Inovalon was founded in 1998 on the belief that technology, and data specifically, would empower the transformation of the entire healthcare ecosystem for the better, improving both outcomes and economics. At Inovalon, we believe that when our customers are successful in their missions, healthcare improves. Therefore, we focus on empowering them with data-driven solutions. And the momentum is building.
Together, as ONE Inovalon, we are a united force delivering solutions that address healthcare’s greatest needs. Through our mission-based culture of inclusion and innovation, our organization brings value not just to our customers, but to the millions of patients and members they serve.
Overview: The Principal Security Engineer will be responsible for helping ensure the security of Inovalon’s customers, staff, systems, and data across complex multi-cloud environments. The Principle Security Engineer will support the implementation, maintenance, and upkeep of our cloud security systems across AWS, Azure GCP, and OCI cloud environments. This includes auditing and hardening existing cloud implementations and architecting and implementing solutions with a “Zero Trust” mindset.
The successful candidate will perform security assessments, analyze alternatives, develop recommendations, provide hands on trouble shooting and diagnosis for tools, and work across teams as needed to maintain the security health of the corporation.
Duties and Responsibilities:
· Design and develop zero-trust architectures across multi-cloud environments (AWS, Azure, GCP, OCI)
· Performs analysis, design, and development of security automation tools / scripts
· Design and develop automated security policy enforcement mechanisms using policy-as-code methods
· Designing and integrating data protection processes, threat management, and monitoring and platform tools
· Conduct threat modeling, security architecture reviews, risk assessment, and provide guidance on mitigating identified issues.
· Developing and updating cloud templates, standards, and best practices to be used by multiple cloud projects.
· Conduct architecture reviews and security impact assessments for technology and software development issues.
· Provides technical expertise and direction for the selection and implementation of a diverse suite of information security countermeasures;
· Provides technical leadership to assess threats, identifies gaps in capabilities, and supports development of a roadmap to evolve the corporation’s security posture;
· Provides technical leadership to recommend appropriate information security frameworks, requirements, direction and system recommendations;
· Stay abreast of security best practices and technologies, and foster the growth of team members by providing, training, guidance and mentoring;
· Configure existing technologies in an effort to solve operational issues; and
· Additional responsibilities as assigned by management.
· Adhere to all confidentiality and HIPAA requirements as outlined within Inovalon’s Operating Policies and Procedures in all ways and at all times with respect to any aspect of the data handled or services rendered in the undertaking of the position;
· Fulfill those responsibilities and/or duties that may be reasonably provided by Inovalon for the purpose of achieving operational and financial success of the Company;
· Uphold responsibilities relative to the separation of duties for applicable processes and procedures within your job function; and
· We reserve the right to change this job description from time to time as business needs dictate and will provide notice of such.
Job Requirements:
· 10+ years of experience in progressive cyber security technical leadership roles;
· Proficient in one or more programming languages (Python, Java, Golang, PowerShell, Bash)
· Strong knowledge of cloud platforms and their security features, including zero trust architectures across multi-cloud environments (AWS, Azure, GCP, OCI)
· Hands on experience with some of the following:
o Infrastructure as Code tools (CloudFormation, Terraform)
o Policy as Code tools (OPA)
o CI/CD and DevSecOps Tooling
o Security administration in AWS/GCP/Azure/OCI
o Docker and Kubernetes
o Developing and securing serverless applications
o Core understanding of IP networking, routing, VPN
o Cloud native security related tools
· Experience with data protection, cryptography, key management, identity and access management, network security within multi-cloud environments.
· Familiarity with cloud automation and orchestration tools for optimizing security processes.
· Knowledge of industry regulatory and compliance requirements, such as HIPAA, PCI-DSS, NIST, HITRUST
Education:
· Required: Bachelor of Science in an engineering or technical discipline;
· Preferred: Bachelor of Science in a cybersecurity discipline or a Masters in an engineering or technical discipline with cybersecurity coursework; and
· Preferred – CISSP, AWS Security.
Physical Demands and Work Environment:
· Sedentary work (i.e. sitting for long periods of time);
· Exerting up to 10 pounds of force occasionally and/or negligible amount of force;
· Frequently or constantly to lift, carry push, pull or otherwise move objects and repetitive motions;
· Subject to inside environmental conditions; and
· Travel for this position will include less than 5% locally usually for training purposes.
The actual base pay offered may vary depending on multiple factors including, but not limited to, job-related knowledge/skills, experience, business needs, geographical location, and internal equity. At Inovalon, it is not typical for an individual to be hired at or near the top end of the range for their role, and compensation decisions are dependent upon the facts and circumstances of each position and candidate.
Base Compensation Range
$167,900—$225,000 USD
Studies have shown that women and people of color are less likely to apply for jobs unless they believe they meet every one of the qualifications listed in a job description. If you don’t meet every qualification listed but are excited about our mission and the work described, we encourage you to apply regardless. Inovalon is most interested in finding the best candidate for the job and you may be just the right person for this or other roles.
By embracing diversity, equity and inclusion we enhance our work environment and drive business success. Inovalon strives to reflect the diversity of the communities where we operate and of our clients and everyone whom we serve. We endeavor to create a culture of inclusion in which our associates feel empowered to bring their full, authentic selves to work and pursue their professional goals in an equitable setting. We understand that by fostering this type of culture, and welcoming different perspectives, we generate innovation and growth.
Inovalon is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirement.
The Company maintains a drug free work environment for all of its associates, which includes employees, contractors and vendors. It is unlawful for associates to manufacture, sell, distribute, dispense, possess or use any controlled substance or marijuana in the workplace and doing so will result in disciplinary action, up to and including termination of employment or the contracted relationship.
To review the legal requirements, including all labor law posters, please visit this link
