Everforth Apex, a division of Everforth and formerly Apex Systems, an IT staffing and workforce solutions firm, provides recruiting and staffing services to lar
IT - Information Assurance - Security Engineer III
Location
Arkansas
Posted
2 days ago
Salary
$52 - $62 / hour
Seniority
Senior
Job Description
IT - Information Assurance - Security Engineer III
Everforth
IT - Information Assurance - Security Engineer III Location: United States Employee Type: Contract Location: Home, AR, US Job Type: Pay Range: $52 - $62 per hour Job Description: Job#: 3039270 Job Description: IT - Information Assurance/Security Engineer III Location: Home, Arkansas (Teleworker) Role Overview We are seeking a Senior Security Analyst to join a team of skilled professionals. The ideal candidate will play a pivotal role in safeguarding and strengthening the security posture of the ClaimsCore platform by performing comprehensive security analysis, vulnerability assessments, and compliance monitoring. This position will support ongoing system maintenance, platform enhancements, and major modernization activities by providing expert security guidance, reviewing configurations, and ensuring alignment with enterprise and federal security standards. The Senior Security Analyst will contribute directly to the reliability, resilience, and integrity of systems supporting federal health mission partners. Key Responsibilities - Performing security analysis, vulnerability assessments, and compliance monitoring for the ClaimsCore platform. - Reviewing, interpreting, and validating security scan results from tools such as Tenable, Qualys, or similar enterprise vulnerability platforms. - Prioritizing remediation efforts and tracking vulnerability resolution against established SLA timelines. - Coordinating with development, operations, and infrastructure teams to ensure timely remediation and secure configuration management. - Supporting internal and external audit activities, including evidence collection, control validation, and implementation of corrective actions. - Reviewing system and application security configurations to ensure alignment with enterprise standards, NIST guidelines, and Zero Trust principles. - Providing actionable security recommendations to technical teams and participating in design reviews for secure implementation of new features or system updates. - Monitoring compliance with security policies, procedures, and regulatory requirements, and escalating deviations as appropriate. - Assisting in the development and continuous improvement of security processes, documentation, and reporting dashboards. - Supporting incident response activities by analyzing potential vulnerabilities, misconfigurations, and threat vectors relevant to the ClaimsCore environment. Required Qualifications Education: A Bachelor of Science or Bachelor of Arts degree with 5 years of experience, a Master of Science or Master of Arts degree with 3 years of experience, or a PhD with 0 years of experience is required. Experience: 5-8+ years of experience in security analysis, vulnerability management, or cybersecurity operations in a large enterprise or federal environment. Experience supporting compliance, audit activities, or regulatory requirements for federal or large enterprise systems is also required. Technical Skills: - Hands-on experience with vulnerability scanning platforms (e.g., Tenable.sc, Tenable Nessus, Qualys) and an understanding of CVE, CVSS, and vulnerability lifecycle processes. - Demonstrated ability to analyze scan data, identify false positives, and translate technical findings into clear, actionable remediation tasks. - Familiarity with security frameworks and standards including NIST 800-53, NIST CSF, RMF, and CIS benchmarks. - A strong understanding of secure configuration principles for operating systems, cloud platforms, and application environments. - Effective communication skills (verbal and written) with both technical and non-technical stakeholders. - U.S. Citizenship may be required based on project needs. Preferred Qualifications - Security-related certifications such as Security+, CySA+, GSEC, CEH, CISSP, CISM, or equivalent. - Experience with cloud environments (AWS, Azure, or GCP) and associated security services or baseline configurations. - Experience supporting large modernization efforts or legacy-to-cloud migrations. - Knowledge of SIEM platforms, security automation workflows, and log analysis. - Experience working in Agile or DevSecOps environments and providing security input throughout SDLC processes. - Familiarity with federal healthcare systems or related compliance requirements. - Experience generating security reports and presenting findings to leadership or program stakeholders. Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at https://www.apexsystems.com/privacy-policy Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide. Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at [email protected] or 804-523-8228. Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered. UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems. Employee Type: Contract Location: Home, AR, US Job Type: Pay Range: $52 - $62 per hour Similar Jobs - Information Security Engineer - IAM - Information Security Engineer - NC - Information Security Engineer - NC - Information Security Engineer - TX - LEAD INFORMATION SECURITY ENGINEER
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Information Security Specialist
Pearson VUEThe potential of every professional. The promise of every industry.
