Senior Information Security Engineer
Direct Supply · Milwaukee, WI · 5 days ago
Information TechnologyFull-time
Position Summary
Direct Supply is building the future of healthcare technology with industry-leading products, solutions, and platforms to help improve the lives of millions of seniors and those who care for them. In the Senior Information Security Engineer position, you’ll play a key role in protecting Direct Supply’s systems, data, and applications by designing and implementing advanced security solutions. You’ll leverage cutting-edge tools, threat intelligence, and automation to proactively detect and mitigate emerging threats while leading strategic security initiatives.
Skills Needed
- Applies AI and Technology - Identifies opportunities to boost efficiency and add value using AI and tech. Embraces and applies digital innovations and tech solutions to build business.
- Eagerly learns and integrates new technologies where they matter most.
- Effectively Collaborates - Forges strong partnerships and works productively with others to achieve common goals. Finds common ground to solve problems and seeks out diverse perspectives to inform decisions.
- Learns Quickly - Rapidly absorbs and applies new information and skills and enjoys new challenges. Innovates and experiments to solve problems, reflecting on both successes and failures for growth.
- Strong ability to analyze and respond to security incidents using forensic tools, automation, and threat intelligence.
- Strong proficiency in security tools (e.g., SIEM, IDS/IPS, EDR, vulnerability management) and scripting languages (e.g., Python, PowerShell) for automation and threat detection.
- Proven ability to design and implement scalable security architectures, including cloud security (e.g., AWS).
What You’ll Do And Impact
- Design and implement advanced security solutions, including AI-powered threat detection, to safeguard systems, networks, and applications.
- Lead key security programs such as vulnerability management, incident response, and compliance audits.
- Analyze threat intelligence, assess risks, and implement proactive countermeasures to mitigate emerging threats.
- Collaborate with development and DevOps teams to embed security into APIs, microservices, and CI/CD workflows.
- Establish monitoring systems, performance metrics, and reporting tools to ensure visibility into security control effectiveness.
- Direct incident response activities and conduct forensic investigations to address and prevent security incidents.
- Mentor junior security engineers and foster a culture of security awareness across the organization.
- Ensure adherence to industry standards and regulatory frameworks (e.g., NIST, ISO 27001, OWASP, HIPAA, SOC 2, PCI).
Experience
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- At least 4 years of experience in information security, with expertise in designing and managing complex security systems.
- Experience with cloud security and encryption protocols.
- One or more certifications preferred but not required: CISSP, CISM, CEH, OSCP, or CompTIA Security+.
- Proven ability to lead high-impact security initiatives and respond effectively to threats and incidents.
Additional Items Of Interest
- Contributions to open-source security tools or participation in Capture The Flag (CTF) competitions.
- Experience with AI-driven security tools or agentic AI applications.
- Active involvement in security communities, professional events, or technical conferences.
- Knowledge of PKI, secure API design, and microservices security architecture.