SR ENGINEER, INFO SEC – CLOUD SECURITY – REMOTE

JOB DESCRIPTION

Job Summary

Responsible for ensuring Molina compliance with both regulatory and company Information Security policies. Conduct various types of Information Security compliance and risk assessments. Monitor compliance by internal business units with security standards and policies. Maintain an awareness of state, federal, and company-established Information Security regulations/policies. Able to work with all levels of staff, management, and third-party service providers to identify and resolve areas of non-compliance.

KNOWLEDGE/SKILLS/ABILITIES

  • Work on a project basis to address Molina compliance as mandated by PCI DSS, Cloud Security (CSA), HIPAA, and Federal & State Regulations as well as new regulatory and/or company-established requirements.
  • Conduct PCI compliance assessments based on industry security standards and internal risk management policies.
  • Conduct PCI compliance testing to verify corporate PCI security controls meet the latest PCI DSS requirements.
  • Conduct cloud security assessment to ensure overall security of the cloud computing environment.
  • Execute Molina’s HIPAA Security Compliance Program, including perform assessments of new and existing application systems, and provide monitoring of remediation efforts by the business units.
  • Work with Molina IT groups and business owners to ensure new and existing application systems comply with mandated regulations and Molina IT security policies.
  • Evaluate and provide recommendations to IT teams and third parties on how to address areas of non-compliance.
  • Maintain an awareness of state and federal regulations & legislation and other governing requirements.
  • Independently manage multiple priorities and projects.
  • Knowledge of TCP/IP, Network security, Cyber Security best practices, Server Hardening, Endpoint Security, Encryption of data-at-rest and data-in-transit, Identity Management/Access Control, Active Directory, Windows server, Linux, vulnerability/patch management, SDLC, OWASP Top 10, and other network/system security fundamentals and best practices.
  • Excellent verbal and written communication skills.
  • Ability to maintain attendance to support required quality and quantity of work.
  • Ability to establish and maintain positive and effective work relationships with coworkers, clients, members, providers and customers.
  • Performing project management tasks as necessary, including working with various stakeholders to track and ensure timely completion of compliance-related efforts.
  • Coordinate with both business and IT stakeholders to align compliance requirements with business objectives.
  • Utilizing technical knowledge of various IT technologies and security implementations to continue to improve and mature processes.
  • Providing security recommendations as needed to maintain compliance with PCI DSS requirements, Cloud Security framework, NIST, HIPAA, etc..

JOB QUALIFICATIONS

Required Education

Bachelor’s degree in Information Systems, Accounting and/or related field (or equivalent work experience).

Required Experience

  • Minimum 5 years in IT Security, IT audit, IT compliance and/or other relevant information security and auditing experience.
  • Previous experience in performing assessments against PCI DSS, Cloud Security (CSA), NIST, HIPAA or other State & Federal regulations.
  • Proficient understanding of the PCI DSS Requirements.
  • Familiarity with Information Security control areas, including, but not limited to, Active Directory/Group Policies, vulnerability scanning/remediation, networking, incident management (CIRT), logging/monitoring, server hardening, access control, physical securityapplication security, DLP, endpoint security, etc.
  • Identification of new and relevant changes to regulations impacting the compliance of the organization.
  • Work with minimal supervision to perform required job responsibilities.
  • Effectively deliver recommendations based on assessments to maintain compliance.
  • Excellent written and verbal communication skills with all levels of staff.
  • Any other duties as assigned by management.

Required License, Certification, Association

CISA

Preferred Experience

  • PCI Internal Security Assessor (ISA) or Qualified Security Assessor (QSA).
  • One or more of the following certifications: CISA, CISM, CISSP.
  • Performing IT security compliance assessments/audits within the Healthcare industry.

Preferred License, Certification, Association

CISSP

To all current Molina employees: If you are interested in applying for this position, please apply through the intranet job listing.

Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V.

About Us

Molina Healthcare is a nationwide fortune 500 organization with a mission to provide quality healthcare to people receiving government assistance. If you are seeking a meaningful opportunity in a team-oriented environment, come be a part of a highly engaged workforce dedicated to our mission. Bring your passion and talents and together we can make a difference in the lives of others. Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V.

Job Type: Full Time

Posting Date: 02/24/2022

Job ID 2012373

More Information

Apply for this job

Leave your thoughts