Information Security Engineer - Viva Health

Key Responsibilities

• Plan, design, and enforce security policies and procedures across on‑premise and cloud environments.
• Conduct risk assessments, threat modeling, and gap analyses to identify and remediate security weaknesses.
• Manage vulnerability scanning, patch management, and remediation workflows.
• Implement and maintain Identity and Access Management (IAM) solutions, ensuring least‑privilege access.
• Configure, monitor, and tune SIEM platforms for real‑time detection and incident response.
• Collaborate with IT and business units to align security controls with regulatory requirements such as HIPAA.

Requirements

• 3+ years of experience in information security engineering or a related role.
• Hands‑on experience with vulnerability management tools, IAM systems, and cloud security (AWS or Azure).
• Proficiency in developing and auditing security policies, standards, and procedures.
• Strong analytical skills for risk assessment, threat modeling, and incident investigation.
• Relevant certifications (CISSP, CISM, CEH, or equivalent) preferred.