Lead Security Operations Engineer

About Providence

Providence, one of the US's largest not-for-profit healthcare systems, is committed to high quality, compassionate healthcare for all. Driven by the belief that health is a human right and the vision, 'Health for a better world', Providence and its 121,000 caregivers strive to provide everyone access to affordable quality care and services.

Providence has a network of 51 hospitals, 1,000+ care clinics, senior services, supportive housing, and other health and educational services in the US.

Providence India is bringing to fruition the transformational shift of the healthcare ecosystem to Health 2.0. The India center will have focused efforts around healthcare technology and innovation, and play a vital role in driving digital transformation of health systems for improved patient outcomes and experiences, caregiver efficiency, and running the business of Providence at scale.

Why Us?

• Best In-class Benefits
• Inclusive Leadership
• Reimagining Healthcare
• Competitive Pay
• Supportive Reporting Relation

What will you be responsible for?

• Execute comprehensive vulnerability scans across the organization's infrastructure
• Conduct vulnerability assessments against internal and external systems, networks, applications, and infrastructure components.
• Analyzes discovered vulnerabilities, assess their impact, and likelihood of exploitation to prioritize remediation efforts based on risk severity.
• Supports compliance and risk management activities, recommending security controls and corrective actions to mitigate vulnerability risk.
• Ensure that system vulnerabilities (new and backlogged) across the enterprise are dealt with in an efficient and timely manner.
• Familiarity with classes of vulnerabilities, appropriate remediation, and industry-standard classification schemes (CVE, CVSS, CPE)
• Collaborate with stakeholders to develop remediation strategies.
• Foster a culture of learning and development within the team by sharing expertise.

your work week look like?

• Analyze and report and present the vulnerabilities to multiple stakeholders for remediation and prioritization and ensuring scan results are presented in appropriate dashboards & reports.
• Utilizes vulnerability scanning tools such as Rapid7 or similar tools to conduct scans, configure scan policies, and fine-tune scan parameters for accurate and comprehensive assessments.
• Perform reoccurring and on-demand scanning activities of both corporate and cloud environments utilizing enterprise platform.
• Maintain intelligence network to discover any reported exploits, zero-day vulnerabilities and its applicability to Organization.
• Collaborate with the other security teams to contain and investigate major incidents.

Who are we looking for?

• Bachelor s degree in related filed, to include computer science, or equivalent combination of education and experience
• 8 plus years of directly related experience as a Vulnerability Management SME or similar role.
• Demonstrated understanding of vulnerability management and security testing practices and methodologies.
• Proven understanding of common vulnerability frameworks (e.g., CVSS, OWASP Top 10)
• Experience with vulnerability scanners, vulnerability management systems, patch management, and host-based security systems (Rapid7 preferred)
• Scripting or programming (Shell scripting, Power Shell, Python etc.)
• Excellent communication, collaboration, and interpersonal skills.
• Ability to work independently and take ownership of projects.
• Additional certifications, such as CISSP, GEVA are a plus.

Providence's vision to create 'Health for a Better World' aids us to provide a fair and equitable workplace for all in our employment, whether temporary, part-time or full time, and to promote individuality and diversity of thought and background, and acknowledge its role in the organization's success. This makes us committed towards equal employment opportunities, regardless of race, religion or belief, color, ancestry, disability, marital status, gender, sexual orientation, age, nationality, ethnic origin, pregnancy, or related needs, mental or sensory disability, HIV Status, or any other category protected by applicable law. In furtherance to our mission in building a more inclusive and equitable environment, we shall, from time to time, undertake programs to assist, uplift and empower underrepresented groups including but not limited to Women, PWD (Persons with Disabilities), LGTBQ+ (Lesbian, Gay, Transgender, Bisexual or Queer), Veterans and others. We strive to address all forms of discrimination or harassment and provide a safe and confidential process to report any misconduct.

Contact our Integrity hotline also, read our Code of Conduct.