Senior Security Operations Engineer | VirtualHealth | Remote (United States)
Posted 2025-09-08
Remote, USA
Full Time
Immediate Start
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">About VirtualHealth:</strong></p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">VirtualHealth’s platform, HELIOS®, is the first comprehensive platform purpose-builtfor integrated value-based care and deployed by some of the most innovative healthcare organizations in the country to manage millions of lives. Through the HELIOS® platform, VirtualHealth empowers healthcare organizations to achieve enhanced outcomes while maximizing efficiency, improving transparency, and lowering costs. For more information, please visit <a href="http://www.virtualhealth.com/" target="_blank" class="break-all font-medium underline hover:opacity-75" rel="noopener noreferrer nofollow">www.virtualhealth.com</a>.</p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">The Position:</strong></p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">VirtualHealth is seeking a Senior Security Operations Engineer and an essential stakeholder across Information Security, IT, and Engineering. We are in an expansion mode for our fast-growing company with ambitious goals to build out best practices in accordance with compliance from HIPAA, HITRUST, and FedRamp.</p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">Responsibilities:</strong></p>
<ul class=" text-base sm:text-lg marker:text-color list-inside list-disc text-gray-500 list-disc list-outside pl-3 mb-6">
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Oversee the entire SecOps and Cloud Security Operations and be the subject matter expert in relevant verticals</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Conduct threat modeling and risk assessment exercises with DevOps team</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Contribute to the IAM and IT teams at VirtualHealth</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Perform regular security assessments of VirtualHealth cloud platforms and software</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Configure systems to comply with industry best practices and hardening standards</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Monitor remediation of vulnerabilities utilizing third-party tools such as Veracode and Orca</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Assist the security team in expanding cybersecurity awareness across the organization through a security review and training sessions with internal staff</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Document security standards and guidelines pertaining to secure cloud management, configuration, and deployment</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Evaluate new technologies, tools, and development techniques that impact security</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Build and maintain security partnership with DevOps and Development leads to remediate vulnerabilities and drive SDLC process improvements</span></li>
</ul>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">Requirements:</strong></p>
<ul class=" text-base sm:text-lg marker:text-color list-inside list-disc text-gray-500 list-disc list-outside pl-3 mb-6">
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">3-5+ years experience in a security technical role</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Comfortable with DevOps-style tools like Ansible, Chef, Terraform, GitHub, Jenkins, Puppet, etc.</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Solid understanding of AWS architecture with secure coding practices and automating security checks in pipelines</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Understands the principle of least privilege and the confidentiality, integrity, and availability triad and will work to enforce those concepts in our environment</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Experience with languages such as Python, Javascript, Java, Node.js</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Understanding of compliance obligations including HITRUST and FedRamp</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Demonstrable knowledge of security concepts and common vulnerabilities like the OWASP Top 10</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Strong understanding of virtual machines, containerization, and cloud architecture</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Proven experience with web application and infrastructure penetration testing</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Ability to multitask and prioritize work effectively</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Attention to detail</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Ability to work independently and as part of a team</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">US Citizenship per client requirements</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Bonus: Certificates such as AWS Security Specialty, OSCP, ECH</span></li>
</ul>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">Compensation:</strong></p>
<ul class=" text-base sm:text-lg marker:text-color list-inside list-disc text-gray-500 list-disc list-outside pl-3 mb-6">
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Competitive salary</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Unlimited PTO</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Health, dental, and vision insurance</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">401(k) Participation</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Rapidly growing technology company with upside potential</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Work from home within United States</span></li>
