Security Engineer

Imagine Pediatrics

Imagine Pediatrics

Software Engineering
Remote
Posted on Wednesday, May 22, 2024

Who We Are

We are Imagine Pediatrics, a devoted and compassionate, multi-disciplinary pediatrician-led medical group that is creating a world where every child with complex medical conditions gets the care and support they deserve. Energized by our mission to reimagine pediatric health care, we are pioneering virtual-first care services that include care coordination and around-the-clock access to complex-care clinicians from home. We don’t replace a child's existing care team. Instead, we collaborate to deliver continuous support to kids, so they can spend less time in the hospital and more time thriving at home and in their communities.

Every day we boldly challenge old approaches and seek out new and better ways to improve the health and lives of children with medical complexity. In partnership with caregivers, providers, and health plans, we break down the barriers that stand between families and quality care for their children. We know we can’t solve every challenge in the lives of these kids, but we can work tirelessly to give them, their families, and other caregivers the help and relief they need, right when they need it. We know a better approach to pediatric health care is within reach, and we are committed to seizing it today.


What We Live By

We’re guided by our five core values:

  • Children first. We put the best interests of children above all. We are uncompromising in our commitment to improving the lives of children and families by bringing the best care to them.
  • Earn trust. We cherish the trusting relationships we build with the children and families we serve, our partners, and each other. We seek first to understand and speak honestly.
  • Innovate today. We refuse to accept the way things have always been done. Children and families are waiting for our help and their bravery demands that we relentlessly challenge assumptions to develop new approaches.
  • Embrace humanity. We lead with empathy and authenticity, presuming competence and good intentions. When we stumble, we use the opportunity to learn and grow stronger.
  • One team, diverse perspectives. We work alongside families as one team towards a shared purpose. We champion diversity and acknowledge the contributions of others.

What You’ll Do

  • Designs and implements information security standards for applications and databases.
  • Assist with designing the IT environmental security controls to conform to relevant industry standards, such as CIS, HIPAA, NIST, HITRUST, and other related state requirements.
  • Interpret log outputs from a wide selection of physical and virtual network/ host devices and application classes (HIDS, NIDS, Firewalls, Proxies, Routers, Databases, Servers, Desktop Controls, Endpoint Protection, Custom Applications).
  • Integrate appropriate system and application related logs into SIEM to monitor and alert on threats to the assets supporting enterprise.
  • Protects against unauthorized access, modification, or destruction.
  • Create, implement, and test incident response procedures for new threat content and alerts.
  • Continually monitor and share cyber security intelligence with the IT team.
  • Design, implement, and operate information security best practices and procedures utilizing software (examples: utilization of Microsoft Entra, InTune, JAMF, Zscaler).
  • Monitor external threat environment to ensure Imagine Pediatrics is responsive to near and far term threats.
  • Respond to and resolve cyber security threats that may impact the confidentiality, integrity, or availability of Imagine Pediatrics systems and personnel.
  • Assess third-party vendor risks in relation to compliance with appropriate regulations.
  • Design, monitor, and evaluate controls for effectiveness and efficiency to mitigate areas of risk.
  • Safeguard data and identifying potential threats and impacts.
  • Ensure that security control initiatives are executed on schedule and in line with Imagine Pediatrics Information Security program objectives and corporate policies.
  • Develops and manages IT security policies and standards.
  • Applies professional discretion and judgement when viewing sensitive and personal data or information in the process of conducting work. Employee has access to large amounts of confidential information and must always conduct themselves responsibly in this regard.
  • Other duties as assigned.

What You Bring & How You Qualify
First and foremost, you’re passionate and committed to reimagining pediatric health care and creating a world where every child with complex medical conditions gets the care and support they deserve.

  • Bachelor of Science degree in Computer Science, Information Security, Business, Management, or related field is desired.
  • Relevant license or certification(s): GIAC, CISSP, CISA, CISM, CRISC, GCIH, Security+, CySA+, CEH, SSCP, ITIL preferred.
  • 6+ years of experience as an Information Security Analyst, Risk Analyst, Security Engineer, Information Security Engineer, or similar role. 4 of the 6+ years of experience are within the healthcare industry.
  • Experience with managing HITRUST programs.
  • Proficiency with security tools within the healthcare industry – assessing third-party vendor risks, in relation to compliance and appropriate regulations, safeguarding data, and the identification of potential threats and impacts.
  • Knowledge of IT systems, processes, and experience within internal technical control systems required.
  • Experience designing, monitoring, and evaluating controls for effectiveness and efficiency to mitigate areas of risk.
  • Strong diagnostic abilities.
  • Comfortable working knowledge of key technology concepts such as access control, confidential data, encryption, business continuity, information security vulnerability scans, and could services.
  • Proven history executing business impact projects within defined scope, providing deliverables, and within timeframe.
  • Ability to analyze and perform research.
  • Strong organizational, analytical, and problem-solving skills.
  • Works well and is effective in a dynamic and fast-paced environment, adaptable to shifting priorities.

What We Offer (Benefits + Perks)

The compensation for this role will include base pay in addition to competitive company benefits package and eligibility to participate in an employee equity purchase program (as applicable). When determining compensation, we analyze and carefully consider several factors including job-related knowledge, skills and experience. These considerations may cause your compensation to vary.

We provide these additional benefits and perks:

  • Competitive medical, dental, and vision insurance
  • Healthcare and Dependent Care FSA; Company-funded HSA
  • 401(k) with 4% match, vested 100% from day one
  • Employer-paid short and long-term disability
  • Life insurance at 1x annual salary
  • 20 days PTO + 10 Company Holidays & 2 Floating Holidays
  • Paid new parent leave
  • Additional benefits to be detailed in offer

We Value Diversity, Equity, Inclusion and Belonging

We believe that creating a world where every child with complex medical conditions gets the care and support they deserve requires a diverse team with diverse perspectives. We're proud to be an equal opportunity employer. People seeking employment at Imagine Pediatrics are considered without regard to race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, marital or veteran status, age, national origin, ancestry, citizenship, physical or mental disability, medical condition, genetic information, or characteristics (or those of a family member), pregnancy or other status protected by applicable law.