Staff Security Engineer

The Staff Security Engineer will be responsible for helping ensure the security of Inovalon’s customers, staff, systems, and data across complex multi-cloud environments. The Staff Security Engineer will support the implementation, maintenance, and upkeep of our cloud security systems across AWS, Azure GCP, and OCI cloud environments. This includes auditing and strengthening existing cloud implementations and architecting and implementing solutions with a “Zero Trust” mindset.
The successful candidate will perform security assessments, analyze alternatives, develop recommendations, provide hands on trouble shooting and diagnosis for tools, and work across teams as needed to maintain the security health of the corporation.

Duties and Responsibilities:

• Build zero-trust architecture across multi-cloud platforms (AWS, Azure, GCP, OCI).
• Analyze, design, and develop security automation tools and scripts.
• Implement policy-as-code for automated security policy enforcement.
• Integrate data protection, threat management, monitoring, and platform tools.
• Create and maintain cloud templates, standards, and best practices.
• Conduct architecture reviews and security impact assessments.
• Provide expertise in selecting and implementing security measures.
• Lead threat assessments, identify capability gaps, and shape security roadmaps.
• Stay current with security trends and mentor team members through training and guidance.
• Adhere to all confidentiality, HIPAA, regulatory, and other such policies, procedures, and requirements as outlined within Employer’s Operating Policies and Procedures in all ways and at all times with respect to any aspect of the data handled or services rendered in the scope of work. 
• Maintain compliance with Inovalon’s policies, procedures and mission statement, and fulfill those responsibilities and/or duties that may be reasonably provided by Inovalon for the purpose of achieving operational and financial success. 

Minimum Qualifications: (Must have)

• Bachelor of Science degree in engineering or Information technology.
• At least 10 years of experience in progressive DevOps roles with a keen focus on cyber security.
• At least 3 years’ experience in one or more programming languages (Python, Java, Golang, PowerShell, Bash).
• At least 3 years’ experience working with cloud platforms and security features, including zero trust architectures across multi-cloud environments (AWS, Azure, GCP, OCI).
• At least 3 years’ experience using automation and security tools like Infrastructure as Code tools (CloudFormation, Terraform), Policy as Code tools (OPA), Security administration in Cloud.
• At least 3 years’ experience in Containerization (Docker/Kubernetes) and developing serverless applications.
   

Preferred Qualifications: (Nice to Have)

• Bachelor’s Degree in Cybersecurity discipline.
• 5+ years’ experience in one or more programming languages (Python, Java, Golang, PowerShell, Bash).
• 5+ years working with cloud platforms and security features including zero trust architecture across multi-cloud environment.
• 1+ years of experience and conceptual understanding of IP networking, routing and VPN fundamentals.
• 1+ years of experience with data protection, cryptography, key management, identity and access management, network security within multi-cloud environments.
• Familiarity with cloud automation and orchestration tools for optimizing security processes is a plus.
• Knowledge of industry regulatory and compliance requirements, such as HIPAA, PCI-DSS, NIST, HITRUST would be a huge plus.
• Any Cybersecurity certification like CISSP or AWS cloud security would be preferred.
  
  

Physical Demands and Work Environment:
  • Sedentary work (i.e. sitting for long periods of time);
  • Exerting up to 10 pounds of force occasionally and/or negligible amount of force.
  • Frequently or constantly to lift, carry push, pull or otherwise move objects and repetitive motion.

• Subject to inside environmental conditions.