Why Choose Health Partners Plans? We are an award-winning, not-for-profit health maintenance organization serving Pennsylvania residents.We offer Medicaid, Medicare, and Children’s Health Insurance Program (CHIP) plans that include special benefits to improve the health and wellness of our members. We’re also committed to boosting the health of our community through outreach, education, and events. Founded over 35 years ago, Health Partners Plans continually develops new ways to encourage better health outcomes and has received national recognition for our innovations in managed care.Perks of HPP and why you will love it here:Competitive Compensation Packages including 401(k) Savings Plan with Company Match and Profit Sharing Flextime and Work-at-Home OptionsBenefits & Wellness Program including generous Time Off Diversity & Inclusion commitment Impact on the communities we service We are hiring an Information Security Engineer to join our team remotely!Working under minimum supervision, requires in-depth knowledge of current security practices, configurations, and advanced technology. Position will engineer technical configuration requirements and reports/alerts via SIEM technology that are required to meet confidentiality and integrity requirements imposed by law. Position is dedicated to system security administration and design. This position would optimize the use of security software and minimize the level of manual intervention in the Microsoft security patch management process. This position would report to the Manager of Information Security.As the Information Security Engineer your daily duties may include… Endpoint ManagementManages validation of patches to both server and desktop clients and validates receipt of all current security and application patchesManages corresponding software monitoring services (i.e. whitelisting services)Executes or configures vulnerability scans and coordinates or otherwise conducts remedial actions for all identified computersIdentify required patches through extensive research and review as well as initiates and coordinates end-user acceptance testing and approval via the change management processManage process to deploy approved patches to all managed desktop clients, validate and reconcile results and provide status and detail reports to management for reviewMicrosoft Office 365 ExperienceDeliver subject matter expertise of Office 365 with emphasis in security, architectural design, migration, management and support of implementations.Provide overall Office 365 security expertise including strong knowledge of Azure Active Directory, Azure Information Protection, Information Rights Management, single sign-on and multi-factor authentication and related technologies (including Microsoft Enterprise Mobility Security)Demonstrate consultative capabilities by providing value added information to clients for connecting technology, security and the business value of Office 365.Drive Office 365 security adoption and lead technical effort to enable Azure Information Protection.Lead and participate in ongoing Office 365 security and strategy discussions.Stay current of all things Office 365, including changes & updates, roadmap & releases, and third-party solutions.Advanced Threat Protection/Antivirus/Antimalware Management Validates product upgrades, patches and deployment to both the server and desktop clientsValidates receipt of current updates and takes remedial action on desktopsValidates and recommends exclusion and scanning policesProvides status and detail reports to management for review Security Information and Event Management (SIEM) Manages and administers overall product configuration, upgrades and patches to ensure optimal performanceConduct daily review of system activity from all systems containing PHI as required by HIPAA and other pertinent laws and regulations to ensure data confidentiality, integrity and availability of monitored systemsCreate designated alerts and reports for both I.S. management and business unit management to ensure that suspicious activity is promptly addressed and reviewedCreate alerts to ensure system security levels are maintained (i.e. generate real time alerts to I.S. management when critical changes are made impacting system integrity)Conduct forensics as needed or requested by both I.S. management and human resources and external agencies to ensure incidents are processed and documented timely and effectivelyReview of Systems Security Configurations and Role Based Access Control (RBAC)Conduct routine review of all accounts and corresponding security roles across all designated systems in partnership with business units and I.S. staff with administrative privileges.Review existing system accounts to ensure that they are provisioned / de-provisioned on a timely basis with only authorized access levels and conduct process improvements as neededEngineer and develop recommendations for secure design and integration of LAN resources as well as become systems expert in security configurations of any new or upgraded LAN resourcesOtherWork with IS management in the development of and documentation of all relevant standards and procedures, in general and specifically as they pertain to the Health Insurance Portability and Accountability Act (HIPAA) compliance and any other adopted framework for information security.Promptly report incidents and issues to the appropriate personnel and obtain additional supporting information to identify a successful plan for remediation.Other duties as assigned. Skills and Qualifications We Value:Education: Requires a college Degree or equivalent work experience. Minimum of 3 years security practices. Familiar with the managed care industry. Computer Information Systems Security Professional (CISSP), Computer Information Systems Auditor (CISA) preferred but not required. Any other computer certifications such as Certified Ethical Hacker (CEH), Microsoft Certified Systems Engineer (MCSE) or SANS Global Information Assurance Certification (GIAC) recommended. Additional education courses/technical seminars within the PC/LAN/ technical area helpful.Must be an effective team player and able to proactively enact changes to continuously improve the security of systemsHPP is a nationally recognized company for its innovations in care. We are more than your average health care company and can help you achieve your career goals!