• Information Security Engineering and Architecture…

    LA Care Health Plan (Los Angeles, CA)


    Information Security Engineering and Architecture Engineer III

     

    Job Category: Information Technology

     

    Department: Information Security

    Location:

    Los Angeles, CA, US, 90017

     

    Position Type: Full Time

     

    Requisition ID: 12279

     

    Salary Range: $121,056.00 (Min.) - $160,400.00 (Mid.) - $199,742.00 (Max.)

     

    Established in 1997, L.A. Care Health Plan is an independent public agency created by the state of California to provide health coverage to low-income Los Angeles County residents. We are the nation’s largest publicly operated health plan. Serving more than 2 million members, we make sure our members get the right care at the right place at the right time.

     

    Mission: L.A. Care’s mission is to provide access to quality health care for Los Angeles County's vulnerable and low-income communities and residents and to support the safety net required to achieve that purpose.

    Job Summary

    The Information Security (InfoSec) Engineering and Architecture (ISEA) Engineer III follows a “Security by Design” Methodology ensuring Security is built-into products, technologies, SaaS solutions, etc. in the early phases of a technology or solution implementation. This position engineers, implements, and maintains information security systems and controls for L.A. Care Health Plan.

     

    The ISEA Engineer III works closely with the Cyber Defense Operations Center (CDOC) Analysts and the various departments and technical staff within Information Technology (I.T.). This position collaborates with business units on the front end in the build of a new solution to ensure security measures are in place from the beginning of the project. Acts as a Subject Matter Expert (SME), serves as a resource and mentor for other staff.

    Duties

    Ensures all InfoSec tools are configured appropriately. Ensures all InfoSec tools are capturing and displaying the most relevant and actionable information the tool is designed to deliver. Ensures all InfoSec tools are running at their current supported versions.

     

    Proactively develops and enforces security plans and standards to maintain the confidentiality, integrity, and availability of the organization’s and member’s data.

     

    Interfaces directly with technical and business staff to design and implement security architectures to protect LA Care information assets.

     

    Develops systems and processes to prevent information and infrastructure breaches.

     

    Designs and implements elegant solutions to complex security and risk problems.

     

    Applies appropriate technologies while following security engineering best practices.

     

    Fosters constructive dialogue and problem resolution when confronted with differing viewpoints on security risks.

     

    Conducts research to identify attack vectors against the organization. Identifies and assesses vulnerabilities and risks to enterprise applications, infrastructure, and data. Develops and implements technical solutions to counter vulnerabilities and risks.

     

    Develops plans for incident response.

    Duties Continued

    Acts as the technical expert in multiple domains to lead the Information Security team during incident and breach responses.

     

    Leads security projects (including security reviews, tool development, and creation of new security practices) with end-to-end ownership. Provides security consulting services to various projects.

     

    Creates security guidance and documentation. Develops security tools and automation.

     

    Supports the enterprise data loss prevention program by identifying and controlling data loss channels.

     

    Works with IT and business units to address their data loss prevention requirements.

     

    Provides on-call support on a rotational basis as part the Information Security team.

     

    Applies subject expertise in evaluating business operations and processes. Identifies areas where technical solutions would improve business performance. Consults across business operations, providing mentorship, and contributing specialized knowledge. Ensures that the facts and details are correct so that the project’s/program's deliverable meets the needs of the department, and organization policies, standards, and best practices. Provides training, recommends process improvements, and mentors junior level staff, department interns, etc. as needed.

     

    Performs other duties as assigned.

    Education Required

    Bachelor's Degree in Science or Technology

     

    In lieu of degree, equivalent education and/or experience may be considered.

    Education Preferred

    Experience

    Required:

    At least 6 years of experience in a senior Information Security role.

     

    Operational experience configuring and managing a Security Information and Event Management (SIEM) platform.

     

    Operational experience using and configuring a vulnerability management platform.

     

    Operational experience using a static application security testing platform.

     

    Operational experience assessing and securing cloud computing environments (e.g., AWS, Azure, etc.).

    Preferred:

    Operational experience building or reviewing threat models.

     

    Operational experience in a regulated environment (e.g., classified networks, healthcare, finance, banking, etc.).

     

    Skills

    Required:

    Strong working knowledge in one or more of the following disciplines: DevOps, Digital Forensics, Penetration Testing, Programming (Java preferred), and/or System or Network Administration.

     

    Working knowledge of data loss prevention (DLP) toolsets.

     

    Strong understanding of networking and communication protocols (such as TCP/IP, UDP, SSL/TLS, IPSEC, HTTP/S, etc.).

     

    Understanding of web service frameworks and service architectures (such as event-driven, service-oriented, or server less architectures).

     

    Ability to collaborate with internal and external key stakeholders.

     

    Combination of strong troubleshooting, technical, and communication skills.

     

    Licenses/Certifications Required

     

    Licenses/Certifications Preferred

    Required Training

    Physical Requirements

    Light

     

    Additional Information

     

    Professional Certifications

    Preferred:

    One or more of:

    Certified Information Systems Security Professional (CISSP)

     

    Certified Ethical Hacker (CEH)

     

    Certified Hacking Forensic Investigator (CHFI)

     

    GIAC Certified Detection Analyst (GCDA)

     

    Offensive Security Certified Professional (OSCP)

     

    Salary Range Disclaimer: The expected pay range is based on many factors such as geography, experience, education, and the market. The range is subject to change.

     
     

    + Paid Time Off (PTO)

    + Tuition Reimbursement

    + Retirement Plans

    + Medical, Dental and Vision

    + Wellness Program

    + Volunteer Time Off (VTO)