Senior Information Security Engineer
About The Position
Direct Supply is building the future of healthcare technology with industry-leading products, solutions and platforms to help improve the lives of millions of seniors and those who care for them. In the Senior Information Security Engineer position, you’ll play a key role in protecting Direct Supply’s systems, data, and applications by designing and implementing advanced security solutions. You’ll leverage cutting-edge tools, threat intelligence, and automation to proactively detect and mitigate emerging threats while leading strategic security initiatives. Operating independently within a cross-functional team, you’ll help ensure the confidentiality, integrity, and availability of our web platforms, mobile apps, and server-based systems—balancing innovation in security with operational excellence.
Requirements
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field
- At least 4 years of experience in information security, with expertise in designing and managing complex security systems
- Experience with cloud security and encryption protocols
- Proven ability to lead high-impact security initiatives and respond effectively to threats and incidents
- Strong ability to analyze and respond to security incidents using forensic tools, automation, and threat intelligence
- Strong proficiency in security tools (e.g., SIEM, IDS/IPS, EDR, vulnerability management) and scripting languages (e.g., Python, PowerShell) for automation and threat detection
- Proven ability to design and implement scalable security architectures , including cloud security (e.g., AWS.)
Nice To Haves
- One or more certifications preferred but not required: CISSP, CISM, CEH, OSCP, or CompTIA Security+
- Contributions to open-source security tools or participation in Capture The Flag (CTF) competitions
- Experience with AI-driven security tools or agentic AI applications
- Active involvement in security communities, professional events, or technical conferences
- Knowledge of PKI, secure API design, and microservices security architecture
Responsibilities
- Design and implement advanced security solutions, including AI-powered threat detection, to safeguard systems, networks, and applications
- Lead key security programs such as vulnerability management, incident response, and compliance audits
- Analyze threat intelligence, assess risks, and implement proactive countermeasures to mitigate emerging threats
- Collaborate with development and DevOps teams to embed security into APIs, microservices, and CI/CD workflows
- Establish monitoring systems, performance metrics, and reporting tools to ensure visibility into security control effectiveness
- Direct incident response activities and conduct forensic investigations to address and prevent security incidents
- Mentor junior security engineers and foster a culture of security awareness across the organization
- Ensure adherence to industry standards and regulatory frameworks (e.g., NIST, ISO 27001, OWASP, HIPAA, SOC 2, PCI)
Benefits
- Generous benefit package available
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
