Security Engineer Ii

Our Company

BrightSpring Health Services

Overview

The Security Engineer II is a security subject matter expert in one or more security platform, with security engineering experience in IT Enterprise and network disciplines to support the company's enterprise security objectives.

Responsibilities

• Illustrates proficiency by implementing solutions and enforcing security policies and standards
• Acts as a lead for the Security Engineering team and interacts regularly with other departments to implement solutions and/or act as the primary point of contact for information security matters
• Uses SIEMs and other threat intelligence sources to evaluate the current threat landscape
• Uses security products and techniques to routinely monitor for vulnerabilities, threats, alerts, and attacks
• Determines if any immediate or future action is necessary to protect information system assets and acts accordingly
• Works with Network and Server Administrators to achieve results and submits reports on findings, status, and recommendations to the Security Engineering Manager
  • All NIST alignment is done with the expectation that the business needs are paramount
• Works with IT resources and business leaders to assist in the research, development, configuration, upgrade, and implementation of one or two IT Security platforms related products and services and leads and supports projects
• Conducts standard security investigations using data analysis and forensic techniques; supports and is a key member of the Incident Response (IR) team, including standardizing, improving, and maintaining IR processes
• Works with Business Owners and IT Application Development and Infrastructure stakeholders to assist in the planning, and implementation of enterprise-wide security systems, including physical security, authentication mechanisms, cryptography, role-based security, host and backend systems, DMZs, firewalls, VPNs, IPS/IDS systems, penetration testing, vulnerability assessments, and disaster recovery
• Performs other tasks as assigned

Qualifications

• Associate degree in Computer Information Systems or equivalent experience; Bachelor's degree in Computer Information Systems or related field desired
• Minimum of three years Security administration/management in Enterprise environment
• Two or moreyears of either SIEM, IDP, SASE, EDR, Email Security and/or security framework implementation; other end-user, network, and host-based security solutions
• Three or more years in the administration or monitoring of security platforms within an enterprise environment with combination of secure web gateways; endpoint detection and response; remote access technologies; endpoint protection methodologies; secure configuration of network equipment, Microsoft Windows Active Directory, web application development, infrastructure, and database security
• GCIH, OSCP, CPP, CISSP, GCIA, or CCSP certifications preferred
• Enterprise Information Security Products and Services; Security Frameworks; Advanced use of MS Office applications, including Visio and Project
• Ability to research, evaluate, and recommend security technology and solutions; define and document internal controls and procedures and conduct routine security audits and risk assessments
• Advanced knowledge of SIEMs, NIST CSF and associated NIST Standards, vulnerability management services, and MS Office applications is a plus

About our Line of Business

BrightSpring Health Services provides complementary and integrated home- and community-based pharmacy and health solutions for complex populations in need of specialized and/or chronic care. Through the Company’s service lines, including pharmacy, home health care and primary care, and rehabilitation and behavioral health, we provide comprehensive care and clinical solutions in all 50 states to over 400,000 customers, clients and patients daily. For more information, visit www.brightspringhealth.com. Follow us on Facebook, Twitter and LinkedIn.

Salary Range

USD $115,000.00 - $125,000.00 / Year