Share this Job
Apply now »

Senior Information Security Engineer

Date:  Jun 10, 2021
Req ID:  43866
Remote Position:  Yes
Country:  US
Line of Business:  VSP Vision Care
Division:  Information Technology

VSP Global is comprised of five complementary businesses that combine high-quality eye care insurance, high-fashion eyewear, customized lenses, ophthalmic technology and retail solutions, with employees in over 23 countries. No matter the role, we’re all focused on a singular mission: to help people see. Learn more by visiting https://vspglobal.com/cms/careers/

General Summary

Under general direction, responsible for the planning, design and implementation of security architectures. Responsible for technical and specialized duties in the areas of security framework, architecture design, risk management, incident management, vulnerability management, information security program and technology implementations, with the goal of improving the overall security 

Essential Functions

Oversee the implementation of network and computer security and ensures compliance with corporate cybersecurity policies and procedures

 

Responsible for identification and validation of controls to meet cybersecurity requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related network devices

 

Ensure security infrastructure is built to meet security and availability requirements.  

 

Builds capability roadmaps with security architects to ensure ongoing compliance with legal, regulatory, contractual requirements.

 

Leads design and deployment of security technology.  Leads other Information Technology teams to ensure builds are done in a timely manner and comply to IT standards.

 

Documents end-to-end solutions and ensures completeness of solutions.

 

Identify changes to security infrastructure to best address a shifting threat environment and dynamic attack surface.

 

May participate in the investigation of intrusion incidents and conducts forensic investigations

Job Specifications

Typically has the following skills or abilities:

 

Bachelor’s Degree in Computer Science or related field or equivalent experience

 

Minimum 8 years of hands-on technical information security experience

 

Expert level knowledge of security principles and technologies

 

5+ years hands-on experience designing and implementing a variety of security solutions and technologies across multiple disciplines

 

Broad experience with risk and threat assessment methodologies

 

Proven ability to weigh business needs against risk concerns and articulate issues to business leaders

 

Extensive experience implementing security controls to comply with various IT regulatory compliance requirements such as HIPAA and PCI as well as various standards including ISO 27001

 

Strong, proven skills and ability to identify and analyze security vulnerabilities

 

Experience performing network and application security penetration testing and/or vulnerability management, interpreting results and remediating findings  

 

Ability to interact with personnel at all levels of the organization and interpret complex business initiatives

 

Excellent written and verbal communication skills

 

Ability to analyze various complex issues, projects, technologies and solutions

 

Ability to regularly exercise discretion and independent judgment in the performance of his/her job duties

#LI-REMOTE

Preferred Skills

Sailpoint IdentityNow
AWS architecture and/or engineering with a security focus
API Integrations
SaaS security - knowledge of requirements for securing SaaS products
MITRE ATT&CK and NIST CSF frameworks
Key Management
Encryption requirements for modern application architectures

Working Conditions / Physical Demands

The working environment is generally favorable.  Lighting and temperature are adequate, and there are no hazardous or unpleasant conditions caused by noise, dust etc.

The above information in this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.

VSP Global is an equal opportunity employer and gives consideration for employment to qualified applicants without regard to age, gender, race, color, religion, sex, national origin, gender identity, sexual orientation, disability or protected veteran status.  We maintain a drug-free workplace and perform pre-employment substance abuse testing.


Nearest Major Market: San Antonio

Job Segment: Information Security, Ophthalmic, Computer Science, Risk Management, Cloud, Technology, Healthcare, Finance

Apply now »