Senior Manager, Security Engineer
Apply NowCompany: Nimble Solutions
Location: Chesterfield, MO 63017
Description:
Why work at nimble?
This is a great opportunity to join a well-established and market-leading brand serving a high-growth end market while gaining valuable experience working closely with Executive leadership. As an organization, we are in high-growth mode through acquisition with a laser focus on positive culture building!
Who we are!
nimble solutions is a leading provider of revenue cycle management solutions for ambulatory surgery centers (ASCs), surgical clinics, surgical hospitals, and anesthesia groups. Our tech-enabled solutions allow surgical organizations to streamline their revenue cycle processes, reduce administrative burden, and improve financial outcomes. Join over 1,100 surgical organizations that trust nimble solutions and its advisors to bring deep insights and actionable intelligence to maximize their revenue cycle.
The Senior Manager, Security Engineer is responsible for safeguarding the organization's IT systems and data assets. This vital role involves identifying, preventing, and mitigating security risks while ensuring compliance with relevant security standards and regulations. The Security Engineer will actively collaborate with teams across the organization to implement robust security policies, controls, and procedures. This role requires a strategic approach to cybersecurity and a hands-on involvement in security operations. The position reports directly to the Director of Information Security and has an indirect reporting line to the Chief Information Technology Officer (CITO).
What you'll be doing!
Threat Detection & Response:
Security Architecture & Engineering:
Vulnerability Management:
Compliance & Reporting:
Security Awareness & Training:
Security Operations Center (SOC) Management:
Risk Assessment & Management:
Policy & Procedure Development:
Incident Response:
Requirements
Who You Are!
This is a great opportunity to join a well-established and market-leading brand serving a high-growth end market while gaining valuable experience working closely with Executive leadership. As an organization, we are in high-growth mode through acquisition with a laser focus on positive culture building!
Who we are!
nimble solutions is a leading provider of revenue cycle management solutions for ambulatory surgery centers (ASCs), surgical clinics, surgical hospitals, and anesthesia groups. Our tech-enabled solutions allow surgical organizations to streamline their revenue cycle processes, reduce administrative burden, and improve financial outcomes. Join over 1,100 surgical organizations that trust nimble solutions and its advisors to bring deep insights and actionable intelligence to maximize their revenue cycle.
The Senior Manager, Security Engineer is responsible for safeguarding the organization's IT systems and data assets. This vital role involves identifying, preventing, and mitigating security risks while ensuring compliance with relevant security standards and regulations. The Security Engineer will actively collaborate with teams across the organization to implement robust security policies, controls, and procedures. This role requires a strategic approach to cybersecurity and a hands-on involvement in security operations. The position reports directly to the Director of Information Security and has an indirect reporting line to the Chief Information Technology Officer (CITO).
What you'll be doing!
Threat Detection & Response:
- Monitor the organization's servers, networks, and endpoints for potential security threats using tools such as Windows Defender, Windows Purview, Crowdstrike, and Rapid7
- Investigate and respond to security incidents promptly to minimize impact
- Develop and enforce security policies through tools like Intune
Security Architecture & Engineering:
- Design, implement, and maintain security controls, including firewalls, intrusion detection/prevention systems (IDPS), and data encryption technologies
- Develop and maintain security standards, protocols, and best practices to ensure secure system configurations and operations
Vulnerability Management:
- Identify, assess, and prioritize security vulnerabilities across systems using tools like Windows Defender, Wiz, and Rapid7
- Develop and implement remediation plans to address vulnerabilities and strengthen the organization's security posture
Compliance & Reporting:
- Prepare and maintain reports detailing security metrics, incidents, attempted attacks, and breaches
- Ensure compliance with relevant security frameworks and industry regulations (e.g., NIST, GDPR)
- Assist with audits and assessments to ensure security controls are effective and meet regulatory requirements
Security Awareness & Training:
- Educate employees on IT security best practices, risks, and policies to foster a security-conscious culture
- Collaborate with IT teams and business units to ensure security practices are effectively implemented and followed
- Clearly communicate security risks and provide recommendations for improvement to management and key stakeholders
Security Operations Center (SOC) Management:
- Work within a 24/7 Security Operations Center (SOC) environment, being part of an on-call escalation process
- Provide timely and effective incident response for emerging security threats
Risk Assessment & Management:
- Conduct and report on comprehensive risk assessments to identify security weaknesses and threats
- Provide risk mitigation strategies and ensure ongoing security improvements
Policy & Procedure Development:
- Develop, implement, and enforce security policies and procedures to ensure consistent, organization-wide security measures
- Regularly review and update policies and procedures in response to emerging threats and regulatory changes
Incident Response:
- Respond to and manage security incidents, providing coordination, investigation, and resolution to minimize damage and downtime
- Participate in post-incident reviews to improve incident response processes
Requirements
Who You Are!
- 5+ years of experience in systems or network administration/engineering
- 3+ years of experience in information security roles, with a focus on threat detection, vulnerability management, and security operations
- Strong understanding of security principles, frameworks, and best practices (e.g., NIST, ISO 27001)
- Proficiency in managing security tools such as Windows Defender, Crowdstrike, Rapid7, Wiz, and Intune
- Proficient in Windows Server administration, network protocols, and system architectures
- Experience with security information and event management (SIEM) systems
- Familiarity with scripting languages such as Python and PowerShell
- Strong analytical, troubleshooting, and problem-solving skills
- Excellent written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical stakeholders
- Ability to create clear, concise security documentation and reports
- Ability to work both independently and as part of a team in a dynamic, fast-paced environment
- Strong interpersonal skills, with the ability to collaborate across various departments and levels within the organization