SOC Engineer I

Location: Remote (For Non-Local) or Hybrid (Local to NYC area)

Position Summary:

As a security operations center (SOC) engineer, you will help build and manage services that detect and automate the mitigation of cybersecurity threats across Capital Rx infrastructure. You will work with software engineers, DevOps engineers, IT Engineering, internal audit and compliance teams, and other security engineers across multiple teams to protect Capital Rx.

Position Responsibilities:

• Monitor and analyze security alerts from various sources, including AWS, Azure, O365, and SIEM tools, to identify potential security threats.
• Perform incident detection, analysis, and response for cloud-native environments, utilizing Wiz.io and Backslash Security.
• Collaborate with internal teams to address security incidents and ensure timely resolution, including coordination with IT, Security Engineering, and other stakeholders.
• Develop and refine security monitoring policies, rules, and alerting configurations for enhanced detection capabilities.
• Conduct investigations into security incidents, identifying root causes and recommending remediation steps.
• Maintain and optimize DLP solutions for the organization to prevent unauthorized data exposure.
• Generate regular reports on security incidents, key metrics, and recommendations for security improvements.
• Proactively identify security risks and work with various teams to mitigate potential threats.
• Participate in threat hunting activities to identify advanced threats and vulnerabilities within the cloud and on-premises environments.
• Provide input into the SOC’s continuous improvement processes, including playbook development and toolset enhancement.

Required Qualifications:

• Bachelor’s degree in information security, Computer Science, or related field (or equivalent work experience).
• 3+ years of experience in a Security Operations Center (SOC) or similar environment.
• Hands-on experience with AWS, Azure, and O365 security tools and technologies.
• Strong familiarity with CNAPP tools, cloud security posture management, and application security.
• Experience with SIEM platforms (e.g., Splunk, QRadar, or similar) including alert tuning, query development, and integration with cloud environments.
• Proficient in data loss prevention (DLP) strategies and tools, with the ability to customize and maintain DLP policies.
• Strong understanding of incident response processes and best practices.
• Demonstrated ability to conduct thorough investigations and report on complex security incidents.
• Familiarity with cloud security principles, tools, and techniques, including identity and access management (IAM) and network security.
• Strong problem-solving skills, attention to detail, and ability to work under pressure in a fast-paced environment.

Desired Qualifications:

• CISSP
• CCSP
• AWS Security Specialty
• AWS Cloud Practitioner

Base Salary: $80,000 - $100,000

Nothing in this position description restricts management’s right to assign or reassign duties and responsibilities to this job at any time.

About Capital Rx

Capital Rx is a full-service pharmacy benefit manager (PBM) and pharmacy benefit administrator (PBA), advancing our nation’s electronic healthcare infrastructure to improve drug price visibility and patient outcomes. As a Certified B Corp™, Capital Rx is executing its mission through the deployment of JUDI®, the company’s cloud-native enterprise health platform, and a Single-Ledger Model™, which increases visibility and reduces variability in drug prices. JUDI connects every aspect of the pharmacy ecosystem in one efficient, scalable platform, servicing millions of members for Medicare, Medicaid, and commercial plans. Together with its clients, Capital Rx is reimagining the administration of pharmacy benefits and rebuilding trust in healthcare.

Capital Rx values a diverse workplace and celebrates the diversity that each employee brings to the table. We are proud to provide equal employment opportunities to all employees and applicants for employment and prohibit discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, medical condition, genetic information, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

#LI-SE1