Information Security architectWRS Health

Company Overview
Voted #1 EHR by PC Mag, WRS Health delivers a fully integrated cloud based EMR and practice management solutions to its clients. We bring solutions to physicians by providing constant enhancement of our products and services including EHR, practice management, marketing, patient coordination and billing.
Job Purpose and Role
We are seeking an Information Security Architect to execute the process of developing a security architecture that processes information of various levels of sensitivity. The resulting architecture must be compliant with WRS' existing technical security control requirements models. The security architecture work will include network security, network defense, operating system security identity, authentication and authorization, data protection, application security, activity audits and monitoring, mobile computing security and partner/vendor access to the company's systems/data
Job Duties and Responsibilities
Produce gap analysis documentation to identify any gaps between specific technical security requirements and the architecture of the system and provide detailed recommendations and appropriate mitigation measures.
Advise and consult clients responsible for the architecture, design, implementation, and deployment of technical security controls on appropriate application of existing security services to solve their problems or enable new business opportunities.
Research and evaluate new security technologies to be used as point solutions to gaps where the project is unable to take advantage of or needing greater functionality than reusable enterprise security services.
Enhance security team accomplishments and competences by planning delivery of solutions; answering technical and procedural questions for team members; teaching improved processes, mentoring team members.
Plan security systems by evaluating network and security technologies.
Determine security requirements by evaluating business strategies and requirements; conducting system security and vulnerability analyses and risk assessments; identifying integration issues; preparing cost estimates.
Implement security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures.
May provide leadership and mentoring in the areas or expertise and architecture to peers, developers, management and business users including technical expertise, coaching, and ad-hoc training.
Support assurance compliance to required standards, procedures, guidelines and processes.
Participate in the design of the CI/CD pipeline
Develop risk-based mitigation strategies for infrastructure, platform, operating systems, and applications
Create and maintain vulnerability management policies, procedures, and training
Design and implement security automation wherever possible
Qualifications
Competent with at least one of the following scripting languages: Bash, Python, Go
Experience with automated test frameworks/tools such as Jenkins, SonarQube, etc.
Proven ability to work well under pressure
Clear written and verbal communications skills.
Experience working with industry-leading vulnerability scanners and the ability to read / understand the information those systems produce to understand what a company's vulnerability landscape looks like
Familiarity or experience with Common Vulnerability Scoring methodology for rating vulnerability criticality.
Ability to work both independently and as part of several teams.
2+ years of hands-on experience in IAAS and PAAS on a global scale.
Strong experience with cloud virtualization technologies: Docker, AWS and Packer
Familiar with AWS shared responsibility model from a security standpoint
Location: Philippines
Hours: Available during standard US business hours (9am-5pm EST)
Powered by JazzHR
WRS Health

Philippines
Permanent
Full-time