This position is 100% remote - candidates can be based anywhere within the USA!
Since 1989, DentalXChange has been on the forefront of modernizing and innovating dental claims creating dental RCM solutions that bring ease to the payments process. Today, it has grown to support a current client base of more than 107,000 dental providers. Headquartered in Irvine, CA, through its own clearinghouse, state of art technology consisting of modern APIs, and secure Web portals, DentalXChange processes over 300 million transactions, consisting of more than 71 million dental claims annually.
SecOps Engineer Position Summary
The SecOps Engineer will be responsible for integrating security practices into the DevOps process, automating security controls, and developing infrastructure as code to ensure continuous compliance and security. This role involves working closely with development, IT, and security teams to build robust security solutions that support the organization’s business objectives.
What You’ll Be Doing as a SecOps Engineer
-
Security Architecture and Design:
-
Design and implement security architecture for cloud and on-premise environments.
-
Develop and maintain secure configurations for infrastructure components.
-
Automation and Integration:
-
Automate security processes and workflows using tools like Ansible, Terraform, and Jenkins.
-
Integrate security tools and practices into CI/CD pipelines.
-
Security Operations:
-
Conduct threat modeling and risk assessments for new and existing systems.
-
Monitor and respond to security incidents, performing root cause analysis and remediation.
-
Collaboration:
-
Work closely with development and IT teams to ensure security is integrated into the software development lifecycle.
-
Provide security training and guidance to development and IT teams.
-
Compliance and Documentation:
-
Ensure compliance with industry standards and regulations such as GDPR, HIPAA, SOC-2, and HITRUST.
-
Maintain accurate and up-to-date documentation of security policies, procedures, and configurations.
-
Maintain confidentiality standards and expectations.
-
Exhibit exceptional internal and external customer service with all individuals.
-
Observe security responsibilities including, but not limited to:
-
Utilize appropriate communication channels for the movement of data.
- Use minimum data necessary to identify transactions. Claim ID, Claim File Upload ID, ERA Trace Number/Check ID. Only when those identities are not enough for the recipient to find the transaction, then use the minimum PHI needed to identify the transaction.
-
Security is everyone’s job. Look out for, and report, anything that is suspicious or just doesn’t seem correct.
- Live DentalXChange’s company values:
-
Actively Care: DentalXChange Associates actively care. They care deeply about the impact they have on other associates, clients, partners, and DXC’s results. They are empathetic, which allows them to excel at interpersonal relationships and making others feel important.
-
Try Hard: DentalXChange Associates try hard. They get energy from doing good work, not just showing up. They are focused on impact and outcomes, not just finishing. They like to learn, are willing to help, and love challenges.
-
Be Humble: DentalXChange Associates are humble. They lack excessive ego or concerns about status. They are quick to point out the contributions of others and slow to seek recognition for their own. They share credit, emphasize team over self, and define success collectively rather than individually.
-
Other duties as assigned.
What You'll Bring to the Team as a SecOps Engineer
-
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. A Master’s degree is a plus.
-
3+ years of experience in a security engineering or SecOps role.
-
Experience with cloud platforms such as AWS, Azure, or Google Cloud Platform.
-
Proven experience with automation tools like Ansible, Terraform, and CI/CD tools like Jenkins.
-
Strong understanding of security principles, protocols, and technologies.
-
Proficiency in scripting languages such as Python, Bash, or PowerShell.
-
Hands-on experience with security tools and technologies, including firewalls, IDS/IPS (e.g., Snort, Suricata), SIEM, vulnerability scanners, and endpoint protection.
-
Knowledge and experience with infrastructure areas such as Cisco firewalls and SonicWall firewalls.
-
Knowledge and experience with Web Application Firewalls (WAF).
-
Hands-on experience managing Windows and Ubuntu servers.
-
Knowledge of containerization and orchestration tools like Docker and Kubernetes.
-
Familiarity with infrastructure as code (IaC) practices and tools
-
Certifications (Optional):
-
Certified Information Systems Security Professional (CISSP)
-
Certified Cloud Security Professional (CCSP)
-
Offensive Security Certified Professional (OSCP)
-
GIAC Security Essentials (GSEC)
What We Offer
-
Challenging and rewarding career opportunities with room for growth as we grow!
-
Medical, dental, and vision benefits – eligible first of the month after start date
-
Unlimited PTO
-
9 paid company holidays
-
401k matching
-
Healthcare and dependent care flexible spending accounts
-
Friendly co-workers and a positive culture!
-
Pay range of $135,000 - $155,000 annually, DOE