Security Engineer II

Job Description

Garner Health is seeking a Security Engineer II to join their team. In this role, the Security Engineer will be responsible for safeguarding the organization's digital assets and ensuring the integrity and confidentiality of systems and data. The Security Engineer will implement and operate security tooling, maintain security controls, and respond to security incidents and breaches. This position is fully remote.

Garner Health has experienced rapid adoption in the market and has more than doubled its revenue annually over the last 5 years, becoming the fastest-growing company in its space.

What this role involves:

• Security Engineering: Design, implement, and operate security tooling and services in cloud and on-premises ecosystems.
• Incident Detection and Response: Monitor security landscape for suspicious activity, investigate potential security incidents, and coordinate incident response efforts.
• Vulnerability Management: Assist regular vulnerability assessments and penetration tests, analyze results, and collaborate with relevant teams to remediate security vulnerabilities.
• Security Compliance: Ensure compliance with relevant security standards, regulations, and best practices.
• Security Awareness and Training: Develop and deliver security awareness training programs for employees.
• Security Incident Documentation and Reporting: Document security incidents, their resolution, and lessons learned.
• Security Tool Evaluation and Integration: Research, evaluate, and recommend new security technologies, tools, and processes.
• Collaboration and Communication: Work closely with cross-functional teams to align security initiatives with business objectives.

Requirements:

• Ability to work autonomously and collaborate with cross-functional teams.
• In-depth knowledge of auditing cloud infrastructure for security risks.
• Strong understanding of common application and infrastructure security vulnerabilities and attack vectors.
• Strong understanding of and proven ability with Terraform in a cloud environment.
• Strong understanding of cloud IAM principles and best practices.
• Experience with using a SIEM to detect indicators of compromise.
• Independent ability to write scripts or automated tooling.
• Understanding of network security principles, protocols, and technologies
• Proven experience (4+ years) in a security engineering role.

What this role offers:

• Equity incentive plan
• Flexible PTO
• Medical/Dental/Vision plan options
• 401(k)
• Teladoc Health