Sr. Security Engineer (Security Engineering & Operations)

At the Oral Health Innovation Center (OHIC), a subsidiary of Delta Dental, we are transforming the future of dental care through cutting-edge digital experiences and dental-medical integrations.

We are an enterprise start-up, and the OHIC Information Security team is focused on building a comprehensive information security program and solutions from the ground up to support future growth.  Due to the small team size, success in this role requires broad and deep experience, along with strong communication skills. 

The candidate must be available during core business hours in the Pacific Time Zone and be available for occasional evenings or weekends for go-live activities or security incident response.

This role supports foundational security engineering and operations in a dynamic, fast-growing environment.  We're looking for someone with strong enterprise experience in security engineering, as well as security monitoring and incident response who, is also comfortable contributing to broader security efforts, including vulnerability management, documentation, and operational process development.  As we continue to scale, this person will play a key role in helping us operationalize and mature critical security practices across the organization.

 

• Contribute to the end-to-end execution of security controls, including planning, designing, configuring, documenting, and auditing, and own two or more controls as assigned, with a focus on supporting audit readiness for frameworks (e.g., HIPAA, SOC 2, NIST CSF) in a highly regulated environment
• Partner with control owners outside of the Information Security team to validate secure configurations and ensure alignment with security objectives
• Develop and maintain foundational playbooks and documentation as security controls are iteratively implemented and matured
• Engineer, deploy, and operate security tools to enable visibility, control, and operational effectiveness
• Monitor and triage security alerts, support incident analysis and response, and document response protocols
• Conduct threat assessments and recommend enhancements to security configurations
• Support risk management processes by identifying, assessing, and helping mitigate security risks
• Ensure compliance with applicable laws, regulations, and standards relevant to the U.S. healthcare industry

• 7+ years of professional, hands-on experience in security engineering and operations, along with a Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field; an equivalent combination of education and experience may be considered 
• 3+ years of hands-on experience in Microsoft environments
• This role will require the management of several (2 to 4) concurrent information security capabilities
• While not currently applicable, future scale and growth may require engaging a Managed Security Service Provider (MSSP).  This role would lead the engagement and maintain SME experience, acting as a liaison on behalf of OHIC Security with the MSSP and the Electronic Health Record (EHR) Security Operations Center (SOC)

Knowledge, Skills, and Abilities: 

• Experience with Microsoft technologies, including Entra ID (formerly Azure Active Directory), on-premises Active Directory, and Azure cloud services
• Microsoft M365 Defender security services experience
• Willingness to support hands-on access provisioning as part of operational IAM responsibilities
• Practical security engineering and operations experience with SIEM (Security Information and Event Management), Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), and log analysis tooling and processes
• Experience or willingness to learn about adjacent security operations functions, including, but not limited to, vulnerability management 
• Knowledge of laws, regulations, and standards relevant to the U.S. healthcare industry, such as Health Insurance Portability and Accountability Act (HIPAA), System and Organization Controls 2 (SOC 2), and National Institute of Standards and Technology Cybersecurity Framework (NIST CSF)
• Ability to clearly communicate complex topics to technical or non-technical audiences
• Exceptional technical writing skills, including process documentation, procedural design, and visual representation of workflows
• Comfortable operating in ambiguity and taking the initiative to move work forward without perfect clarity, while collaborating effectively across teams to align and adapt as needed

Licenses/Certifications:

• Azure Security Engineer or similar preferred
• Global Information Assurance Certification (GIAC) / SysAdmin, Audit, Network, and Security (SANS)-related training preferred

Nice to have:

• Application Security experience
• Automation experience particularly in security engineering and operations with the Microsoft stack
• Data Loss Prevention (DLP) experience
• E-mail Security experience
• Network Security experience
• Penetration Testing experience
• Vulnerability Management experience
• Identity and Access (IAM) experience
• Third-Party Risk Management (TPRM) experience
• Internet of Things (IoT) medical device security
• Experience providing security services in healthcare or dental industries, particularly around compliance and patient data protection
• Experience with Epic Electronic Health Records (EHR) system (hosted model)

Base Pay Information

The national base pay range at the end is a good faith estimate of what Delta Dental may pay for new hires. Actual pay may vary based on Delta Dental assessment of the candidate’s knowledge, skills, and abilities (KSAs), related experience, education, certifications, and ability to meet the minimum job qualifications. Other factors impacting pay include prevailing wages in the work location and internal equity.

Pay Grade 25. $140,700 - $305,000

Behind the smile! We are dedicated to safeguarding the health and financial stability of our employees and their loved ones. This commitment extends beyond the workplace to foster personal growth and holistic wellbeing. Our life-changing rewards package includes:

• Competitive base and incentive pay 
• 401(k) with robust matching and non-matching contributions
• Rich medical & pharmacy benefits
• 100% employer-paid dental and vision benefits
• Holistic wellbeing program with deep financial incentives
• Generous paid time off plus 12 paid holidays and your birthday off
• Culture of growth and learning: career development; tuition reimbursement; recognition program
• Family support: adoption assistance, fertility treatment, child, elder & pet care assistance
• Social responsibility and volunteer opportunities
• Employee discount program

Fair Chance Ordinances and Criminal Background Considerations  Qualified applicants with arrest or conviction records will be considered for employment in accordance with all applicable federal, state, and local laws, including, but not limited to, fair chance and anti-discrimination ordinances. At Delta Dental, we maintain a strict stance on theft, fraud, and violent crimes. For positions involving driving, we enforce heightened standards regarding driving records. Each individual criminal background check is evaluated on its merits, taking into account the time elapsed since the conviction, evidence of personal development and rehabilitation, and any potential risk posed to our business operations, employees, customers, or vendors.   Important Work Authorization Information  Please note, Delta Dental will not sponsor applicants for work visas for this position.
#LI-Remote