Information Security Engineering and Architecture Engineer III

Job Summary

The Information Security (InfoSec) Engineering and Architecture (ISEA) Engineer III follows a “Security by Design” Methodology ensuring Security is built-into products, technologies, SaaS solutions, etc. in the early phases of a technology or solution implementation. This position engineers, implements, and maintains information security systems and controls for L.A. Care Health Plan. 

The ISEA Engineer III works closely with the Cyber Defense Operations Center (CDOC) Analysts and the various departments and technical staff within Information Technology (I.T.). This position collaborate with business units on the front end in the build of a new solution to ensure that security measures are in place from the beginning of the project. Acts as a  Subject Matter Expert (SME), serves as a resource and mentor for other staff. 

Duties

Ensures all InfoSec tools are configured appropriately. Ensures all InfoSec tools are capturing and displaying the most relevant and actionable information the tool is designed to deliver. Ensures all InfoSec tools are running at their current supported versions.

Proactively develops and enforces security plans and standards to maintain the confidentiality, integrity, and availability of the organization’s and member’s data.

Interfaces directly with technical and business staff to design and implement security architectures to protect LA Care information assets.

Develops systems and processes to prevent information and infrastructure breaches.

Designs and implements elegant solutions to complex security and risk problems.

Applies appropriate technologies while following security engineering best practices.

Fosters constructive dialogue and problem resolution when confronted with differing viewpoints on security risks.

Conducts research to identify attack vectors against the organization. Identifies and assesses vulnerabilities and risks to enterprise applications, infrastructure, and data. Develops and implements technical solutions to counter vulnerabilities and risks.

Develops plans for incident response.

Duties Continued

Acts as the technical expert in multiple domains to lead the Information Security team during incident and breach responses.

Leads security projects (including security reviews, tool development, and creation of new security practices) with end-to-end ownership. Provides security consulting services to various projects. 

Creates security guidance and documentation. Develops security tools and automation.

Supports the enterprise data loss prevention program by identifying and controlling data loss channels.

Works with IT and business units to address their data loss prevention requirements.

Provides on-call support on a rotational basis as part the Information Security team.

Applies subject expertise in evaluating business operations and processes. Identifies areas where technical solutions would improve business performance. Consults across business operations, providing mentorship, and contributing specialized knowledge. Ensures that the facts and details are correct so that the project’s/program's deliverable  meets the needs of the department, and organization  policies, standards, and best practices. Provides training, recommends process improvements, and mentors junior level staff, department interns, etc. as needed.

Performs other duties as assigned.

Education Required

Education Preferred

Experience

Required:
At least 6 years of experience in a senior Information Security role.

Operational experience configuring and managing a Security Information and Event Management (SIEM) platform.

Operational experience using and configuring a vulnerability management platform.

Operational experience using a static application security testing platform.

Operational experience assessing and securing cloud computing environments (e.g., AWS, Azure, etc.).

Preferred:
Operational experience building or reviewing threat models.

Operational experience in a regulated environment (e.g., classified networks, healthcare, finance, banking, etc.).

Skills

Required:
Strong working knowledge in one or more of the following disciplines: DevOps, Digital Forensics, Penetration Testing, Programming (Java preferred), and/or System or Network Administration.

Working knowledge of data loss prevention (DLP) toolsets.

Strong understanding of networking and communication protocols (such as TCP/IP, UDP, SSL/TLS, IPSEC, HTTP/S, etc.).

Understanding of web service frameworks and service architectures (such as event-driven, service-oriented, or server less architectures).

Ability to collaborate with internal and external key stakeholders. 

Combination of strong troubleshooting, technical, and communication skills.

Licenses/Certifications Required

Licenses/Certifications Preferred

Required Training

Physical Requirements

Additional Information

Professional Certifications

Preferred:
One or more of: 
Certified Information Systems Security Professional (CISSP)
Certified Ethical Hacker (CEH)
Certified Hacking Forensic Investigator (CHFI)
GIAC Certified Detection Analyst (GCDA)
Offensive Security Certified Professional (OSCP)