</ul>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">VirtualHealth is committed to ensuring that information security remains a top priority for everyone. All workers are responsible for the protection of our Information Security and we take the execution of this seriously. Information Security Policies and procedures details and training will be provided during on-boarding.</p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">Each candidate will be subject to a background and reference check before beginning employment. Please note that this position will require US citizenship and submission and further approval of “Public Trust” federal clearance.</p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">VirtualHealth’s platform, HELIOS®, is the first comprehensive platform purpose-builtfor integrated value-based care and deployed by some of the most innovative healthcare organizations in the country to manage millions of lives. Through the HELIOS® platform, VirtualHealth empowers healthcare organizations to achieve enhanced outcomes while maximizing efficiency, improving transparency, and lowering costs. For more information, please visit <a href="http://www.virtualhealth.com/" target="_blank" class="break-all font-medium underline hover:opacity-75" rel="noopener noreferrer nofollow">www.virtualhealth.com</a>.</p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">The Position:</strong></p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">VirtualHealth is seeking a Senior Security Operations Engineer and an essential stakeholder across Information Security, IT, and Engineering. We are in an expansion mode for our fast-growing company with ambitious goals to build out best practices in accordance with compliance from HIPAA, HITRUST, and FedRamp.</p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">Responsibilities:</strong></p>
<ul class=" text-base sm:text-lg marker:text-color list-inside list-disc text-gray-500 list-disc list-outside pl-3 mb-6">
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Oversee the entire SecOps and Cloud Security Operations and be the subject matter expert in relevant verticals</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Conduct threat modeling and risk assessment exercises with DevOps team</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Contribute to the IAM and IT teams at VirtualHealth</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Perform regular security assessments of VirtualHealth cloud platforms and software</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Configure systems to comply with industry best practices and hardening standards</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Monitor remediation of vulnerabilities utilizing third-party tools such as Veracode and Orca</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Assist the security team in expanding cybersecurity awareness across the organization through a security review and training sessions with internal staff</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Document security standards and guidelines pertaining to secure cloud management, configuration, and deployment</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Evaluate new technologies, tools, and development techniques that impact security</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Build and maintain security partnership with DevOps and Development leads to remediate vulnerabilities and drive SDLC process improvements</span></li>
</ul>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">Requirements:</strong></p>
<ul class=" text-base sm:text-lg marker:text-color list-inside list-disc text-gray-500 list-disc list-outside pl-3 mb-6">
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">3-5+ years experience in a security technical role</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Comfortable with DevOps-style tools like Ansible, Chef, Terraform, GitHub, Jenkins, Puppet, etc.</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Solid understanding of AWS architecture with secure coding practices and automating security checks in pipelines</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Understands the principle of least privilege and the confidentiality, integrity, and availability triad and will work to enforce those concepts in our environment</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Experience with languages such as Python, Javascript, Java, Node.js</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Understanding of compliance obligations including HITRUST and FedRamp</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Demonstrable knowledge of security concepts and common vulnerabilities like the OWASP Top 10</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Strong understanding of virtual machines, containerization, and cloud architecture</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Proven experience with web application and infrastructure penetration testing</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Ability to multitask and prioritize work effectively</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Attention to detail</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Ability to work independently and as part of a team</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">US Citizenship per client requirements</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Bonus: Certificates such as AWS Security Specialty, OSCP, ECH</span></li>
</ul>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3"><strong class=" font-semibold">Compensation:</strong></p>
<ul class=" text-base sm:text-lg marker:text-color list-inside list-disc text-gray-500 list-disc list-outside pl-3 mb-6">
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Competitive salary</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Unlimited PTO</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Health, dental, and vision insurance</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">401(k) Participation</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Rapidly growing technology company with upside potential</span></li>
<li class=" leading-snug mb-2 pl-2"><span class="text-gray-200">Work from home within United States</span></li>
</ul>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">VirtualHealth is committed to ensuring that information security remains a top priority for everyone. All workers are responsible for the protection of our Information Security and we take the execution of this seriously. Information Security Policies and procedures details and training will be provided during on-boarding.</p>
<p class=" text-gray-200 text-base sm:text-lg leading-relaxed mb-3">Each candidate will be subject to a background and reference check before beginning employment. Please note that this position will require US citizenship and submission and further approval of “Public Trust” federal clearance.</p>