• Information Security Engineer

    Job ID 2019-16550
    # Positions
    Job Location
    Information Technology (IT)
  • Why Us?

    With a mantra of Empowering Human Potential, Hanger, Inc. is the world's premier provider of orthotic and prosthetic (O&P) services and products, offering the most advanced O&P solutions, clinically differentiated programs and unsurpassed customer service. Hanger's Patient Care segment is the largest owner and operator of O&P patient care clinics nationwide. Through its Products & Services segment, Hanger distributes branded and private label O&P devices, products and components, and provides rehabilitative solutions to the broader market. Built on the legacy of James Edward Hanger, the first amputee of the American Civil War, Hanger is steeped in 150 years of clinical excellence and innovation with a vision to be the partner of choice for products and services that enhance human physical capability. Collectively, Hanger employees touch thousands of lives each day, helping people achieve new levels of mobility and freedom.


    Hanger, Inc. is an equal opportunity employer - female/minority/disability/vet.

    Could This Be For You?

    As the Information Security Engineer IV you will assist with the day-to-day information security operations and help with the implementation of the Information Security Strategic Plan to enforce HIPAA, PCI, and SOX compliance. Responsibilities include the managing, monitoring and maintenance of information security devices such as; encryption technology, threat detection tools, SIEM tools and web content filtering technology. You will analyze and create reports based on information gathered from security technology and report to CISO on a daily basis. You will perform detailed information security assessments on Hanger information systems to ensure compliance with federal and state regulations and assist with e-discovery, forensics and internal testing. The information security assessments would include but are not limited to application reviews, access controls, network reviews, and regulatory and other compliance reviews. Other information security duties may be assigned.

    Your Impact

    • Support a complex security architecture that includes but not limited to: SIEM, next generation firewalls, web filtering, database firewalls, DLP, vulnerability management, endpoint protection, and forensic analysis
    • Design, implement, and support new security technologies and make recommendations to management
    • Proactive threat hunting and malware analysis using commercial and open source tools
    • Have experience in ethical hacking
    • Perform internal and external penetration test to validate controls
    • Expert knowledge on cyber security threats and intelligence landscape
    • Expert knowledge in various frameworks such as NIST and CIS
    • Identify, report and remediate threats and vulnerabilities found using various tools
    • Assess and disseminate cyber threat information including indicators of compromise (IOCs) and prioritize and remediate vulnerabilities based on active exploitation.
    • Interact with IT Risk and Compliance as required to help prioritize and remediate enterprise risk.
    • Adhere and abide by established security incident response procedures including forensic investigations, as necessary.
    • Communicate to team members and senior management regularly on cyber risks to the enterprise through briefings and reports
    • Enforce the company’s security policies and mitigate security risks to preserve confidentiality, integrity, and availability of systems
    • Perform security reviews of software and hardware to ensure compliance with internal standards
    • Facilitate security awareness training for employees
    • Conduct phishing, social engineering and table top exercises to simulate threats

    Minimum Qualifications

    • Bachelor’s degree in a computer science with minimum 8 years related work experience




    • High School Diploma with minimum 12 years of related work experience.

    Additional Success Factors

    • Knowledge of HIPAA Security rule, SOX, Payment Card Industry (PCI), NIST standards, SANS top 20, ISO27002, investigating and documenting incidents, and compliance.
    • Advanced PowerShell scripting experience.
    • Hands on experiencing with industry leading database firewalls and advanced SIEM tools.
    • CISSP or other security certifications preferred.
    • Act with integrity in all ways and at all times, remaining honest, transparent, and respectful in all relationships.
    • Keep the patient at the center of everything that you do, building lifelong trust.
    • Foster open collaboration and constructive dialogue with everyone around you.
    • Continuously innovate new solutions, influencing and responding to change.
    • Focus on superior outcomes, and calibrate work processes for outstanding results.

    Our Investment in You

    • Competitive salary.
    • Competitive health and insurance benefits.
    • Annual target bonus or commission.
    • Paid vacation and sick time.
    • Frequent company update talks with our leadership team.

    Hanger, Inc. is committed to providing equal employment opportunity in all aspects of the employer-employee relationship. All conditions and privileges of employment are administered to all employees without discrimination or harassment because of race, religious creed, color, age, sex, sexual orientation, gender identity, national origin, religion, marital status, medical condition, physical or mental disability, military service, pregnancy, childbirth and related medical conditions, special disabled veteran status, or any other classification protected by federal, state, and local laws and ordinances. The Company will comply fully with all applicable state or local fair employment laws that forbid discrimination or harassment on the basis of other protected characteristics. Retaliation against any employee for filing or supporting a complaint of discrimination or harassment is prohibited.​​


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed