Garner's mission is to transform the healthcare economy, delivering high quality and affordable care for all. By helping employers restructure their healthcare benefit to provide clear incentives and data-driven insights, we direct employees to higher quality and lower cost healthcare providers. The result is that patients get better health outcomes while doctors are rewarded for practicing well, not performing more procedures. We are backed by top-tier venture capital firms, are growing rapidly and looking to expand our team.
We are seeking a skilled and motivated Sr. Security Operations Engineer to join our dynamic team. As a Security Operations Engineer, you will play a crucial role in safeguarding our organization's digital assets and ensuring the integrity and confidentiality of our systems and data. You will be responsible for implementing and maintaining security measures, monitoring for security incidents, and responding promptly to security breaches. This role offers an exciting opportunity to work with cutting-edge technology and contribute to the overall security posture of our organization.
Responsibilities will include:
- Security Infrastructure Management: Design, implement, and manage security infrastructure components such as firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, VPNs, and secure authentication mechanisms.
- Incident Detection and Response: Monitor security systems and tools for suspicious activity, investigate security incidents, and coordinate incident response efforts to mitigate potential threats and minimize impact.
- Vulnerability Management: Conduct regular vulnerability assessments and penetration tests, analyze results, and collaborate with relevant teams to prioritize and remediate security vulnerabilities in a timely manner.
- Security Compliance: Ensure compliance with relevant security standards, regulations, and best practices (e.g., HITRUST, SOC 2, ISO 27001) through continuous monitoring, auditing, and enforcement of security policies and procedures.
- Security Awareness and Training: Develop and deliver security awareness training programs for employees, educate stakeholders on security best practices, and promote a culture of security awareness throughout the organization.
- Security Incident Documentation and Reporting: Document security incidents, their resolution, and lessons learned for future reference. Prepare and present regular reports on security metrics, incidents, and trends to management and relevant stakeholders.
- Security Tool Evaluation and Integration: Research, evaluate, and recommend new security technologies, tools, and processes to enhance the organization's security posture and capabilities. Integrate new security solutions into existing infrastructure as needed.
Ideal candidate has:
- Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degree or relevant certifications (e.g., CISSP, CEH, GIAC) is a plus.
- Proven experience (4+ years) in a security operations role, preferably in a fast-paced environment such as a technology company or HealthTech company.
- In-depth knowledge of network security principles, protocols, and technologies, including but not limited to firewalls, IDS/IPS, SIEM, DLP, encryption, and secure authentication mechanisms.
- Hands-on experience with security tools and technologies such as Splunk, Snort, Suricata, Nessus, or similar.
- In-depth knowledge of cloud infrastructure, AWS, Cloud based security tools and services
- Strong understanding of common security vulnerabilities and attack vectors, as well as techniques for their detection, prevention, and mitigation.
- Excellent analytical and problem-solving skills, with the ability to analyze complex security incidents and recommend effective solutions.
- Effective communication skills, with the ability to convey technical information to non-technical stakeholders and collaborate effectively with cross-functional teams.
- Proven ability to work independently, prioritize tasks, and manage multiple projects simultaneously while adhering to deadlines.
What we look for at Garner:
- Mission First: Our mission is to transform our healthcare system, delivering high quality and affordable care to all. Everything else is secondary.
- Expect Extraordinary: Our mission is audacious, so we will only succeed by producing exceptional results. We continually push ourselves and each other to new heights and beyond our comfort zones.
- Courageous Communication: Transparency and candor are imperative to realizing our potential as an organization and as individuals—even when uncomfortable. Many companies talk about these values. We live them.
- Supportive community: We know that people do their best work and learn the most when they feel genuinely supported and cared for. It’s also more fun that way.
The target salary range for this position is: $150,000 - $190,000. Individual compensation for this role will depend on a variety of factors including qualifications, skills and applicable laws. In addition to base compensation, this role is eligible to participate in our equity incentive and competitive benefits plans.
Garner Health is proud to be an Equal Employment Opportunity employer and values diversity in the workplace. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics.
Garner Health is committed to providing accommodations for qualified individuals with disabilities in our recruiting process. If you need assistance or an accommodation due to a disability, you may contact us.
