IT Support-Security Operations (Level 2)

Company Description

All Care Therapies stands at the forefront of the U.S. digital healthcare landscape, where our primary focus is to deliver exceptional Speech, Occupational, and Physical Therapy services. Whether through cutting-edge telehealth solutions or at our state-of-the-art onsite clinics, we are dedicated to elevating the standards of healthcare provision.

In our unwavering commitment to ensuring the highest quality of healthcare services, we are actively seeking a seasoned and dynamic Senior IT Security Operations Engineer to become an integral part of our team. The role involves spearheading our IT Security and Support initiatives within the healthcare sector, contributing to the advancement of our technological capabilities.

If you possess the requisite experience and are eager to be a part of an innovative and dynamic team, we strongly encourage you to apply for this exciting opportunity. As an organization that values its team members, we offer competitive compensation packages and a comprehensive benefits program to complement your professional journey. Join us at All Care Therapies as we continue to shape the future of healthcare through excellence and innovation.

Job Description

Job Title: IT Support-Security Operations (Level 2)
Compensation: Depends on Experience & Qualification
Job Type: Full Time, 8 hour shift with overlapping time with US-Pacific Time Zone
Location:  Noida, UP, India
Start Date: ASAP
Experience: 5 + years
Industry: Healthcare - Health Services

Responsibilities:

Cloud Infrastructure Management

• Design, implement, and maintain secure and scalable cloud infrastructure using AWS services (VPC, EC2, ELB, RDS, etc.) and Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, and Ansible.
• Ensure HIPAA compliance by implementing strict security controls, including AWS IAM roles, security groups, network ACLs, encryption at rest and in transit, and adhering to industry best practices.
• Automate infrastructure provisioning and deployment processes using Continuous Integration and Continuous Deployment (CI/CD) pipelines with tools like AWS CodePipeline, CodeDeploy, and GitHub.
• Develop and maintain Disaster Recovery and Business Continuity Plans to ensure data protection and service availability.

Security Engineering

• Implement advanced security measures, such as AWS Web Application Firewall (WAF), GuardDuty, and AWS Config for continuous monitoring and threat detection.
• Conducting security audits and risk assessments to identify vulnerabilities and implement solutions.
• Developing and implementing security policies and procedures.
• Managing security incidents and responding to security breaches.
• Collaborate with cross-functional teams, including developers, to ensure adherence to security and compliance requirements.
• Stay up-to-date with the latest AWS services, security best practices, and industry trends, and provide recommendations for improving the cloud infrastructure and security posture.

Security Operations

• Monitor and optimize cloud infrastructure performance, security, and cost-effectiveness using AWS CloudWatch, CloudTrail, and AWS Config.
• Monitor and maintain security systems such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems.
• Detecting and responding to security incidents in a timely manner.
• Investigating security breaches and identifying the root cause.
• Implementing security measures to prevent future incidents.
• Conducting regular security assessments and penetration testing.
• Staying up-to-date with the latest security threats and vulnerabilities.

Qualifications

Must Have

• Minimum of 5 years of experience in designing, implementing, and maintaining secure cloud infrastructure, with a strong focus on Infrastructure-as-Code (IaC) in a HIPAA-regulated environment.
• Extensive knowledge of networking and security protocols such as TCP/IP, DNS, SSL, and HTTPS.
• Extensive knowledge of AWS services, including VPC, EC2, ELB, RDS, IAM, Security Groups, Network ACLs, CloudFormation, and AWS security services (WAF, GuardDuty, Config).
• Proficient in Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, and Ansible.
• Experience with Continuous Integration and Continuous Deployment (CI/CD) pipelines and automation tools (e.g., AWS CodePipeline, Jenkins, Git).
• Strong understanding of HIPAA compliance requirements, security best practices, and data protection methodologies.
• Familiarity with scripting languages (e.g., Python, Bash, PowerShell) for automation and custom tool development.
• Experience with monitoring and logging tools, such as AWS CloudWatch, CloudTrail, AWS Config, and security information & event management (SIEM) systems.
• Knowledge of Incident Response procedures and best practices.
• Excellent problem-solving, analytical, and troubleshooting skills.
• Strong communication and collaboration skills, with the ability to work effectively in cross-functional teams.

Should Have

• AWS Certified Solutions Architect - Professional and AWS Certified Security - Specialty certifications are preferred.
• Experience with security tools such as firewalls, intrusion detection and prevention systems, and data encryption systems.
• Familiarity with security frameworks such as NIST, ISO, and PCI-DSS.
• Familiarity with security tools such as firewalls, intrusion detection and prevention systems, and vulnerability scanners.

Additional Information

Benefits:

• Group Health Insurance
• Leave Encashment on Gross
• Yearly Bonus
• 12 Paid Indian & US Holidays

All Care Therapies is an equal opportunity employer. All aspects of employment, including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate based on race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.