Information Security Specialist
Imagen Dental Partners is a community of the best players in the game. We surround the industry's top dental experts with deep business expertise, resulting in the highest performing practices in the nation. We are the home for the exceptional, technology driven dentist. We strive for excellence in all that we do, supporting high achievers who embrace innovation. Founded by highly experienced industry experts we are expanding our footprint at tremendous speed. As a fast-growing startup, we look for people hungry for growth, who get things done, and are energized by a high-intensity environment.
We're building a culture at Imagen where 'A' players can do their best work. Developing powerful leaders and world class culture that generate revolutionary results. That's why our top priority is creating an environment in which talented people excel, collaborate, and do the most influential work of their careers. We value new ideas, fresh perspectives, and unique voices. Every. Day. We lead. We forge our own path in the marketplace. No one's been where we're going. And that's just how we like it. We strive to make the lives of everyone associated with our partner practices better. To bring a smile to every face. We create community - and inspire that community to become a movement.
We are pioneering our own path to become Dentistry's top player.
We trust amazing people to do amazing things.
Let's grow together.
The Role
We are seeking experienced candidates for the Information Security Specialistposition. This role will be responsible for maintaining operational security posture for all information systems or programs to ensure information system security policies, standards, practices, and procedures are established and followed enterprise wide. This is a hands-on position which requires advanced information/network security related skills. If you are a passionate self-starter and not afraid of wearing multiple hats, Imagen is a great place to get ahead.
Responsibilities
What You'll Do
- Working closely with the IT Services Manager to support the development and implementation of Imagen's Information Security strategy, architecture, governance, and compliance.
- Own and perform 3rd party vendor led, not limited to, Information Security, HIPAA, & PCI assessments. Create gap analysis and plan and implement mitigation strategies
- Implement and manage Information Security Management System (ISMS) to govern enterprise-wide administrative, physical, and technical controls
- Propose, lead, and implement effective enterprise-wide Information Security controls within the organization
- Drive vulnerability management and risk assessment efforts including the identification and remediation of risks through scanning, penetration testing and other means.
- Champion security awareness program through daily interactions, behaviors, and informal and formal training sessions
- Create and maintain documented security findings and procedures.
- Be a subject matter expert for your domain by staying on top of Information Security industry trends and best practices, attack and mitigation techniques
- Implement, monitor, and report KPIs related to IT (network and end-user computing) systems (on-premises and Azure) for proper operation, error conditions and unauthorized changes
- Respond to alerts and take corrective actions; provide root cause analysis and suggest improvements
- Build and create regular cadence of working relationship with legal and compliance team to create enterprise-wide risk management system
- Ensure solutions are consistent with organizational objectives.
- Other duties as assigned.
Qualifications
Experience You'll Bring
- Bachelor's degree or higher in Computer Science or related field
- 8+ years of directly related information/network security engineering experience
- Solid understanding of identity management and identity management products and how to effectively use them against both internal and external solutions to federate user identities
- Solid understanding of security monitoring solutions and event management systems (SIEMS, audit logs, and associated metrics)
- Solid understanding of industry standard security frameworks, benchmarks, and controls (e.g. NIST, CIS, HIPAA, PCI, etc.)
- Expert knowledge of Meraki Firewalls or similar security systems, applications, tools, and methodologies
- Expert knowledge of methods and tools to identify and remediate system and end-user security vulnerabilities
- Expert knowledge of concepts and practices related to security engineering, network and end-user security, authentication and security protocols, cryptography, and application security
- Knowledge of the OSI network model, Ethernet and common TCP/IP based services including DNS, DHCP, HTTP, FTP, SSH, SMTP and others
- CompTIA, Security+, or CISSP certification preferred
- Excellent verbal and written communication skills
- Strong communication and collaboration skills
- Strong troubleshooting, problem solving and conceptualization skills
- Must be highly curious, driven, and disciplined