The Information Security Operations Engineer will monitor, manage, and maintain the technologies and processes used to secure company information, systems and networks. The successful candidate must demonstrate a strong ability to manage and improve operational security functions, implement risk-based solutions, develop, and maintain security metrics, promote security best practices and training across the organization and partner with stakeholders from various IT and business teams. Focus areas will include managing security requests, conducting user access reviews, developing, and maintaining security documentation, network and endpoint security management, cloud security, vulnerability management, identity and access management, incident response, SIEM and log management and security monitoring and reporting. Additionally, the candidate will be responsible to contributing to internal control testing for client and regulatory audits (e.g., PCI, HIPAA, SOC1/2).

What you will do:

• Monitor and manage the Information Security request queue, including analysis and resolution of outstanding issues.
• Manage endpoint and network security environments including overall health, policy modifications, troubleshooting/resolving issues and producing monthly health metrics for workstations, servers, and identities.
• Work directly with the Information Security Team and Security Operations Center (SOC) to analyze and resolve security events/alerts. This includes some monitoring and management of the SIEM platform.
• Manage and maintain Information Security training and awareness campaigns (e.g., training, phishing). Developing/monitoring campaigns, ensuring required training is complete, producing reports/metrics and recommending improvements to the current process.
• Conduct internal security control testing. Includes gathering, uploading, and reviewing evidence within the GRC (Governance, Risk and Compliance) tool. Supporting PCI, SOC and related audits.
• Other duties as assigned.

What we need from you:

• Security focused degree and/or certifications a plus (e.g., BS/MS in Cybersecurity or related discipline, CISSP, CISA, etc)
• 3+ years of Information Security / Cybersecurity experience
• Strong knowledge of Information Security / Cybersecurity related technologies, processes, and tools. Minimum working knowledge of penetration testing, vulnerability management, SIEM/log analysis, TCP/IP, OSI Model, network security, endpoint security, identity and access control, Active Directory, Windows/Linux security, email security, DLP concepts, policy and governance, detection/monitoring, incident response, authentication concepts and asset discovery.
• Network security concepts and products (e.g., firewall (Cisco, AWS Network Firewall), network (e.g., Cisco, Meraki), email (O365, Avanan), IDS/IPS (e.g., Snort, Suricata). Cisco Umbrella a plus).
• Endpoint security products and concepts (e.g., malware protection, network protection, forensics, DLP, compliance. Bitdefender and Incydr a plus).
• Security monitoring (SIEM), analysis and resolution of security events/alarms. AlienVault a plus.
• Identity and access management concepts (e.g., Azure Active Directory, SSO, user access reviews).
• Implementing NIST CSF, CIS top 20, SOC 2, PCI, HIPAA or related security frameworks.
• Implementing Amazon AWS security tools and concepts.
• Identifying assets (e.g., servers, network devices, applications), identifying network layouts and determining security risk and potential solutions.
• Strong ability to monitor, test and validate that existing security controls and platforms are functioning as expected (e.g., process and technical auditing).
• Strong analytical skills, detail oriented, ability to work autonomously or in groups toward a common goal, resourceful and able to make progress quickly and ability to build relationships, influence and educate on matters related to cybersecurity.

Compensation & Benefits:  This position offers opportunities for a bonus (or commissions), with total compensation varying based on factors such as location, relevant skills, experience, and capabilities.   

Employees at ConnectiveRx can access comprehensive benefits, including medical, dental, vision, life, and disability insurance. The company regularly reviews and updates its health, welfare, and fringe benefit policies to ensure competitive offerings. Employees may also participate in the company’s 401(k) plan, with employer contributions where applicable.  

Time-Off & Holidays:  ConnectiveRx provides a flexible paid time off (PTO) policy for exempt employees, covering sick days, personal days, and vacations. PTO is determined based on an employee’s first year of service. Employees also receive eight standard company holidays and three floating holidays annually, with prorations applied in the first year.  

The company remains committed to providing competitive benefits and reserves the right to modify employee offerings, including PTO, STO, and holiday policies, in accordance with applicable laws and regulations.