Security Engineer

TigerConnect is looking for a Security Engineer who will be responsible for driving important IT and information security initiatives.  The ideal candidate will have a background in systems engineering with an emphasis on information security.  The Security Engineer will be responsible for design, implementation, security and support of TigerConnect’s IT cloud environment, services, infrastructure, and endpoints.  Assist with the day-to-day information security operations and help with the implementation of the security strategy to enforce HIPAA compliance.

You will be expected to solve operational problems and help improve, streamline, and secure systems and data in the cloud. The ideal candidate will demonstrate initiative, a forward-thinking mindset as well as an eagerness to learn new skills and technologies. 

What You'll Own:

• Management and troubleshooting of end-user security (Firewalls, VPN, antivirus, IDS, IPS, Log monitoring).
• Complete various aspects of vulnerability assessment, vulnerability management, configuration and patch verification, and compliance oversight
• Own the security awareness initiatives with emphasis on phishing campaigns, compliance training and corporate security newsletters.
• Identify security control issues and emerging risks; develop opportunities for improvement and work with management to ensure timely and effective remediation
• Conduct information security control and policy reviews
• Ensure compliance with applicable security standards, regulatory requirements, and frameworks such as HITRUST.
• Responsible for our endpoint management/MDM software and strategy.
• Drive process and systems standardization, continuous improvement, and automation.
• Build and enhance infrastructure monitoring, configuration management, reporting and alerting systems.
• Be the voice of security and meet with internal departments to ensure best practices.
• Provide presentations to teams and executive leadership highlighting the current landscape, threats, and security roadmap.

​What You've Accomplished:

• 5 years’ experience in systems administration, ideally within a SaaS or technology startup environment
• Strong scripting and automation experience. Proficiency in at least one scripting language.
• Experience developing and maintaining IT standard operating procedures and playbooks
• Fundamental understanding of and hands-on experience with security technologies including DNS content filters, CASB, SIEM, DLP, vulnerability management, patch management, and MAM.
• Background in cybersecurity best practices, including strong experience implementing compliance controls for one or more security frameworks such as NIST 800-53, ISO 27002, HITRUST, SOX, and FEDRAMP.