BENEFITS DATA TRUST (BDT) seeks a SECURITY ENGINEER as part of our Site Reliability Engineering team (SRE).  The Security Engineer plays a vital role in assuring both internal and external stakeholders that our sensitive data and systems are protected and secured.  The Security Engineer will design and implement security improvements for our hybrid environment.  The Security Engineer will work in close collaboration with our cloud architecture and platform development teams to create and enforce best security practices.  Additionally, the Security Engineer will ensure that BDT follows all SOC II protocols.  The Security Engineer will collaborate with other departments to ensure SOC II compliance at an organization level.  The Security Engineer is also expected to monitor security measures for the continued protection of our systems. 

Based in our Center City Philadelphia office, the Security Engineer reports to the CLOUD ARCHITECT. 

RESPONSIBILITIES

• Drive infrastructure security initiatives while partnering with other engineering teams
• Participate in technical meetings to review and enforce compliance with BDT security; standards based on SOC II principles 
• Identify common infrastructure security vulnerabilities and resolve them
• Perform security analysis and privacy analysis audits of all BDT equipment, public-facing services, private-facing services, and vendor-hosted services using both automated and manual means
• Leverage expertise across a variety of security products including firewalls, URL filtering, information security, and virus protection to design best in class protocols
• Participate in design reviews with perspective on security
• Improve and enhance existing monitoring and alerting services
• Conducting proactive research to analyze security weaknesses and recommend appropriate solutions
• Articulate and prioritize security risks
• Host education sessions with the engineering team to establish and nurture security best practices
• Review and formulate responses to state, partner, and auditor requests with regards to information security
• Continuously maintain, apply and implement SME level knowledge of evolving best practices for securing cloud environments

QUALIFICATIONS

• Proficient knowledge of SOC II, ISO, HiTrust or PCI compliance (certification) strongly preferred.
• Azure, AWS, Google or other cloud provider experience required
• Previous experience with penetration testing required
• Linux administration experience preferred
• Demonstrated expertise with mobile code, malicious code, and anti-virus software
• Ability to build automated tools to solve technical challenges to prevent having to solve problems manually
• Experience with CI/CD, cloud and containerization, utilizing automation services and tools
• Experience with vulnerability scanners, application, and hardware monitoring
• Incident response and post-mortem analysis
• Ability and interest to script, write small applications and learn new technologies
• Demonstrated experience preparing written documentation suitable for a variety of users strongly preferred
• The ability to translate complex IT matters to a range of audiences.
• The business acumen to provide cost-effective security solutions
• Strong time management and organizational skills

ABOUT BDT  BENEFITS DATA TRUST (BDT) is a national nonprofit that helps people live healthier, more independent lives by creating smarter ways to access essential benefits and services. Each year, BDT helps tens of thousands of people receive critical supports using data, technology, targeted outreach, and policy change. Since inception in 2005, BDT has submitted over 800,000 applications – more than any other single entity in the country – securing over $7 billion in benefits and services. BDT employs more than 170 people and provides enrollment assistance to individuals in six states, and policy assistance to states nationwide. For more information, visit bdtrust.org.