Mercalis is an integrated life sciences commercialization partner that provides comprehensive solutions that span the entire healthcare value chain. Backed by proven industry expertise and results-driven technology, Mercalis helps navigate the complex life sciences marketplace by providing commercialization solutions to accelerate value and enhance patient lives.

Mercalis fosters a culture that encourages individuality and provides opportunities for creativity, growth, and success while fostering a team environment. We are a diversity-driven organization with an inclusive approach to delivering patient-centric solutions that, eliminate barriers for patients, and increase patient access to life altering medications.

The Senior Cloud Security Engineer position recommends security solutions, advises on systems and application-level security configurations, and investigates / mitigates security risks as required.  This position also works with the security analysts and security operations center to perform security monitoring, data / log analysis, content filtering and forensic analysis to detect security incidents, and provides expert incident response against the current and future threat landscape to ensure the protection and compliance of company data assets

• Manages / administers the company’s day-to-day information security infrastructure.
• Plan, schedule, and implement security upgrades and implementations in a timely manner, and work with stakeholders to ensure minimum impact on the users of any affected networks & systems.
• Provide project support of network security, analysis, and monitoring solutions, services, and products.
• Develop and implement mitigation strategies for identified security risks.
• Develop and interpret security policies and procedures.
• Develop and enhance existing processes to ensure consistent configuration and outcomes.
• Develop and maintain proper documentation for planning, coordination, and compliance purposes.
• Architect, design, implement, support, and evaluate security-focused tools and services.
• Support migration of enterprise workloads from on-premises to cloud-hosted environment.
• Support integration of intra-cloud, inter-cloud, and 3^rd party communications.
• Evaluate and recommend new and emerging security products and technologies.
• Install and configuration of physical and virtual devices.
• Perform regularly scheduled security reviews of technology, operations, and personnel.
• Be available, on-call, to rapidly troubleshoot any problems, issues, or incidents.
• Participate in incident response and problem handling to resolution.
• Prepare for, participate in, and remediate security compliance efforts and audits (e.g., ISO, HIPAA, etc.)
• Work with 3^rd party technical assistance, vendors, and businesses as needed.
• Limited travel, as required to maintain security infrastructure
• Any other tasks or projects as assigned by immediate superviso
• Utilize Mercalis’ leadership competencies as the driving force behind the team’s success
• On time adherence to training deadlines for all corporate policies and procedures governing access to confidential data
• Ensure all SOPs are followed with consistency
• Conducts miscellaneous tasks or projects as assigned

Basic Qualifications:

• Thorough understanding of current industry standard security principles, techniques, and protocols for cloud and hybrid cloud environments.
• Consistent planning and implementation of security solutions at the enterprise level.
• At least 7 years of system, network, or application security experience and at least 3 of those years of security-focused engineering, and demonstrable experience with enterprise cloud security migration and support.
• Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security.
• Working knowledge of Azure and AWS cloud architecture, security, and best practices.
• Extensive experience with planning and configuration of next-generation firewall (NGFW) platforms.
• Working knowledge with various routing protocols (BGP, OSPF, EIGRP, etc.)
• Experience utilizing security information and event management (SIEM) platforms.
• Experience with packet analyzers.
• Understanding of protocols, such as, SSL/TLS, CIFS, HTTP/S, DHCP, SMTP, LDAP/S, and DNS
• Experience in networking concepts and services, such as, VPNs, IPSec, PKI, and TCP/IP
• Results oriented and self-motivated individual.

Preferred Qualifications:

• CISSP / GSEC certification.
• Security+ certification.
• Excellent written and verbal communication skills.
• Excellent leadership and teamwork skills.
• Experience deploying and maintaining network access control (NAC).
• Knowledge of web application firewalls (WAF).
• Experience with infrastructure as code configuration and deployment.

Why work for Mercalis?

• Diversity, Equity, Inclusion & Belonging are paramount to our culture and success. Our dedication to DEI&B is both organic and intentional
• Our Mission is rewarding and fulfilling (Patient Access to Life-Saving/Improving/Extending Medications/Treatments)
• We employ the best Talent and Tools from the Patient Access Industry (We are the Industry Leader)
• We monitor the market to ensure we offer competitive salaries and benefits.
• 401K w/ 5% matching; day-1 vestment period
• 15 days PTO
• 7 Holidays + 2 Floating Days
• Health/Dental/Vision/Life; Coverage Day-1
• Gym Reimbursement
• Volunteer Hours

*This is not an exhaustive list of benefits.

*Benefits are subject to change.

** Some positions require onsite presence and/or structured hours/shifts.