AirStrip division, builds technology that enables clinicians to diagnose earlier and save lives. They are seeking a Lead Security Engineer to design and implement enterprise security architecture, partner with engineering teams, and enhance security practices within the organization.
Responsibilities:
- Design and implement robust security architectures
- Act as a mentor and escalation point to other members of the team
- Iterate security posture to better protect against attacks and detect new vectors
- Participate in efforts to mitigate and investigate security incidents
- Evaluate and test new vendor and in house network initiatives for security issues
- Evangelize security practices through cross functional work with engineering teams throughout the enterprise
- Safeguard the enterprise through active operation and defense of critical infrastructure
Requirements:
- Bachelor's degree in Comp Sciences, Mgmt Info Systems, Cyber Security, Engineering and related fields (commensurate experience will be considered in lieu of degree)
- Minimum 8 years of experience in IT (information technology)
- Minimum 5 years of experience in cyber security / IT security
- Knowledge of securing AWS, Azure or similar cloud environments
- Excellent documentation practices
- Perform vulnerability management, coordinating with other teams to resolve findings
- Knowledge of compliance frameworks: ISO 27001, NIST, HIPAA, HITRUST
- Experience researching, building, and implementing defensive security systems that are used against internal and external attack vectors
- Experience designing and building out application and network security monitoring to aid in detection or forensic investigations
- Background in intrusion detection, security investigations, and incident response
- Deep understanding of MITRE ATT&CK Framework and associated threat actor techniques
- Experience 'threat hunting', i.e. using threat intel to proactively and iteratively investigate these potential risks and finding suspicious behavior in the environment
- Experience investigating data for anomalies in order to identify suspicious behavior
- Experience with Identity and Access Management (IAM), provisioning user accounts and access
- Solid understanding of SIEM tools (LogRhythm, Splunk, Etc.)
- IT Certifications a plus: CISSP, CISA, CompTIA, GIAC