Senior Security Specialist

What You'll Do

As a Senior Security Specialist at Dental Intelligence, you are passionate about Application Security/Cybersecurity/Information Security with a focus on HIPAA, SOC 2, Privacy, and PCI DSS standards. This position currently offers remote flexibility in the Dallas-Fort Worth, Texas area or the Pleasant Grove, Utah area with the option to be in our Corporate Office a few days per week. The Senior Security Specialist will report to the Senior Manager of Security & Compliance. Although this role is an individual contributor, there is significant cross-functional collaboration, responsibility, and a level of leadership capabilities expected. A candidate will feel successful in this role if they are a self-starter that is motivated to work efficiently under limited supervision, open to continuous improvement efforts, is accountable, and is a friendly team player.

We are seeking a technically skilled Application Security /Cybersecurity professional with prior experience to support and advance our overall Security programs. This role will focus on assessing and implementing technical controls, conducting vulnerability assessments, as well as performing detailed analyses to proactively protect systems that process sensitive patient health and payments data. The candidate will work with cross-functional teams to strengthen application security, ensure robust system protection, and enforce security standards across the organization.

Outcomes You'll Own

Vulnerability Management and Application Security:

• Coordinate penetration testing and remediation efforts.
• Utilize security testing tools, such as Tenable & Aikido, to perform scanning of code, containers, domains, APIs, etc.
• Collaborate with product owners, software developers, and systems engineering to implement and track security remediations.
• Track and analyze Open Source Software security concerns, and report potential licensing issues to Compliance.

Security Operations:

• Utilize a variety of Security tools such as intrusion detection systems (IDS), endpoint detection (EDR), firewalls, DNS filtering, and Audit Logging/SIEM platforms, CSPM, SAST/DAST, etc.
• Perform weekly patch management reviews, including testing, deployment coordination with Systems & IT, and reporting.
• Support and collaborate with the Compliance team with Security related controls of HIPAA, SOC 2, PCI DSS, Privacy, etc.
• Risk Assessments and Vendor/Software assessments

Incident Detection and Response:

• Participate in identifying, analyzing, and responding to real-time security incidents.
• Support efforts to identify root causes, create detailed incident reports, and After Action Reports.

Security Education, Training, and Awareness (SETA):

• Foster a positive culture of compliance and reporting through rapport building and awareness activities.
• Design and deliver advanced security training modules.
• Leverage threat intelligence to create tailored awareness campaigns targeting emerging risks.

Documentation and Reporting:

• Maintain documentation for security configurations, tools, and processes.
• Contribute to developing detailed security policies, playbooks, internal audit plans, and risk assessments.

What will make us REALLY Love you:

• Education: Bachelor’s degree in Cybersecurity, Information Technology, or a related technical field, or equivalent practical Cybersecurity experience.
• Experience:
• • Minimum of 4 years in a hands-on InfoSec/Cybersecurity role, including exposure to vulnerability management, network defense, and/or application security.
  • Familiarity with operating various types of security tooling, vulnerability scanners, and endpoint detection tools.
  • Familiarity with healthcare and/or payments related SaaS companies
  • Blue team/Red Team
• Knowledge & Skills:
• • Familiarity with frameworks like HIPAA Security Rule, PCI DSS, NIST CSF, ISO 27001, and/or CIS Controls.
  • Strong understanding of networking, system hardening techniques, and common attack vectors.
  • Knowledge of secure coding practices and ability to perform reviews for security flaws.
  • Strong understanding of protecting cloud and on-premise data infrastructures.
  • How to use scripting or automation tools for streamlining of security operations.
• Certifications:
• • CompTIA Security+, Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC), CYSA+, A+, Network+, or equivalent.

What You'll Love About Us

• Flexible Time Off + 11 paid holidays
• Competitive Medical, Dental & vision offerings, including free medical premiums for employees, with buy up plan options, AND we match your HSA contributions.
• Company sponsored Life, Disability & AD&D
• Mental Health support programs, Cellphone & Gym membership Discounts
• 100% Paid Parental Leave
• 401K Retirement savings plan with company match up to 5.5% + unlimited access to financial advisors.
• Tuition Reimbursement program
• Flexible work location for most roles (in-office, work-from-home, or hybrid)

Please Note: All offers of employment are contingent upon successful completion of a background check, which may include verification of education, employment history, and other credentials. By applying, you confirm that all information you have provided is accurate and complete to the best of your knowledge, and you understand that misrepresentation may result in disqualification or termination.