Senior IT Security Engineer

WELLBE INTRODUCTION

The WellBe care model is a Physician Led Advanced Practice clinician driven geriatric care (care of older adults) team focused on the care of the frail, poly-chronic, elderly Medicare Advantage patients. This population is typically underserved and very challenged with access to care. To address these problems, we have elected to bring the care to the patient, instead of trying to bring the patient to the care. Care is provided throughout the entire continuum of care – from chronic care and urgent care in the home, to hospital, to skilled nursing facility, to assisted living, to palliative care, to end of life care. WellBe's physician/advanced practicing clinician led geriatric care teams’ partner with the patient’s primary care physician to provide concierge level geriatric medical care and social support in the home as well as delivering and coordinating across the entire care continuum.

GENERAL SUMMARY

Wellbe is searching for a Senior Security Engineer to join the IT Security team. This role will be tasked with making WellBe more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data. The position will work side-by-side with other WellBe teams, third-party vendors, and support resources in order to ensure a secure technology environment as well as successfully delivering security solutions and improvements.

SKILLS & COMPETENCIES

• Planning, implementing, managing, monitoring, and upgrading security processes and technologies for the protection of the organization's data, systems, and networks.
• Ability to recommend, implement, and operationalize security processes and technologies across a diverse set of systems and users.
• Troubleshooting security technology and process issues including root cause analysis, documenting and implementing recommendations for remediation and prevention of recurrence.
• Responding to all system and/or network security
• Ensuring that the organization's data and infrastructure are protected by reviewing, enabling, and regular testing of technical and administrative security
• Testing and identifying network and system vulnerabilities including recommendations for remediation and, where applicable, implementing corrective measures in accordance with company change management policies
• Daily administrative tasks, reporting, and communication with the relevant departments in the
• Managing user accounts, roles, and permissions.
• Support the development of and enforcing access control policies.
• Support the process of periodic access reviews and audits.
• Assist in troubleshooting and resolving access-related issues.
• Experience in building and maintaining security
• Detailed technical knowledge of database and operating system
• Hands on experience in security systems, including intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
• Experience with network security and networking technologies and with system, security, and network monitoring tools.
• Thorough understanding of the latest security principles, techniques, and protocols
• Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols.
• Problem solving skills and ability to work under

Educational/Experience Requirements:

• BA/BS in Computer Science or related field is Equivalent combination of experience, education and training will be considered.
• 10+ years working in IT in a hands-on support or engineering role.
• 5+ years working in an IT Security focused on security technologies and engineering.
• Minimum of CompTIA Security + CISSP preferred.

 Required Skills and Abilities:

• Designing, implementing, and maintaining identity and access management systems (Experience with Microsoft Entra ID and Okta a plus)
• 5+ years in a hands-on engineering role with the following technologies/domains:
• Microsoft Entra ID (Azure Active Directory)
• Microsoft Azure Cloud & Google Cloud
• Okta or similar SSO enterprise environments (SCIM / Identity Management technology experience a huge plus)
• Multifactor authentication platforms such as Okta, Conditional Access, etc.
• Deep understanding of identity federation and SAML technologies
• SentinelOne (or similar non-signature based EDR solutions)
• Vulnerability management platforms (Tanium is preferred)
• Scripting and coding specifically using PowerShell, Python, WScript, and BASH
• Network and device security solutions such as Firewalls, Intrusion detection systems, and SIEMs
• Understanding of access control models, polices, and technologies.
• Familiarity with regulatory requirements such as HIPAA, GDPR, PCI DSS. Previous experience with HITRUST is preferred.
• Understanding of security Risk assessment methodologies.
• Familiarity with security frameworks such as NIST and ISO 27001.
• Ability to analyze security logs and alerts and demonstrated ability to provide clear recommendations and remediation actions.
• Experience working in both waterfall and agile project management methodologies.
• Excellent communication skills both verbal and written.

Supervisory Responsibility: No supervisory responsibilities.

Travel requirements: Travel may be required up to 10% locally or nationally.

Work Conditions:

• Ability to lift up to
• Ability to stand for extended
• Visual
• On-Call rotation required 1 week per month.
• Need to be able to work outside normal business hours as necessary.

The preceding functions may not be comprehensive in scope regarding work performed by an employee assigned to this position classification. Management reserves the right to add, modify, change or rescind the work assignments of this position. Management also reserves the right to make reasonable accommodations so that a qualified employee(s) can perform the essential functions of this role.