Change Healthcare

United States

Cloud Security Engineer

Transforming the future of healthcare isn’t something we take lightly. It takes teams of the best and the brightest, working together to make an impact.

As one of the largest healthcare technology companies in the U.S., we are a catalyst to accelerate the journey toward improved lives and healthier communities.

Here at Change Healthcare, we’re using our influence to drive positive changes across the industry, and we want motivated and passionate people like you to help us continue to bring new and innovative ideas to life.

If you’re ready to embrace your passion and do what you love with a company that’s committed to supporting your future, then you belong at Change Healthcare.

Pursue purpose. Champion innovation. Earn trust. Be agile. Include all.

Empower Your Future. Make a Difference.

Principal Accountabilities

  • Performing analysis of cloud security needs and contributing to design, integration, and implementation of security solutions, cloud services and applications
  • Creating, enhancing and maintaining tooling and scripts to automate repetitive tasks
  • Maintaining a tight collaboration with various Cloud, DevOps, Application, and Information Security teams across the enterprise
  • Analyzes and defines security requirements for moderate to complex IT issues
  • Designs, develops and implements solutions to IT security requirements
  • Gathers, analyzes and organizes technical information about systems, existing security products and ongoing programs
  • Develops documentation to support ongoing security systems operations, maintenance and specific problem resolution
  • Review, interpret and adapt customer, regulatory and corporate security and compliance requirements into technical design options
  • Provides expertise in security control configuration to business as needed
  • Participates with Enterprise Risk Management team to ensure proper identification of policy issues / violations
  • Conduct research on cloud related products, services and standards to remain abreast of developments in the information security industry
  • Other responsibilities include :

  • Designing, engineering and implementing security solutions for complex on-premise and cloud environments; enforcing the security policy and complying with requirements of external security audits and recommendations
  • Building, integrating, maintaining, and monitoring cloud services with on-premise and cloud technologies
  • Automating security controls, data and processes to provide better visibility, metrics, service delivery, and operational support
  • Participating in computer security incident response efforts and other security investigation activities assigned.
  • Key Performance Indicators

  • Meets project deliverables on time and on budget
  • Creates effective remediation plans and controls for identified IT or Security gaps
  • Responds to security events in accordance with the Change Healthcare Incident Response Plan and Procedures
  • Number of identified shortcomings during Security Tests
  • Minimum Requirements

    5 or more years’ experience in security system administration with several of those years gaining experience in deploying and maintaining security technologies such as CASB, identity and access management, firewall, intrusion detection, threat and vulnerability management, VPN, encryption, key management, log inspection, anti-malware, etc.

    Education and Experience

  • Bachelor’s degree in computer information security / related field or equivalent experience
  • CISSP, CCSP, CCSK preferred
  • Relevant Cloud Service Provider certifications such as AWS Certified Solutions Architect, MCSE : Cloud Platform and Infrastructure or Google Cloud Professional Cloud Architect is an asset
  • Critical Skills

  • In-depth knowledge in cloud security, network security, application security, endpoint protection, data loss prevention, vulnerability management, and security incident response in traditional on-premise, virtual, container, and cloud environments
  • Solid knowledge of AWS, Azure, GCP, and other public and private Cloud Service Providers
  • Possess programming and scripting skills (e.g C#, Perl, Java, Powershell, or Python)
  • Experience with CI / CD, containerizing, orchestration, and bug tracking tools (e.g Azure DevOps, Ansible, Jenkins, OpenShift, Docker, Kubernetes, JIRA, etc.)
  • Deep understanding of Windows and Linux systems hardening, containerization, and cloud security controls
  • Experience with security compliance standards like HIPAA, HITRUST, PCI, SOC-2, FISMA, GDPR / Privacy Shield
  • Additional Knowledge & Skills

  • Understanding of Agile processes and methodologies (e.g Scrum, Kanban and Scaled Agile)
  • Experience with source code management and software repository systems (e.g Git / GitHub, Subversion, Team Foundation Server, etc.)
  • Experience with automation and configuration management tools (e.g AWS CloudFormation, Google Cloud Deployment Manager, Azure Resource Manager, Terraform, Puppet, Chef, etc.)
  • Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures or governmental regulations
  • Demonstrable experience in building and delivering executive level presentations to leadership and comfortable presenting to peers on their solutions and recommendations.
  • Ability to work both independently and with a team of highly skilled professionals
  • Join our team today where we are creating a better coordinated, increasingly collaborative, and more efficient healthcare system!