Security Engineer III

Your Future Evolves Here

Evolent partners with health plans and providers to achieve better outcomes for people with most complex and costly health conditions. Working across specialties and primary care, we seek to connect the pieces of fragmented health care system and ensure people get the same level of care and compassion we would want for our loved ones.

Evolent employees enjoy work/life balance, the flexibility to suit their work to their lives, and autonomy they need to get things done. We believe that people do their best work when they're supported to live their best lives, and when they feel welcome to bring their whole selves to work. That's one reason why diversity and inclusion are core to our business.

Join Evolent for the mission. Stay for the culture.

What You’ll Be Doing:

The Security Engineer III is responsible for designing and implementing robust security measures to protect Evolent’s on premise/cloud infrastructure and applications. The ideal candidate will have a deep understanding of security best practices, as well as in enhancing Evolent’s security posture through comprehensive security design, implementation, and management.

The Security Engineer III will work closely with cross-functional teams to develop and execute security strategies that align with business objectives and industry best practices.

Responsibilities: 

• Develop comprehensive on premise/cloud security strategies and architectural blueprints that align with business objectives and regulatory requirements. 

• Design and implement secure data layering techniques to safeguard sensitive data across Evolent’s on premise and cloud-based systems and databases. 

• Create and maintain security policies, standards, and guidelines to ensure consistent security practices across the organization. 

• Evaluate and recommend security technologies and tools that enhance security and operational efficiency, including Palo Alto Prisma, ZIA, and ZPA. 

• Implement REST API security best practices to protect data transmission and prevent unauthorized access. 

• Collaborate with development teams to integrate security controls into the software development lifecycle. 

• Participate in regular security assessments and vulnerability assessments within on premise/cloud infrastructure and applications. 

• Provide expertise and guidance in incident response and resolution, including identifying and mitigating security breaches. 

• Monitor security logs and alerts using SIEM or similar tools and respond to security incidents in a timely manner. 

• Stay up to date with the latest security trends, threats, and technologies, and proactively make recommendations for improvement. 

• Accept mentoring and support technical guidance to more senior security team members.

Additional Responsibilities: 

• Ensure that Evolent’s on premise/cloud infrastructure and applications meet the requirements of HIPAA, HITECH, and other applicable regulations. 

• Assist with development and implementation of security controls to protect patient data from unauthorized access, disclosure, alteration, or destruction. 

• Work with the privacy team to ensure that Evolent’s privacy policies and procedures are aligned with its security practices. 

• Represent Evolent at industry conferences and events to share best practices and collaborate with other healthcare organizations on cloud security.

Qualifications: 

• Bachelor’s or master’s degree in computer science, Information Security, or a related field. 

• Proven experience (4+ years) as a Security Engineer or a similar role in designing and implementing secure infrastructure solutions. 

• Experience with data layering techniques and securing sensitive data. 

• Strong understanding of REST APIs and their security implications. 

• Hands-on experience with security tools such as Splunk, SIEM, IDS/IPS, WAF, etc. 

• In-depth knowledge of on premise and cloud security best practices, including IAM, encryption, network security, and identity federation. 

• Familiarity with industry compliance standards such as ISO 27001, NIST, PCI DSS, GDPR, etc. 

• Proven ability to assess and mitigate security risks and vulnerabilities. 

• Excellent analytical and problem-solving skills, with strong attention to detail. 

• Strong communication and interpersonal skills, with the ability to communicate complex security concepts to technical and non-technical stakeholders. 

• Relevant certifications (e.g., AWS Certified Security Specialty, Certified Cloud Security Professional (CCSP), CISSP) will be an advantage. 

To comply with HIPAA security standards (45 C.F.R. sec. 164.308 (a) (3)), identity verification may be required as part of the application process. This is collected for compliance and security purposes and only reviewed if an applicant advances to the final interview state. Reasonable accommodations are available upon request.

Technical Requirements:

We require that all employees have the following technical capability at their home: High speed internet over 10 Mbps and, specifically for all call center employees, the ability to plug in directly to the home internet router. These at-home technical requirements are subject to change with any scheduled re-opening of our office locations. 

Evolent is an equal opportunity employer and considers all qualified applicants equally without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, or disability status. If you need reasonable accommodation to access the information provided on this website, please contact recruiting@evolent.com for further assistance.

The expected base salary/wage range for this position is $88,300 - 128,100. This position is also eligible for a bonus component that would be dependent on pre-defined performance factors. As part of our total compensation package, Evolent is proud to offer comprehensive benefits (including health insurance benefits) to qualifying employees. All compensation determinations are based on the skills and experience required for the position and commensurate with experience of selected individuals, which may vary above and below the stated amounts.