Senior Security Operations Engineer in Ontario, CA at Prime Healthcare

Date Posted: 8/16/2019

Job Snapshot

Job Description


As an Endpoint Security Lead Engineer, the quest to maintain current security controls & discover new and innovative technological solutions to protect our assets, data and people is what drives you.  You’ll lead a highly motivated team of endpoint security engineers (US & India) who are laser-focused on maintaining, analyzing, designing, developing and delivering endpoint security solutions built to detect and stop adversaries and strengthen our enterprise security posture.  You’ll share your expertise, thought leadership and overall guidance to ensure compliance objectives are upheld and security industry standard best practices are utilized.  Finally, you will lead by example and earn the trust of the Endpoint Security team, other collaborators from the Technical Risk Office (TRO), the Cyber Defense Manager, and the people and healthcare entities whose assets we manage and protect.


Overview of Responsibilities

The Lead Endpoint Security Engineer will be accountable for leading a dynamic team responsible for design, development, test and implementation of McAfee ePolicy Orchestrator & the full suite of McAfee endpoint security products including, but not limited to: McAfee Enterprise Policy Orchestrator (ePO) versions 5.9.1 and 5.10, Endpoint security (ENS), File and Removable Media Protection (FRP), Data Loss Prevention (DLP), Advanced Threat Detection (ATD), Threat Intelligence Exchange (TIE), Data Exchange Layer (DXL), McAfee Disk Encryption (MDE). The ideal candidate should also be very familiar with the McAfee service portal, the Minimum Escalation Requirements (MER) tool, McAfee Labs, GetClean, EPO Endpoint Development Kit (EEDK), the use & deployment of Extra DATs, and the McAfee Profiler.  Familiarity with administrating and managing endpoint device theft tracking, recovery and remote wipe solutions is also essential.  This position reports directly to the Cyber Defense Manager and will serve as the lead technical resource for the endpoint security ecosystem.

Core Responsibilities

  • Leads the work of Endpoint Security engineers

  • Directly contributes to the implementation of Prime’s Security technology roadmap & TRO security controls

  • Actively monitors all ServiceDesk ticketing queues for the Endpoint Security function to ensure quality of customer service, quick response & reliable solutions

  • Serves as the lead engineer in product architecture, configuration, development, and transition to operations

  • Engages with GRC team, legal, corporate IT entities, hospital IT customers, and third parties when required

  • Champions agile and effective change management, attends weekly CAB meetings, upholds TRO standards for transparency and accountability when communicating changes to Prime IT 

  • Manages multiple projects, initiatives and work efforts simultaneously

  • Provides technical supervision, oversight and problem resolution for engineering activities

  • Prepares program planning, engineering work breakdown structure, task estimation and scheduling in support of internal and PMO projects

  • Operates and maintains centralized ePO-based solutions across 45 different hospitals/300 clinics in the US

  • Serves as the highest point of escalation/Subject Matter Expert (SME) for McAfee (and other endpoint security) technical solutions

  • Provides technical support for the McAfee endpoint product suite, performs daily administration support, and maintains version status for all deployed products

  • Owns escalation of technical issues from hospital IT & Corp security engineering teams and ensures that self & team render timely and accurate support as needed

  • Provides support in the capture of ePO and ePO-managed product data elements from database queries for internal distribution to other security verticals

  • Balances McAfee endpoint product policy configuration and data burdens with both endpoint platform performance and ePO console and database performance

  • Synthesizes task requirements with McAfee ePO and ePO-managed endpoint product capabilities to achieve a robust, multi-layered security solution

  • Creates technical documents, drawings, how-to guides and other deliverables as needed

  • Contributes to the mentoring, training and development of Jr engineers




Required qualifications:

  • 7+ years of progressive engineering and/or architecture experience with security platform administration or endpoint engineering experience within a large-scale or global enterprise environment

  • Knowledge of enterprise-level Endpoint Protection Platform (EPP) and Endpoint Detection and Response (EDR)

  • Exceptional customer focus and bias for action and active communication

  • Hands-on experience in design, development, test and implementation of McAfee ePO & McAfee/other endpoint security solutions

  • Must have excellent oral and written communication skills, upwards of 40% of your day will be spent actively communicating and collaborating with both internal & external teams

  • Experience engineering security for the following platforms: Windows physical and virtual desktops and laptops, Citrix VDI, UNIX/Linux Servers, Windows servers, Databases, healthcare IOT devices

  • Hands on SME experience with McAfee, FireEye, Symantec or any other endpoint security tools and a functional understanding of enterprise fleet management

  • Thorough understanding of Windows, Apple & Unix/Linux operating systems from both operational and exploitation perspectives

  • Solid knowledge of network concepts such as firewalls, core routing, MPLS, virtual networks, load-balancers, and complex network designs

  • Understanding of web concepts such as HTTP, SSL/TLS, HTML, CSS and JavaScript

  • Advanced expertise in Cybersecurity organization practices, security operations, risk management processes, HIPAA/Healthcare industry compliance principles, architectural requirements, threat intelligence, vulnerability management, incident response methodologies, threat hunting tactics and strategy to protect, detect, respond and recover from attacks

  • Deep fluency in national laws, regulations, policies and ethics related to healthcare industry Cybersecurity

  • Seasoned command of multiple disciplines, optimizing Cybersecurity products and services through the complete product lifecycle

  • Expertise in working in partnership with colleagues throughout a large enterprise, and in leading collaborative teams to achieve common goals



We are an Equal Opportunity/ Affirmative Action Employer and do not discriminate against applicants due to veteran status, disability, race, gender, gender identity, sexual orientation or other protected characteristics. If you need special accommodation for the application process, please contact Human Resources.  EEO is the Law: