Security Engineer II jobs in United States
cer-icon
Apply on Employer Site
company-logo

MedImpact Healthcare Systems, Inc. · 3 weeks ago

Security Engineer II

positionSan Diego, CA
timeFull-time
remoteHybrid
seniorityMid, Senior Level, Lead/Staff
money$111K/yr - $200K/yr
date8+ years exp

MedImpact Healthcare Systems, Inc. is looking for extraordinary people to join their team as Information Security Engineer II. The role involves developing, executing, and monitoring enterprise-wide information security and includes direct security support for corporate subsidiaries, ensuring business information is secure from unauthorized access and inappropriate alteration.

Health CarePharmaceutical
badNo H1Bnote

Responsibilities

Enforces policy and supports security procedures, applications, and systems through the documentation of the resolution of assigned cases that range from simple to complex. Recommends changes to existing security process and procedures
Ability to utilize Endpoint Threat Detection and Response/Hunting toolsets
Creates requirements for product evaluations and/or procedures to enhance productivity and effectiveness. Provides direct support to the business and IT staff for security related issues
Drives the delivery of new and upgraded security applications, systems, and workflow. Tests new systems for effective operations
Leads efforts to proactively maintain and improve the automation, reliability, consistency, and the quality of existing IT security tools and environments throughout the organization. Assists in the design, deployment, integration and configuration of security solutions or enhancements to ensure functionality
Ensures the confidentiality, integrity, and availability of data residing on or transmitted to, from, or through the enterprise workstations, servers, application systems, and data repositories
Initiates, facilitates, and promotes activities to create information security awareness. Disseminates and educates users on security policies and practices. Participates in regular security awareness training and updates to ensure consistent compliance with IT Security Policies
Works cross-functionally and interacts with internal business units and stakeholders to support the business’ needs. Using an automated customer case request system, tracks and documents security service requests and completed cases
Participates in daily activities and reporting required for regulatory and contractual information security obligations. Coordinates tasks that are performed within the infrastructure (system administration, network administration, application support, etc.) for security updates and initiatives. Performs analysis, design and development of security features for system architecture
Participates in security incident investigations and provides on-going communication to security management. Identifies root causes of security events and proposes solutions; closes out and documents investigations. Ensures confidentiality and appropriate personnel are involved in the investigation
Maintains up-to-date industry knowledge through formal/informal training, industry associations and research of latest technologies critical to the success of the company’s information security program. Continuously works to identify and improve security solutions to defend the company against data security threats
Apprises and keeps management aware of security issues; handles and/or escalates issues appropriately
Provides guidance/training to less experienced staff
Apprises and keeps management aware of security issues; handles and/or escalates issues appropriately
Provides IT Security consultative support to internal and external clients
Manages IT Security related projects and assignments as assigned

Qualification

Endpoint ManagementIdentityAccess ManagementIntrusion DetectionPreventionVulnerability Assessment ToolsCertificate ManagementPatch ManagementMobile Device ManagementEDRFirewallVPNBusiness ContinuityComplianceAuditOS AdministrationSecurity Awareness TrainingDevice EncryptionWeb Content FilteringSecure E-mailWeb API Service SecurityWebserver applicationsAuthenticationSSOContainer SecurityAnalytical SkillsProblem SolvingCommunication Skills

Required

BS/BA and 8+ years' experience or equivalent combination of education and experience, and 4 years of SME in respective areas
Knowledge of Microsoft Office Suite
Endpoint Management Experience (BigFix, WSUS/SCCM, Symantec, Trend Micro, etc)
Identity and Access Management
Certificate Management
Patch Management (Windows and Unix)
Intrusion Detection and Prevention
Security Awareness Training
Mobile Device Management
EDR (Endpoint detection and response)
Web Content Filtering
Device Encryption
Vulnerability Assessment Tools
Firewall and VPN
Secure E-mail, Anti-SPAM
Webserver applications
Web API Service Security
Business Continuity (Disaster Recovery)
Compliance and Audit (HIPAA, HITRUST, SOC, GovRAMP and PCI a plus)
OS Administration (Windows, Linux and Unix)
Authentication and SSO
Container Security
Excellent analytical, problem solving and communication skills
Familiarity with SSAE SOC 1 and SOC 2, HITRUST, federal/state security and privacy frameworks, HIPAA, PCI and regulatory requirements for information security
Good understanding of standard policies and procedures for information security
Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists
Ability to define problems, collect data, establish facts, and draw valid conclusions
Ability to apply concepts such as fractions, percentages, ratios, and proportions to practical situations
Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals
Ability to compute rate, ratio, and percent and to draw and interpret bar graphs
Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community
Ability to respond effectively to the most sensitive inquiries or complaints
Demonstrate competencies such as Composure, Decision Quality, Organizational Agility, Problem Solving, Customer Focus, Drive for Results, Peer Relations, Time Management, Dealing with Ambiguity, Learning on the Fly, Political Savvy

Preferred

Security Certification strongly preferred
OWASP, ISSA, ISACA membership a plus

Benefits

Medical / Dental / Vision / Wellness Programs
Paid Time Off / Company Paid Holidays
Incentive Compensation
401K with Company match
Life and Disability Insurance
Tuition Reimbursement
Employee Referral Bonus

Company

MedImpact Healthcare Systems, Inc.

twittertwittertwitter
Glassdoor2.8
company-logo
MedImpact is the nation’s largest independent health solutions and pharmacy benefit company, serving commercial health plans, government programs, self insured/employer groups, and millions of consumers.
dateFounded in 1989
location
San Diego, California, USA
people-size1001-5000 employees
web-link
http://medimpact.com

Funding

Current Stage
Late Stage
Total Funding
$1.38M
2013-09-19Seed· $1.38M

Leadership Team

leader-logo
Frank Bunton
VP, CISO (Chief Information Security Officer)
linkedin
leader-logo
Larry Biggs
Manager, Information Security
linkedin

Recent News

Pharmacy Benefit Management Institute®
Pharmacy Benefit Management Institute® Announces 2025 Excellence Award Winners
2025-09-26
Business Wire
MedImpact’s MedEmpower Fuel™ Receives PBMI Excellence Award
2025-09-12
PR Newswire
Employment Law Attorneys, at Blumenthal Nordrehaug Bhowmik De Blouw LLP, Filed a Lawsuit Against Medimpact Healthcare Systems, Inc., for Alleged Wrongful Termination
2025-08-29
Company data provided by crunchbase