Senior Information Security Engineer

Position Summary:

Direct Supply is building the future of healthcare technology with industry-leading products, solutions and platforms to help improve the lives of millions of seniors and those who care for them.

In the Senior Information Security Engineer position, you'll play a key role in protecting Direct Supply's systems, data, and applications by designing and implementing advanced security solutions. You'll leverage cutting-edge tools, threat intelligence, and automation to proactively detect and mitigate emerging threats while leading strategic security initiatives. Operating independently within a cross-functional team, you'll help ensure the confidentiality, integrity, and availability of our web platforms, mobile apps, and server-based systems-balancing innovation in security with operational excellence.

Skills Needed:

• Applies AI and Technology - Identifies opportunities to boost efficiency and add value using AI and tech. Embraces and applies digital innovations and tech solutions to build business. Eagerly learns and integrates new technologies where they matter most.

• Effectively Collaborates - Forges strong partnerships and works productively with others to achieve common goals. Finds common ground to solve problems and seeks out diverse perspectives to inform decisions. Quickly earns trust, puts others at ease, and shows empathy.

• Learns Quickly - Rapidly absorbs and applies new information and skills and enjoys new challenges. Innovates and experiments to solve problems, reflecting on both successes and failures for growth. Is a naturally curious and adaptable learner.

• Strong ability to analyze and respond to security incidents using forensic tools, automation, and threat intelligence.

• Strong proficiency in security tools (e.g., SIEM, IDS/IPS, EDR, vulnerability management) and scripting languages (e.g., Python, PowerShell) for automation and threat detection.

• Proven ability to design and implement scalable security architectures, including cloud security (e.g., AWS.)

What You'll Do and Impact:

• Design and implement advanced security solutions, including AI-powered threat detection, to safeguard systems, networks, and applications

• Lead key security programs such as vulnerability management, incident response, and compliance audits

• Analyze threat intelligence, assess risks, and implement proactive countermeasures to mitigate emerging threats

• Collaborate with development and DevOps teams to embed security into APIs, microservices, and CI/CD workflows

• Establish monitoring systems, performance metrics, and reporting tools to ensure visibility into security control effectiveness

• Direct incident response activities and conduct forensic investigations to address and prevent security incidents

• Mentor junior security engineers and foster a culture of security awareness across the organization

• Ensure adherence to industry standards and regulatory frameworks (e.g., NIST, ISO 27001, OWASP, HIPAA, SOC 2, PCI)

Experience:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field

• At least 4 years of experience in information security, with expertise in designing and managing complex security systems

• Experience with cloud security and encryption protocols

• One or more certifications preferred but not required: CISSP, CISM, CEH, OSCP, or CompTIA Security+

• Proven ability to lead high-impact security initiatives and respond effectively to threats and incidents

Additional Items of Interest:

• Contributions to open-source security tools or participation in Capture The Flag (CTF) competitions

• Experience with AI-driven security tools or agentic AI applications

• Active involvement in security communities, professional events, or technical conferences

• Knowledge of PKI, secure API design, and microservices security architecture

Job to be performed in the location listed. Generous benefit package available.

2013 to 2026 Direct Supply, Inc. All rights reserved.