About The Role The IT Security Engineer's focus is on designing, implementing, and maintaining security systems to protect our digital infrastructure from cyber threats. Plays a crucial role in ensuring the confidentiality, integrity, and availability of our data and systems. This includes conducting regular data risk assessments, recommending controls, and countermeasures to mitigate identified risks, and monitoring the effectiveness of the implemented security measures. This role also acts as an expert and mentor for other team members in the organization and will be involved in developing and managing the overall data security and protection program. Primary Responsibilities + Implement and support cyber security solutions for BHPS systems and products that comply with all applicable security policies and standards. + Work with IT and internal/external business partners to ensure that security is factored in the evaluation, selection, installation and configuration process of hardware and software. + Analyze and make recommendations to improve network, system, and application architectures. + Examine network, server, and application logs to determine trends and identify security incidents. + Assist in the review and update of cyber security policies, architectures, and standards. + Assist in responding to audits, penetration tests and vulnerability assessments. + Support and oversee on-premises and cloud-based security solutions. + Responsible for security response, conducting forensics or coordinating with outside resources during a security breach. + Responsible for assisting in training requirements to the business as well as follow-up end-user testing related to all forms of cyber security .   Essential Qualifications + Security Operations: Provide expertise in various security tools, including firewalls, Web Application firewalls, IDS/IDP, anti-malware software, windows and UNIX. + Incident Response: Handle security incidents and breaches. Implement effective strategies to eliminate cyberattacks + Hands-on experience on Microsoft Security Solutions, especially on the following products + Purview: Understand and govern data across the organization. Safeguard data across platforms, apps, and clouds with comprehensive solutions for information protection, data governance, risk management, and compliance. + Entra: Secure access for a connected world. Protect identity and secure access to any resource with a family of multi-cloud identity and network access solutions. + Azure: Strengthen the security of cloud workloads with built-in services in Azure. Protect data, apps, and infrastructure quickly with built-in security services. + 5+ years of experience in security operations. + Ability to effectively assess and communicate risks and appropriate levels of urgency to management and engineering staff. + Excellent organizational, verbal, and written communication skills + Ability to succeed through collaboration and working through internal and external organizations and individuals. + CISSP, GIAC, CEH or Azure Security certified preferred but not required .   Associated Knowledge, Skills & Abilities + Technical expertise in network security knowledge, to include VPN, firewall, network monitoring, intrusion detection, web server security and wireless security + Practical experience with windows solutions security, vulnerability assessment and incident response + Proficiency with at least one scripting language (e.g., Perl, Python and PowerShell) + Understand business needs and has a commitment to delivering high-quality, prompt, and efficient service to the business + Analyze and recommend security controls and procedures in business processes related to the use of information systems/assets, while maintaining compliance + Monitor information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends + Administer authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets + Analyze trends, news and changes in threat and compliance environment with respect to organizational risk. Advise management and develop/execute plans for compliance and mitigation of risk. Perform risk and compliance self-assessments and engage/coordinate third-party risk and compliance assessments + Flexibility to work evenings and weekends as needed About At Brighton Health Plan Solutions, LLC, our people are committed to the improvement of how healthcare is accessed and delivered. When you join our team, you’ll become part of a diverse and welcoming culture focused on encouragement, respect and increasing diversity, inclusion and a sense of belonging at every level. Here, you’ll be encouraged to bring your authentic self to work with all of your unique abilities. Brighton Health Plan Solutions partners with self-insured employers, Taft-Hartley Trusts, health systems, providers as well as other TPAs, and enables them to solve the problems facing today’s healthcare with our flexible and cutting-edge third-party administration services. Our unique perspective stems from decades of health plan management expertise, our proprietary provider networks, and innovative technology platform. As a healthcare enablement company, we unlock opportunities that provide clients with the customizable tools they need to enhance the member experience, improve health outcomes and achieve their healthcare goals and objectives. Together with our trusted partners, we are transforming the health plan experience with the promise of turning today’s challenges into tomorrow’s solutions. Come be a part of the Brightest Ideas in Healthcare™. Company Mission Transform the health plan experience – how health care is accessed and delivered – by bringing outstanding products and services to our partners. Company Vision Redefine health care quality and value by aligning the incentives of our partners in powerful and unique ways. DEI Purpose Statement   At BHPS, we encourage all team members to bring your authentic selves to work with all of your unique abilities.   We respect how you experience the world and welcome you to bring the fullness of your lived experience into the workplace.  We are building, nurturing and embracing a culture focused on increasing diversity, inclusion and a sense of belonging at every level. Annual Salary Range: $120,000-$150,000 The salary range and/or hourly rate listed is a good faith determination that may be offered to a successful applicant for this position at the time of the posting of an advertisement and may be modified in the future. When determining a team member's base salary and/or rate, several factors may be considered as applicable by law including but not limited to location, years of relevant experience, education, credentials, skills, budget and internal equity. *We are an Equal Opportunity Employer JOB ALERT FRAUD:  We have become aware of scams from individuals, organizations, and internet sites claiming to represent Brighton Health Plan Solutions in recruitment activities in return for disclosing financial information.  Our hiring process does not include text-based conversations or interviews and never requires payment or fees from job applicants. All of our career opportunities are regularly published and updated brighonthps.com Careers section.  If you have already provided your personal information, please report it to your local authorities. Any fraudulent activity should be reported to: recruiting@brightonhps.com   Powered by JazzHR