Curative Inc. Director, Security Operations in Helena, Montana
The Information Security team moves fast, and you should be excited about interacting with a wide variety of stakeholders—you'll have a direct impact on how patients, doctors, and other care professionals all interface securely with Curative. You should have a strong interest in building tools, be comfortable working with new technologies, and have a strong sense of enabling business operations through secure designs.
Finally it's important to us that everyone on our team be prepared to work with and supportive of a variety of backgrounds, roles, and needs. Our organization is built on trust and mutual respect, we know that it's only together that we achieve truly great things.
Note: This role can be remote but the candidate must be able to travel onsite to Curative HQ as well as other Curative locations across the United States
What you'll do
Reporting to the VP - Head of Information Security, this role will be responsible for leading our Security Operations Team and driving to the next level in our Capability Maturity.
Our Security Operations team handles SOC operations, Incident Detection and Response enriched by Threat Intelligence, and Vulnerability Management at all layers of the stack.
This team is also responsible for identifying, deploying and maintaining the tools required to provide the above services.
Define, deploy and tune our Detection and Response platforms to ensure appropriate visibility across the enterprise. Identify and incorporate all log sources required and work towards a Single Pane of Glass and a rational set of alerts.
Update Incident Response plan and develop SOPs and playbooks for Blue Team operations.
Manage Endpoint Detection & Response (EdR) tooling and processes to ensure maximum effectiveness.
Manage vendor partners to ensure the enterprise gets maximum value from engagements (right size, define KPIs, etc.)
Define the appropriate threat intelligence feeds and the processes for collecting them, analyzing them for relevance, and ingesting them into our platforms to add context.
Run a Vulnerability Management program to ensure that we have complete coverage, accurate and up-to-date data on our vulnerability posture and a process to quickly remediate vulnerabilities that we are exposed to
Keep current on information security risks and the Tactic, Techniques and Procedures (TTPs) of attackers.
Keep current on technology trends for Blue Team tools.
Self-starter; come with ideas and be ready to implement them using data to justify the approach and the effectiveness of your program
Experience managing Security Operations Center and Blue Teams
Experience with Incident Response and Security Operations in cloud environments across Major Cloud Providers in IaaS, PaaS and SaaS space
Knowledge of all security tools, features and approaches in AWS
Experience with SQL, and ability to develop data-driven approaches to monitor the effectiveness and efficiency of our detective controls.
Experience working with MSSPs
Experience with managing Threat Intelligence vendors, feeds and tools such as SOAR platforms
Experience with EdR tooling and Managed detection and response protocols.
Familiarity with foundational security technologies enough to select the right toolsets and technical controls
Experience with Containerized microservices and Kubernetes.
Ability to mentor and teach junior engineers and architects to grow capability in the team
Ability to successfully make liaison with business units to understand workflows and engineer the appropriate detective and preventive controls without impacting operations.
Information security certification such as CISSP, GIAC or OSCP
Any other “security as code” experience
Coding experience, python preferred
Penetration Testing experience
Experience in the healthcare industry
Curative is a leader in on-demand public health service programs and healthcare delivery infrastructure. From rapid, mass COVID-19 testing sites to mobile vaccination sites, Curative partners with communities to strengthen public health services with turn-key programs, easy-to-access experiences, and scalable infrastructure, keeping people everywhere safe, healthy, and informed.
Co-founded by CEO Fred Turner and powered by a team of world-leading doctors, scientists, engineers, and health industry experts, Curative began focusing on COVID-19 testing in early March 2020 upon realizing the urgent need to scale COVID-19 test production in the United States. With a network of over 15,000 sites across over 20 states and three CLIA-certified, high-complexity laboratories, Curative and its managed medical entities have provided millions of COVID-19 tests and COVID-19 vaccines.
Beyond COVID-19, Curative is using its unique healthcare delivery expertise to reimagine the way we deliver and experience healthcare in America. We're working on creating an entirely new, vertically integrated healthcare offering that will improve individual and community health while utilizing society's limited healthcare resources more effectively and efficiently. For more details on Curative, please visit curative.com and follow on Facebook (https://www.facebook.com/CurativeInc) , Instagram (https://www.instagram.com/curativeinc/) , and Twitter (https://twitter.com/Curative) .
At Curative, your safety is our priority. Our working environments comply with current CDC recommendations.
As a company that focuses on ending the COVID-19 pandemic, we have a responsibility to ensure the safety of our staff and communities. We require that all Curative employees and third-party contractors show proof of vaccination against COVID-19 within two weeks of their start date.
Curative Inc. is an Equal Employment Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. Please contact us with any questions or comments about your personal information, our third-party disclosure practices, or your consent choices at: email@example.com or by writing us at:
Curative attn Privacy officer
430 S Cataract Ave
San Dimas, CA 91773