**Job Description** **Job Summary** Secures enterprise information by determining security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; mentoring team members. **Knowledge/Skills/Abilities** • Leads an information security architecture team to develop and maintain effective and efficient security solutions within a heterogeneous technology environment. • Maintains enterprise-wide security architecture and recommends specific controls to support financial services operations, application development, data center operations, and Cloud solutions. • Evaluates and recommends physical and virtual security solutions to bolster mobile, desktop, server, database, and network implementations • Proposes and reviews existing design solutions to limit access to assets and associated facilities to authorized users, processes, or devices, and to authorized activities and transactions. • Determines requirements for identities and credentials for authorized devices and users through single and multi-factor authentication. • Validates controls used to manage and protect physical access to assets. • Ensures remote access is managed with appropriate security designs and controls. • Incorporates principles of least privilege and separation of duties into access permissions and security designs. • Assures network integrity by incorporating and maintain network segmentation into security designs • Supervises the design and implementation of data security solutions to ensure company-owned and controlled data are managed consistent with the organization's risk strategy. • Oversees the use of encryption technology to protect data-at-rest and data-in-transit, and implements data loss prevention technology and procedures to prevent data leaks. • Ensures the adequate protection and maintenance of encryption keys. • Maintains system assurance and availability by ensuring adequate capacity is maintained in security designs. • Recommends integrity checking mechanisms to verify software, firmware, and information integrity. • Verifies security controls and standards exist to create and maintain a production environment that is separate from the development and testing environment. • Develops procedures to formally manage assets at the end of life through removal, transfer, and disposition. • Maintains and uses security policies, processes, and procedures to manage the protection of information systems and assets. • Oversees the creation and maintenance of baseline configurations, change control standards, and the application of a continuous improvement processes within a System Development Life Cycle (SDLC). • Develops processes and procedures to maintain and test back-ups periodically and ensure data are destroyed according to policy. • Evaluates and shares the effectiveness of engineering solutions and technologies with appropriate parties. • Ensures human resources practices account for cyber security requirements through the employment or contract life-cycle. • Supervises design and implementation of technical security solutions to ensure the security and resilience of systems and assets is consistent with related policies, procedures, and agreements. • Applies the principle of least privilege to control access to systems and assets. • Protects communication networks using industry standards and best practices. • Certifies maintenance and repairs of information system components is performed consistent with policies and procedures. • Integrates approved and controlled tools into security designs to ensure maintenance and repair of assets is performed and logged in a timely manner. • Prevents unauthorized remote maintenance with controls that require approval, logging, and secure connections. • Performs other duties as required.. **Job Qualifications** **Required Education** • Bachelor's Degree in Computer Engineering, Information Security, Cyber security, or related. **Required Experience** • Must have working knowledge of plan of action and milestones for network, information system, and data security architectures. • Must be able to obtain final approval of baseline configurations for all company information systems. • Must be able to secure final approval of security controls and certification and accreditation of systems and applications ready to transition into the production environment. • Responsible for final interpretations of security standards, risk assessments, and Cloud service deployments. • Must have working knowledge of installation and use of all network monitoring tools. • Periodic access control reviews of perimeter security devices. • Must be able to research and perform log analysis reviews to support security architectural studies and evaluations. • Eight (5) years computer and security engineering experience. • Must be able to demonstrate knowledge of firewall management, secure routing configurations, encryption, VLAN deployment, IPS/IDS integration, VPN, and Microsoft Windows security. • Must have knowledge of HIPAA, ISO 27001, and PCI-DSS. • Experience as a security engineer within a Cisco and Microsoft environment is highly desired. • Excellent communication skills and the ability to work with teams and external stakeholders are essential. **Preferred License, Certification, Association** • CISSP or CISM preferred. • CISSP-ISSAP, HCISSP, CISSP-ISSEP, or CCSP certifications highly desired. To all current Molina employees: If you are interested in applying for this position, please apply through the intranet job listing. Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V. Pay Range: $88,453 - $206,981 / ANNUAL *Actual compensation may vary from posting based on geographic location, work experience, education and/or skill level.