Security Operations Engineer III

What you can expect.

Find joy in serving others with IEHP. We welcome you to join us in "healing and inspiring the human spirit" and to pivot from a "job" opportunity to an authentic experience.

Under the direction of the Manager, Information Security Operations, the Security Operations Engineer III - IAM (Identity Access Management) is an experienced senior level cybersecurity engineering position primarily responsible for the designing, implementation and maintaining of identity and privilege access management systems and processes.

This position will also be a subject matter expert in cybersecurity that will engineer, implement, support, and maintain cybersecurity solutions as needed to support the organization's cybersecurity and information security programs. Other duties include security tool monitoring, incident response, automating response activities to prevent and or limit impact of adverse security incidents, maintain documentation related to policies, standards, and procedures; mentor team members; and provide consultative services to teams and stakeholders to improve the security posture of their environments.

Key Responsibilities:

The below responsibilities are for the purpose of maintaining IT security operations functions and ensuring data protection for IEHP's members and providers.

1. Design, implement and maintain of identity access management and privileged access management systems and processes.
2. Monitor cybersecurity detection tools and respond to incidents.
3. Design, implement, maintain, administer, and provide training on cybersecurity detection and protection platforms.
4. Manage security incident response; serve as escalation point for conducting investigations into security incidents involving advanced and sophisticated threat actors and TTPs
5. Design, test, and implement response playbooks, orchestration workflows and automations.
6. Research, recommend and test new security technologies and platforms
7. Architect cybersecurity solutions for on premises and cloud computing environments
8. Participate in and or leads cybersecurity engineering projects.
9. Assist with risk analysis activities.
10. Assist with designing and implementing controls to mitigate risk.
11. Document, prioritize, and formally report incidents, root cause analyses, and after-action reviews.
12. Coordinate between internal and external resources protecting enterprise systems.
13. Periodically attend and participate in change management policy discussions and meetings.
14. Motivate Team Members to maximize rigorous system security controls, focusing on reducing complexity and maturing security practices.
15. Work as a team player to consistently learn and share advanced skills and foster team excellence.
16. Any other duties as required ensuring Health Plan operations are successful.

Commitment to Quality: The IEHP Team is committed to incorporate IEHP's Quality Program goals including, but not limited to, HEDIS, CAHPS, and NCQA Accreditation.

Perks

IEHP is not only committed to healing and inspiring the human spirit of our Members; we also aim to match our Team Members with the same energy by providing prime benefits and more.

CalPERS retirement
457(b) option with a contribution match
Generous paid time off- vacation, holidays, sick
State of the art fitness center on-site
Medical Insurance with Dental and Vision
Paid life insurance for employees with additional options
Short-term, and long-term disability options
Pet care insurance
Flexible Spending Account - Health Care/Childcare
Wellness programs that promote a healthy work-life balance
Career advancement opportunities and professional development
Competitive salary with annual merit increase
Team bonus opportunities

Education & Experience

Eight plus (8+) years IT hands on technical experience with at least five (5) years in a cybersecurity role with a focus on IAM, PAM, JIT access, and cybersecurity detection, protection, and response.
Scripting experience such as PowerShell, JavaScript, or Python. Experience with the
3rd party IAM PAM applications
Risk mitigation strategies
TCP/IP networking.
Defense in Depth strategies
Security Operations Tools such as SIEM, EPM, DLP, Vulnerability scanners, Firewalls, WAFs, Antivirus Solutions, Email Protection Solutions,
Identifying indicators of compromise and indicators of attack
Mitre ATT&CK and Cyber Kill Chain frameworks
Computer operating systems such as Windows, MacOS and Linux
Bachelors degree with a major in computer related field or similar technical field from an accredited institution required
In lieu of the required degree, a minimum of four (4) years of additional cybersecurity work experience is required for this position

Key Qualifications

Strong planning, organization, critical thinking, decision-making and communication (verbal and written) skills
Mentoring skills
Proven ability to:
Work as member in a team
Be flexible and adaptable to change in a dynamic work environment
Learn and apply new concepts

Start your journey towards a thriving future with IEHP and apply TODAY.