• Serve as the primary security point of contact for assigned clients, owning day-to-day security communications, leading client discussions, creating client-facing reports, and responding to ad-hoc security inquiries and escalations. • Liaise with program management, other functional areas within Pearson, clients, external security consultants and investigative firms as needed. • Conduct web monitoring services for assigned client including online investigation and cyber intelligence gathering. • Perform data forensics services for assigned client and conduct investigations related to data forensics. • Produce/provide reporting to assigned client for web monitoring and data forensics. • Provide internal and external consulting with regard to our information security policies, standards and procedures. • Respond to ad hoc client security requests in desired timeframes. • Conduct investigations related to candidate misconduct incidents. • Review testing session videos in relation to candidate misconduct incident and produce reporting related to review. • Manages boilerplate library and ensures all security templates reflect Pearson VUE’s current practices and technology.
• Lead the development, implementation, and continuous improvement of safety, health, and security, programs in compliance with company policies and all applicable regulatory requirements • Serve as the subject matter expert and primary point of contact for all safety, health, and security-related matters, partnering closely with operations, HR, Legal, Internal Audit, and external agencies • Conduct risk assessments, compliance audits, and security surveys to identify vulnerabilities, ensure policy adherence, and drive corrective actions that promote a safe and secure work environment • Analyze safety incidents, loss trends, and operational data; lead investigations, ensure accurate documentation and reporting, and develop actionable insights and metrics for leadership • Design and deliver safety and security training programs that increase awareness, strengthen compliance, and enhance employee engagement at all levels • Support operational teams by developing and implementing action plans that improve safety performance, reduce risk and loss, and ensure alignment with physical security and environmental standards • Participate in process reviews and job hazard analyses for new and existing operations to proactively mitigate risk and improve workplace safety • Develop and maintain reporting mechanisms to communicate safety performance, security initiatives, and key performance indicators to leadership • Build strong cross-functional relationships to drive a culture of safety, security, accountability, and continuous improvement across the organization • Ability to travel up to 85% of the time; must possess a REAL ID-compliant driver's license or passport to comply with federal travel regulations • Familiarity and ability to comply with TSA security procedures • Ability to travel domestically via road, rail and air as required for the role and pursuant to company travel and expense requirements.
• Lead the development, implementation, and continuous improvement of safety, health, and security programs in compliance with company policies and all applicable regulatory requirements • Serve as the subject matter expert and primary point of contact for all safety, health, and security-related matters, partnering closely with operations, HR, Legal, Internal Audit, and external agencies • Conduct risk assessments, compliance audits, and security surveys to identify vulnerabilities, ensure policy adherence, and drive corrective actions that promote a safe and secure work environment • Analyze safety incidents, loss trends, and operational data; lead investigations, ensure accurate documentation and reporting, and develop actionable insights and metrics for leadership • Design and deliver safety and security training programs that increase awareness, strengthen compliance, and enhance employee engagement at all levels • Support operational teams by developing and implementing action plans that improve safety performance, reduce risk and loss, and ensure alignment with physical security and environmental standards • Participate in process reviews and job hazard analyses for new and existing operations to proactively mitigate risk and improve workplace safety • Develop and maintain reporting mechanisms to communicate safety performance, security initiatives, and key performance indicators to leadership • Build strong cross-functional relationships to drive a culture of safety, security, accountability, and continuous improvement across the organization • Ability to travel up to 75%, must possess a REAL ID-compliant driver's license or passport to comply with federal travel regulations
• End-to-end ownership of our cloud infrastructure on GCP, architecture, reliability, cost, scalability, and operational excellence • The full cloud-native application environment; containerized and serverless workloads, cloud networking, and the large-scale, multi-tenant data layer (many terabytes of customer data on MongoDB Atlas), including the architecture, performance, and scaling decisions across all of it • Deployment, release, and maintenance processes, with a focus on uptime and minimizing customer-facing disruption, recognizing that a platform outage during an active warehouse shift is a customer event, not just a ticket • Leadership of our senior SRE, providing direction and architectural vision to move the platform forward • Our overall security program, policy, posture, tooling, and incident response, across both businesses • Achieving and maintaining SOC 2 Type II (and evaluating ISO 27001 as the customer base demands), including driving the program, evidence, and audit relationships • Customer-facing security: questionnaires, audits, and trust conversations with security-conscious enterprise buyers • Data protection obligations as a data processor, including PII handling and relevant privacy regimes (e.g. GDPR, CCPA) • Managing security vendor relationships (MDR/EDR, SIEM, endpoint protection, penetration testing) • Oversight of the internal IT function, corporate network, on-prem and cloud infrastructure, identity, endpoint management, help desk, and vendor relationships • Light-touch oversight of a small, hosted WMS environment on GCP, including its reliability and availability commitments • Mentorship and development of an established IT team, including an IT Manager and IT Administrators who handle the day-to-day


