Security Engineer III - Kern Admin

Clinica Sierra Vista•Bakersfield, CA

12h

About The Position

Clinica Sierra Vista is excited to be one of the largest Federally Qualified Health Centers in the Nation! We’re honored to serve the men and women of the fields. We also offer care and support to the inner city, the rural and isolated, those of low, moderate, and fixed incomes, and families from an array of cultural backgrounds who speak several languages. We don’t inquire about immigration status because we simply don’t need to know. If you come to us, we will treat you like any other patient. As we grow our team, we are looking for individuals who believe the patient is always #1. We're looking for someone to join our team as a Security Engineer III who: The Security Engineer III plays a critical role in designing and implementing advanced security measures to protect the organization’s IT infrastructure from evolving cyber threats. They lead efforts to identify vulnerabilities, conduct penetration testing, and implement complex security controls. The Security Engineer III works closely with IT and development teams to ensure security best practices are integrated across the organization. They are also responsible for creating and maintaining the organization’s incident response plan and overseeing the execution of incident response during a security breach.

Requirements

Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent experience.
5–8 years of experience in security engineering, including managing enterprise-level security environments.
Expert knowledge of security protocols and network security concepts (SSL/TLS, IPSec, DNS, OAUTH, etc.).
Advanced experience with security tools such as SIEM, IDS/IPS, firewalls, DLP, web application firewalls (WAF), and endpoint protection solutions.
Expertise in security architecture design, including segmentation, access controls, and zero-trust models.
Advanced knowledge of security threat landscapes and proactive mitigation strategies.
Expertise in cloud security platforms (AWS, Azure, GCP) and securing cloud infrastructure.
Experience with automation tools (e.g., Ansible, Terraform) for security configuration and orchestration.
Extensive experience with security compliance, audits, and regulatory requirements (e.g., GDPR, HIPAA, PCI DSS).
Proficiency in multiple scripting languages (Python, PowerShell, Bash) for automation and security testing.
Expertise in digital forensics, threat hunting, and advanced malware analysis.
Industry-recognized certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Cloud Security Professional (CCSP).
Strong communication and leadership skills to educate and mentor junior engineers, as well as effectively communicate security risks to management.

Responsibilities

Lead the design and implementation of advanced security architectures, ensuring the organization is protected against evolving threats.
Develop and enforce security policies, ensuring compliance with industry standards and regulatory requirements.
Conduct risk assessments and manage risk mitigation strategies.
Collaborate with senior leadership to define long-term security objectives and priorities.
Oversee the configuration and deployment of advanced security tools and technologies.
Lead the selection and evaluation of new security solutions to address emerging threats.
Collaborate with IT teams to integrate security best practices into system architectures and designs.
Manage and maintain advanced authentication and authorization technologies.
Ensure the deployment of security patches, updates, and proactive monitoring systems.
Lead security incident response, managing breaches and coordinating efforts to mitigate risks.
Conduct advanced penetration testing, vulnerability assessments, and risk management practices.
Monitor and analyze security events and alerts, taking immediate action when necessary.
Create and maintain security documentation, including incident reports, audit logs, and security protocols.
Maintain and ensure the effective use of security technologies, including firewalls, IDS/IPS, SIEM, and encryption tools.
Train and mentor junior security engineers, sharing best practices and troubleshooting techniques.