Lead Security Administrator

About Us

Homecare Homebase, a subsidiary of Hearst Corporation is a market leader in healthcare software development providing mobile cloud-based solutions for clinical, operational, and financial improvement of homecare and hospice agencies throughout the United States.  Our software enables real time solutions for wireless information exchange and communication between office staff, field staff, and physicians. 

Our success is fueled by our talented technology teams that are driven by their passion to make a difference in patient care.  Our employees work in a culture that is guided by values of caring, action, respect, excellence, and smile (a positive attitude).  If you want to work in a role where your skills have a direct influence on patient care, Homecare Homebase is the next step in your career.  We are hiring technologists that want to make a difference. 

Lead Security Operations/Administration

The Lead Security Administrator is a technical leader who assures infrastructure alignment with modern Platform design and meets the business strategy. The Lead Security Administrator designs, builds, and documents new and existing environments. We are looking for someone with a strong security focused mindset and the hands-on ability/practice to implement and security platforms across a hybrid private and public cloud.

RESPONSIBILITIES

Responsibilities for the Lead Security Administrator can vary, but should include:

• Act as a technical leader/people, subject matter expert and point of escalation while providing technical direction to team-members and evangelize best practices and methodologies.
• Act in a Product Owner role for the team, aligning priorities to the strategy.
• Management of Professional Service engagements and other staff augmentation options.
• Support the company journey of moving to modern cloud operations.
• Stay current on security trends and integrated technologies.
• Conduct necessary analysis, design, and prepare technical documentation and runbooks for new toolsets and processes.
• Cultivate strong working relationships with scrum teams, engineers, architects, vendors, contractors, and leadership.
• Leverage, support, and advocate the use of configuration management tools for infrastructure in a hybrid cloud model.
• Align system capabilities to overall solution and business strategy.
• IT Service Management fulfiller including incident, problem, and change.
• Recommend and implement software, tools, or solutions to enhance security posture.
• Available outside of business hours to respond to high priority escalations.

QUALIFICATIONS

• 2+ years Security team lead experience.
• Bachelor’s degree in information technology, Computer Science, or related (equivalent experience considered).
• Experience managing a team of security administrators/operators
• 4+ years’ experience in 24x7 production environments.
• Demonstrated experience with Splunk Core, Splunk Enterprise Security.
• Experience with event and incident handling
• Experience working in a regulated industry such as HIPAA, PCI, SOX.
• Security work experience in a healthcare context dealing with HiTrust (desired).
• Experience working in an Agile environment.

BUSINESS ACUMEN

• Strong written and verbal interpersonal skills.
• Excellent problem solving and analytical skills with attention to detail and driving issues to resolution.
• Strong customer focus, ownership, bias for action and the ability to dive deep.
• Excellent ability to align business processes and requirements with a technical implementation focus.
• Support compliance program including being able to create artifacts.
• Write and contribute to project plans, features, and engineering / architecture level documentation.

TECHNICAL SKILLS

• Experience designing and management large-scale distributed systems.
• Operations and management of platforms used within Security Operations including but not limited to Cortex, Splunk ES, and CyberArk.
• Root cause analysis that can be presented to technical and Executive audiences.
• Proficient in the detection, response, mitigation, and/or reporting of cyber threats.
• Proficient with NTLM and Kerberos authentication protocols, administration, and hardening.
• Network/Server security attack mitigation.
• Collaborating with cross function teams.
• Windows/Linux security/administration knowledge
• Experience with load balancers such as NetScaler, F5, and Azure load balancers.
• Inventory management of all network devices.
• Creates and maintains documentation to support policies, procedures, and runbooks.
• Design systems management solutions using automation and self-repair rather than relying on alarms and human intervention.
• Develop appropriate metrics and monitors to ensure operational excellence for services being supported. Aligning monitoring to SLA requirements.
• Working with internal teams to secure assets.
• Knowledge of CyberArk platform or similar product

EDUCATION / CERTIFICATION / TRAINING:

• Bachelor degree in Computer Science, Cybersecurity, Engineering, Math or related (equivalent experience considered).
• Candidates with relevant certifications are preferred, including but not limited to the following:
  • Security analysis (eg. Security+, GSEC, GCIH, GCIA, etc)
  • Security management\architecture (eg. CASP+, CISSP, NCSF, etc)
  • Security engineering (eg. Azure SAE, GCWIN, GCUX, PCCSA\CCNA, etc)
  • Information security auditing (eg. CISA, CIA, GSNA, ISO, etc)
  • Certifications in Splunk 
  • Certifications related to ITIL\ITSM 

This position does not provide sponsorship. All applicants should either be US Citizens or Permanent Residents eligible to work in the US without immigration restrictions.