Infrastructure Security Engineer

Vital Care is the premier pharmacy franchise business with franchises serving a wide range of patients, including those with chronic and acute conditions. Since 1986, our passion has been improving the lives of patients and healthcare professionals through locally-owned franchise locations across the United States. We have over 100 franchised Infusion pharmacies and clinics in 35 states, focusing on the underserved and secondary markets. We know infusion services, and we guide owners along the path of launch, growth, and successful business operations.

What we offer:

Comprehensive medical, dental, and vision plans, plus flexible spending, and health savings accounts.

Paid time off, personal days, and company-paid holidays.

Paid Paternal Leave.

Volunteerism Days off.

Income protection programs include company-sponsored basic life insurance and long-term disability insurance, as well as employee-paid voluntary life, accident, critical illness, and short-term disability insurance.

401(k) matching and tuition reimbursement.

Employee assistance programs include mental health, financial and legal.

Rewards programs offered by our medical carrier.

Professional development and growth opportunities.

Employee Referral Program.

Job Summary:

Vital Care is looking for an Infrastructure Security Engineer that will be instrumental in the continuous improvement of the operational security posture and IT ecosystem that enables the company’s overall strategy. The qualified candidate will ensure solutions are implemented to the highest security and privacy standards working independently with various stakeholders across the organization.

Working in a regulated environment, the security engineer is expected to have proficiency with endpoint protections, vulnerability management and data loss protection concepts. The candidate will be responsible for assuring enforcement of security policies, monitoring the information security threat lifecycle, analyzing, and responding to security events escalated by the Security Operations Center (SOC) and coordinating actions to limit risks identified.

Duties/Responsibilities:

Monitoring computer security including intrusion detection/intrusion prevention, firewalls, encryption, anti-virus, log reviews and other software or appliances.

Knowledgeable of NIST Cyber Policies and Governance, Risk.

Monitor the vulnerability management process.

Handle security escalations and analyzes information security threats, requests, and audit findings. Provides recommendations to resolve issues and/or findings.

Collaborates with external vendors and partners as necessary, to implement secure solutions and resolve issues/incidents.

Support the implementation of technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.

Participate in security incident management and disaster recovery procedures and plans.

Develop and maintain information security policies and procedures adhering to HIPAA regulations and standards.

Coordinate security practices with Franchisees ensuring adequate coverage and timely response to security events.

Review and validate security alerts and incidents escalated by the SOC analysts, conducting in-depth analysis and investigation using threat intelligence and forensic tools.

Proactively identify and hunt for potential threats, security gaps, and vulnerabilities in the network, systems, and applications, using various tools and techniques.

Manage and configure the security monitoring tools, ensuring optimal performance and accuracy.

Create and update security documentation, such as policies, standards, guidelines, reports, and metrics.

Research and stay updated on the latest security trends, threats, and best practices.

Required Skills/Abilities:

Experience in building and maintaining security systems.

Detailed technical knowledge of infrastructure and operating system security.

Hands on experience in security systems, including vulnerability management, intrusion detection systems, anti-virus software, authentication systems, log management and content filtering.

Understanding of the latest security principles, techniques, and protocols.

Problem solving skills and ability to work under pressure.

Education and Experience:

Bachelor’s or master’s degree in computer science, Engineering, or 3-5 years of related experience.

Technical Leadership experience in data engineering, database development, or related roles, focusing on designing and building data pipelines and infrastructure.

Additional technical training, including CCSP, CISSP, or cybersecurity related certifications are preferred.

Healthcare background is preferred.

Physical Requirements:

Sitting: Prolonged periods of sitting are typical, often for the majority of the workday.

Keyboarding: Frequent use of a keyboard for typing and data entry.

Reaching: Occasionally reaching for items such as files, documents, or office supplies.

Fine Motor Skills: Precise movements of the fingers and hands for tasks like typing, using a mouse, and handling paperwork.

Visual Acuity: Good vision for reading documents, computer screens, and other detailed work.

Be part of an organization that invests in you! We are reviewing applications for this role and will contact qualified candidates for interviews.

Vital Care Infusion Services is an equal-opportunity employer and values diversity at our company. We do not discriminate on the basis of color, race, sex, age, religion, national origin, disability, genetic information, gender identity, sexual orientation, veterans’ status, or any other basis protected by applicable federal, state, or local law.

Vital Care Infusion Services participates in E-Verify.

This position is full-time.