Security Engineer

Since Core Sound Imaging began in 2007, we have focused on delivering a superior customer experience with Studycast® - an advanced software as a service (SaaS) image storage and reporting solution (cloud PACS). Core Sound Imaging's focus on innovation is allowing Studycast® to change the face of medical imaging and diagnostic interpretation. Our nearly 2,000 clients in the U.S. and the world rely on Studycast for digital imaging and diagnostic testing workflow solutions that make their lives easier. At Core Sound Imaging we value every employee's contribution and care about providing the best product and service.

We are seeking a talented and experienced Security Engineer to join our team. In this role, you will play a critical role in enhancing our information security posture and protecting our sensitive data and infrastructure. As a key member of the Information Security team, you will collaborate closely with internal stakeholders, external partners, and portfolio companies to identify security risks, implement robust security solutions, and ensure compliance with industry regulations and best practices.

Responsibilities:

• Lead the design, implementation, and maintenance of information security controls and solutions to protect the firm's digital assets and infrastructure.
• Coordinate regular security assessments, vulnerability scans, and penetration tests to identify and remediate security vulnerabilities and weaknesses.
• Develop and implement security policies, procedures, and standards to ensure compliance with regulatory requirements and industry best practices.
• Monitor and analyze security events and incidents, investigate security incidents, and provide incident response and remediation support as needed.
• Collaborate with cross-functional teams to integrate security controls into business processes and IT systems and provide security guidance and recommendations to various teams and portfolio companies.
• Stay abreast of emerging threats, vulnerabilities, and security technologies, and provide guidance and recommendations for enhancing the firm's security posture.
• Participate in security audits, assessments, and compliance reviews, and assist in responding to security-related inquiries from investors and regulatory authorities.

Ideal Experience and Competencies:

• Bachelor’s degree in computer science, Information Security, or related field; or relevant work experience.
• Proven experience in information security engineering, with a focus on designing, implementing, and managing security controls and solutions in a corporate environment.
• Strong technical skills in areas such as network security, SASE, endpoint security, cloud security, identity and access management, encryption, and security monitoring.
• Experience with security frameworks and standards (e.g., NIST Cybersecurity Framework, ISO 27001/27002, SOC 2), regulatory compliance requirements (e.g., GDPR, PCI DSS), and industry best practices.
• Proficiency in security assessment tools and technologies, vulnerability management tools, SIEM platforms, and incident response tools.
• Excellent analytical and problem-solving skills, with the ability to analyze complex security issues, prioritize tasks, and develop effective solutions.
• Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders and collaborate with cross-functional teams.
• Ability to work independently and collaboratively in a fast-paced, dynamic environment, and manage multiple projects and priorities simultaneously.
• Willing and able to travel data centers as needed.