Sr. Security Engineer (IAM & Security Operations)

At the Oral Health Innovation Center (OHIC), a subsidiary of Delta Dental, we are transforming the future of dental care through cutting-edge digital experiences and dental-medical integrations. We are an enterprise start-up, and the OHIC Information Security team is focused on building a comprehensive information security program and solutions from the ground up to support future growth. Given our small team size, success in this role requires both broad and deep technical expertise, along with strong communication skills.

This Senior Security Engineer role supports foundational security engineering and operations in a dynamic, fast-growing environment. We are seeking a candidate with strong enterprise experience in Identity and Access Management (IAM) who is also comfortable contributing to broader security efforts, including documentation, alert triage, incident response, and operational process development. As we continue to scale, this individual will play a key role in operationalizing and maturing critical security practices across the organization. 

The incumbent must be available during core business hours, from 8:00 AM to 4:00 PM Pacific Time.

• Contribute to the end-to-end execution of security controls, including planning, designing, configuring, documenting, and auditing, and own two or more controls as assigned, with a focus on supporting audit readiness for frameworks (e.g., HIPAA, SOC 2, NIST CSF) in a highly regulated environment
• Partner with control owners outside of the Information Security team to validate secure configurations and ensure alignment with security objectives
• Develop and maintain foundational playbooks and documentation as security controls are iteratively implemented and matured
• Engineer, deploy, and operate security tools to enable visibility, control, and operational effectiveness
• Monitor and triage security alerts, support incident analysis and response, and document response protocols
• Conduct threat assessments and recommend enhancements to security configurations
• Support risk management processes by identifying, assessing, and helping mitigate security risks
• Ensure compliance with applicable laws, regulations, and standards relevant to the U.S. healthcare industry

• 7+ years of professional, hands-on experience in security engineering or security operations, along with a Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field; an equivalent combination of education and experience may be considered.
• 3+ years of hands-on experience in Microsoft environments is required. 
• Demonstrated experience managing multiple (2 to 4) concurrent information security capabilities or workstreams.
• Experience with Microsoft technologies, including Entra ID (formerly Azure Active Directory), on-premises Active Directory, and Azure cloud services.
• Hands-on experience with Microsoft M365 Defender security services.
• Practical experience supporting Microsoft identity services in partnership with enterprise IT teams, including Entra ID, Conditional Access, MFA, and PowerShell scripting
• Strong understanding of and hands-on experience implementing Identity and Access Management (IAM) controls, including identity lifecycle, identity governance, access provisioning and de-provisioning, access reviews, role-based access control (RBAC), and managing role changes throughout the user lifecycle.
• Willingness to support hands-on access provisioning as part of operational IAM responsibilities.
• Experience supporting and configuring enterprise-grade IAM solutions, such as SailPoint, Saviynt, or custom-built platforms, with a clear understanding of trade-offs, common pitfalls, and how to apply that knowledge in a startup environment.  While a specific tool is not currently in scope, this role will help prepare the organization for future scale.
• Experience or willingness to learn about adjacent security operations functions, including SIEM (Security Information and Event Management), Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), and log analysis.
• Knowledge of laws, regulations, and standards relevant to the U.S. healthcare industry, such as Health Insurance Portability and Accountability Act (HIPAA), System and Organization Controls 2 (SOC 2), and National Institute of Standards and Technology Cybersecurity Framework (NIST CSF).
• Ability to clearly communicate complex topics to technical or non-technical audiences
• Exceptional technical writing skills, including process documentation, procedural design, and visual representation of workflows
• Comfortable operating in ambiguity and taking the initiative to move work forward without perfect clarity, while collaborating effectively across teams to align and adapt as needed

Licenses/Certifications:

• Azure Security Engineer or similar preferred
• Global Information Assurance Certification (GIAC) / SysAdmin, Audit, Network, and Security (SANS)-related training preferred

Nice to have:

• Experience providing security services within the healthcare or dental industries, with a focus on compliance and patient data protection
• Familiarity with the Epic Electronic Health Records (EHR) system, particularly in a hosted model environment
• Knowledge of Internet of Things (IoT) security, specifically for medical devices
• Experience in application security.
• Experience with Data Loss Prevention (DLP).
• Experience in Vulnerability Management.
• Experience in Third-Party Risk Management (TPRM) activities

Base Pay Information

The national base pay range at the end is a good faith estimate of what Delta Dental may pay for new hires. Actual pay may vary based on Delta Dental assessment of the candidate’s knowledge, skills, and abilities (KSAs), related experience, education, certifications, and ability to meet the minimum job qualifications. Other factors impacting pay include prevailing wages in the work location and internal equity.

Pay Grade 25. $140,700 - $305,000