Staff Security Engineer

at GHX
💰 $122k-$163k
🇺🇸 United States - Remote
🔒 Cybersecurity🔵 Mid-level

Job description

We are looking for a security-minded, hands-on senior individual with strong Access Management and Cloud Security experience to support our global Identity and Access Management (IAM) and Cloud/Infrastructure security programs. The candidate must have strong operational knowledge of the security/infrastructure tool landscape and have a track record of optimizing and automating processes to achieve measurable efficiency and accuracy gains. This role is integral to the cyber security program, and works directly alongside the Security Architecture / Engineering, Security Operations, Tech Infrastructure and Network teams.

Responsibilities

  • Support for IAM, Cloud Security and Infrastructure Security projects, including (but not limited to) IAM Governance solutions (e.g., SailPoint), Privilege Access Management solutions (PAM), Cloud Assessments and Configuration, Certificate Management, Mobile and Remote Access (e.g., VPN) Security.
  • Implement security processes to support IAM, Cloud and Infrastructure Security using best-in-class security engineering principles.
  • Experience with security metrics and measurements and process automation – understand how to measure IAM and Cloud processes and how to improve them based on historical data.
  • Partner with Security/Infrastructure/Product Engineers to evaluate best in class security solutions and plan production deployments and help document runbooks accordingly.
  • Participate in enterprise cybersecurity tabletop exercises across cross-function teams.
  • Partner with Security Operations (SecOps) Engineers to identify and evaluate best-in-class security solutions, plan production deployments, and help document runbooks accordingly.
  • Provide support for System and Organization Controls (SOC) audits through the gathering of objective evidence.
  • Assist with user access reviews (UARs), including interfacing with application teams, gathering data for entitlements and descriptions, populating entitlement data, communicating with reviewers, and generating UAR status reports
  • Implement identity security metrics and measurements and process automation – understand how to measure monitoring/IR processes and how to improve them based on historical data.
  • Security tool operations – running, maintaining, optimizing, and configuring rules for various tools across Security such as IAM, PAM and EPM.

Knowledge and Skills

  • Experience with IAM products, such as SailPoint Identity Security Cloud, Entra ID, and Okta.
  • Experience with IGA operational triage, requests, and resolutions within SLAs.
  • Strong understanding of IAM and Cloud/Infrastructure Security and concepts.
  • Understand what it means to “think like a hacker” and take the attacker viewpoint.
  • Experience with operating security tools or equivalent IAM, Cloud/Infrastructure tools such as Microsoft Active Directory (AD), IAM Governance (e.g. SailPoint), PAM & EPM (e.g. BeyondTrust, CyberArk), Certificate Management (e.g. Venafi).
  • Understanding of identity security architecture and engineering concepts.
  • Strong understanding of MITRE TTPs or similar.
  • Experience with onboarding applications into an IAM solution.
  • Experience testing IAM solutions, including test case development, data staging, test execution, and documenting test results.
  • Experience with automating IAM workflows.
  • Experience with SQL, PowerShell, Postman, and Visual Studio Code.
  • Experience with Microsoft Excel functions and macros for data analysis and reporting.
  • Experience with Agile methodologies.
  • Experience with Atlassian suite of products, including Jira and Confluence.

Required Experience

  • 3+ years of relevant IAM, Cloud, Infrastructure Security, or equivalent Infrastructure experience.
  • 5+ years of IT experience.

Preferred Experience

  • CISSP or equivalent.
  • Demonstrated past contributor and “plugged-in” to the security community and various industry sources.

Key Differentiator

  • Security tools experience or equivalent infrastructure experience.
  • Strong communicator who can partner internationally with senior security and application team members.
  • Self starter, takes initiative with strong conviction.

Estimated Salary Range for this position: $122,000 to $163,800

The base salary range represents the anticipated low and high end of the GHX’s salary range for this position. The base salary is one component of GHX’s total compensation package for employees. Other rewards and benefits include: health, vision, and dental insurance, accident and life insurance, 401k matching, paid-time off, and education reimbursement, to name a few. To view more details of our benefits, visit us here: https://www.ghx.com/about/careers/

#LI-SR

GHX: It’s the way you do business in healthcare

Global Healthcare Exchange (GHX) enables better patient care and billions in savings for the healthcare community by maximizing automation, efficiency and accuracy of business processes.

GHX is a healthcare business and data automation company, empowering healthcare organizations to enable better patient care and maximize industry savings using our world class cloud-based supply chain technology exchange platform, solutions, analytics and services. We bring together healthcare providers and manufacturers and distributors in North America and Europe - who rely on smart, secure healthcare-focused technology and comprehensive data to automate their business processes and make more informed decisions.

It is our passion and vision for a more operationally efficient healthcare supply chain, helping organizations reduce - not shift - the cost of doing business, paving the way to delivering patient care more effectively. Together we take more than a billion dollars out of the cost of delivering healthcare every year. GHX is privately owned, operates in the United States, Canada and Europe, and employs more than 1000 people worldwide. Our corporate headquarters is in Colorado, with additional offices in Europe.

Disclaimer

Global Healthcare Exchange, LLC and its North American subsidiaries (collectively, “GHX”) provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, national origin, sex, sexual orientation, gender identity, religion, age, genetic information, disability, veteran status or any other status protected by applicable law. All qualified applicants will receive consideration for employment without regard to any status protected by applicable law. This EEO policy applies to all terms, conditions, and privileges of employment, including hiring, training and development, promotion, transfer, compensation, benefits, educational assistance, termination, layoffs, social and recreational programs, and retirement.

GHX believes that employees should be provided with a working environment which enables each employee to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, national origin, sex, sexual orientation, gender identity, religion, age, genetic information, disability, veteran status or any other status protected by applicable law. GHX expects and requires the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere. Improper interference with the ability of GHX’s employees to perform their expected job duties is absolutely not tolerated.

Share this job:
Please let GHX know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

GHX logo

GHX

Automating healthcare supply chain

  • 1001-5000 employees
  • Founded in 2000
  • 9 remote jobs
View all jobs

Latest Jobs at GHX

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply