Information Security Engineer
Summary
The Information Security Engineer is responsible for the deployment of security reference architectures that provide roadmaps and design guidance for Trice Imaging cloud platforms and products, IdAM integration, data privacy, enabling services, and many more. In addition to defining reference architectures, the Information Security Engineer functions as a leader across the organization, helping to evangelize the security story and drive a culture of “secure by design” into the Trice Imaging cloud environments and company wide.
The Information Security Engineer is responsible for reviewing technology designs, designing security controls and solutions, to reduce the risk to Trice Imaging and its customers.
This is a lead technical role.
Essential Duties and Responsibilities:
- Work closely with product and platform development teams to engineer security controls based upon Security office policies and standards and regulatory requirements for Trice Imaging’s SaaS platform.
- Assess and understand Trice Imaging’s current cloud security posture and future architecture, providing recommendations for vulnerability remediation and risk reduction
- Evaluate security technologies for cloud environments in order to implement controls in the most streamlined and integrated manner
- Deploy automated security solutions for cloud delivery processes
- Develop cloud security solutions to enable production security operations
- Deploy cloud environments using container and microservice technologies
- Develop security capabilities in support of SRE processes
- Educate product and platform teams on secure coding practices for Trice Imaging’s SaaS platform.
- Perform threat models and risk assessments to characterize the risk and severity posture of large-scale cloud environments
- Develop & deploy automated solutions to secure cloud development processes
- Serve as a security expert for Trice Imaging’s SaaS platform application development, database and microservice design, container and/or virtual machine technologies, helping project teams comply with Trice Imaging Security Office policies, industry regulations, and best practices
- Contribute to the development and maintenance of the information security strategy
- Develop secure solutions, based on approved security architectures
- Analyze business impact and exposure, based on emerging security threats, vulnerabilities and risks
- Communicate security risks and solutions to business partners, platform & product teams
- Design and builds controls to address security risks and events as identified
- Embrace a culture of continuous service improvement and service excellence
Skills And Experience Qualifications:
- Bachelor’s degree in a technical discipline such as Information Security, Computer Science or Information Technology or equivalent qualifications
- Professional IT Accreditations (CISM, CCSA, CCSE, JNCIA, CCNA, CISSP, OSCP, CCIE Security, CEH, Security )
- 4 years in Cloud Computing
- 4 years in Information Security
- 5 years in Information Technology/Computing Technology space
- Strong experience with cloud provider ecosystems, including Amazon AWS
- Extensive operations experience administering Linux operating systems, network devices, databases, and/or web application servers
- Experience scripting with languages such as Python, Ruby, etc.
- Experience with security strategy, with a passion to make security realistic, achievable and interwoven with the business fabric
- Proven ability in securing the CI/CD pipeline and solid working experience of continuous integration practices & tools
- Experience with a broad range of security technologies, including nextgen firewalls, DLP, NAC, IDS/IPS, IdAM, certificate management, SIEM, endpoint protection, anti-malware, vulnerability management, and cloud security
Competencies (Skills & Abilities)
- Strong oral, written, and presentation abilities, able to convey risk to all levels of the business, from C-level executives to operations and development teams;
- Strong business acumen with the ability to build business cases for technology initiatives and to effectively communicate the value proposition to non-technical stakeholders
- Expert command of config management principles and an ability to code your desired state
- A strong grasp of monitoring tools, approach and implementation
- An established history of working in agile teams and ability to build rapport with other team members and relevant teams
- Knowledge of incident response methodologies and technologies
- Experience implementing security controls in an IT and cloud environment
- Experience driving a culture of security awareness
- Highly self-motivated with the ability to identify areas of focus and tackle new challenges with or without direction
- Ability to work within a dynamic and fast paced environment
- Very good communications, presentation and negotiations skills
- Able to express technical and non-technical concepts in clear verbal and written English
- Very good written skills to document complex concepts in a comprehensive, yet readable manner
- Encourages people to be open and share their views
- Considers a range of options that meet the needs of all stakeholders
- Ability to use own initiative to solve technical problems
- Takes responsibility for projects and strategic initiatives
- Demonstrate clear and measurable results through the development of KPIs, goals and milestones
- Strive for standardization and simplification in all aspects of work
- Drives innovation and execution of best practices
- Able to balance the needs of the business against the desire for the best solution possible
Apply
Email cover letter and resume to Nicki@triceimaging.com
About Trice Imaging
Trice Imaging is a fast-growing global software company with a cloud-based platform that is changing the way medical data is stored and shared with patients and medical professionals. Our innovative solutions facilitate our mission – to provide quality of care for people regardless of who and where they are. Our service is available in 37 countries and we are rapidly expanding into new markets, segments, and partnerships with industry leading power brands. Working at Trice, you will contribute to real, mind-blowing innovation and be part of a team of inspiring, high-energy and outstanding colleagues distributed all across the US, Europe and Asia. Trice Imaging is headquartered in San Diego, California and has offices in Stockholm, Sweden. For more information, visit us at www.triceimaging.com