Description
Position at WebMD WebMD is the most recognized and trusted brand of health information and the leading provider of health information services, serving consumers, physicians, healthcare professionals, employers and health plans through our public and private online portals and WebMD the Magazine. The WebMD Health Network includes WebMD, Medscape, MedicineNet, eMedicine, RxList, theheart.org and Medscape Education. Our consumer portals and mobile health applications provide engaging, relevant and credible health and wellness information, personalized health assessment tools and access to online communities.
WebMD is an Equal Opportunity/Affirmative Action employer and does not discriminate on the basis of race, ancestry, color, religion, sex, gender, age, marital status, sexual orientation, gender identity, national origin, medical condition, disability, veterans status, or any other basis protected by law.
About the role: The Security Engineer (SE) assists with day-to-day of the cyber security program. They must understand common Systems, Tools, and protocols. The SE will help mentor our team members by taking responsibility for the design, implementation, and maintenance of systems, and for proactively identifying and mitigating security risks across an organization's infrastructure and applications. Responsibilities:
- Develop and maintain required security controls for employees, focusing on Microsoft Azure and on-Premise technologies, antivirus/antimalware, and remote monitoring and auditing.
- Develop, deploy, and operate required security solutions across a highly distributed, global platform deployed across Azure cloud infrastructure.
- Lead our vulnerability assessment program and conduct penetration testing with support from external vendors.
- Monitor, triage, and remediate security issues and support security incident response program.
- Respond to events and alerts and resolve security issues.
- Perform security design reviews and provide deep and technical subject matter expertise to teams of software engineers and developers.
- Maintain Information Security Team ticket queue for daily Security Team operations.
- Identify and assist with remediation of security issues, misconfigurations, and vulnerabilities related to cloud and on-prem infrastructure.
- Contribute to creation of runbooks and standard operating procedures
Requirements:
- Three or more (3+) years of experience with Information System roles
- A high degree of technical skills and acumen:
- Experience implementing and managing security solutions within Azure cloud computing environments
- Experience with IDS/IPS, event logging and monitoring, vulnerability scanning, and endpoint security management in a Microsoft Azure environment
- Working knowledge of host, network, and application exploitation techniques
- Security industry certifications are preferred but not required
- Excellent oral, written and presentation skills
- Ability to influence outcomes without direct authority
- A proven track record of complex problem solving and cultivating strong collaboration across organizational boundaries
- A reliable self-starter who makes sound, well-informed and objective decisions and works independently with the ability to manage complex situations and solve problems
- Ability to participate in on call rotation.