What you'll do

Leveraging your passion and strong knowledge of infrastructure and network security, you will help grow, build, standardize, scale and operate our cloud security technology.  

In this hands-on technical position you will be responsible for implementing and operating a diverse set of cloud security controls and monitoring processes.  Executing through an Agile methodology, you’ll help define the various epics and stories that will design and implement frameworks and governance solutions integrated into the build automation processes.  Through continuous monitoring of the environments, implement targeted security improvements that enables the practice to maintain a highly secure and adaptable infrastructure.  

The Healthcare Systems and Services Engineering Team is focused on building out complex analytical solutions that enable our clients to transform the healthcare landscape.  Given the sensitivity of the datasets and regulations we operate in, we ensure a highly modern and secure platform to enable the ability to achieve these insights.  You will be a critical member of the team helping drive forward our technology stack to continuously increase the level of security automation and monitoring across the various assets that are built. 

In order to be successful, you will be an active learner, identifying and evaluating new tools and technologies to meet requirements. It is expected that your voice and opinion be heard and expressed.  We have an environment that thrives on the fact that people’s experiences and skillset variation create better solutions.  You will contribute code and participate in code reviews; you will break down user stories into technical tasks and requirements; and you will identify, communicate, and escalate risks when appropriate.

Who you'll work with

Joining our technology hub in Chicago, IL, you will be part of our engineering team within the Healthcare Systems and Services Practice.  Along with our other technology hubs in New York, NY, and San Jose, Costa Rica, the collective group enables the development of analytical based solutions that are leveraged within numerous client engagements across the globe.  You’ll work directly with architecture, engineering and compliance team members to improve overall security posture and automation capabilities. 

Qualifications

• 5+ years of experience as a DevOps Security Engineer focused on automated security solutions 
• Fluency in Python or similar scripting languages
• Experience with automated remediation (AWS Lambda/Boto3) utilizing monitoring tools (CloudWatch, FlowLogs, etc.)
• 2+ years of experience in configuration management and CI/CD tools such as Jenkins, CircleCI, Puppet, Chef, Ansible, Maven, Ant, Git, Sonatype
• Exposure/working understanding of container technology such as Kubernetes, Docker, OpenShift, ECS, EKS
• Experience building, implementing and operating security tools such as firewalls, privileged access, encryption within AWS (preferred) or other cloud vendors
• Experience with cloud identity and access management (IAM) solutions including authentication federation and least-privileged-access enforcement
• Experience in application log management and SIEM operation; SOAR experience (Demisto, Phantom, etc.) a plus 
• Experience in incident response and recovery a plus
• Security certifications such as CompTIA Security+, CCSP, GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH) are a plus