Senior Cyber Risk Management Engineer

EMPLOYER: Delta Dental of California

TITLE: Senior Cyber Risk Management Engineer

Location: 1333 Broadway, Suite 800, Oakland, CA 94612; Must live within reasonable commuting distance from HQ and able to appear in office as required.

Salary: $ 195,000 - $ 230,000/year

• Maintain a comprehensive understanding of information security principles and enforce the proper use of security technologies across the organization. 

• Oversee cloud security management and design cloud security controls to secure the deployment in different cloud offerings, including SaaS , PaaS and IaaS. 

• Secure in house developed applications and APIs, applying OWASP 10 API security principles including but not limited to fine-grained authorization and access control measures. 

• Apply contemporary security theories and practices, including vulnerability assessment, exploitation techniques, threat modeling, attack vector analysis, and secure design concepts to strengthen defenses. 

• Lead and manage multifunctional projects or initiatives throughout the systems development lifecycle, ensuring security is integrated at every stage. 

• Must live within reasonable commuting distance from HQ and able to appear in office as required.

• Master’s degree or foreign degree equivalent in Computer Science or related field and five (5) years of experience in Information Security related role or job offered.

• Design and implement secure architectures from inception, including the development of comprehensive end-to-end security design blueprints for enterprise systems, while providing expert guidance to developers, infrastructure SMEs, and stakeholders on implementing necessary controls.

• Address Identity and Access Management (IAM) requirements, such as integrating SSO, MFA, RBAC, and enforcing least-privilege principles across enterprise platforms. Demonstrate strong experience with Entra ID, including risk-based authentication and identity lifecycle management within Azure Entra ID.

• Design and validate infrastructure security controls, encompassing network segmentation, configuration of firewalls (Palo Alto, Cisco), deployment of intrusion prevention systems (Cisco Firepower), endpoint protection solutions (CrowdStrike), and zero-trust networking. Possess proficiency in applying segmentation strategies within cloud environments using technologies like NSGs, cloud firewalls, and Azure Front Door.

• Implement robust cloud security controls across diverse platforms, including Azure and Oracle Cloud, with competencies in encryption, workload protection, and cloud-native security services. Capable of designing secure integrations between public clouds and on-premises deployments.

• Apply application security best practices, including secure coding standards, static and dynamic application testing (SAST/DAST), integration into the secure SDLC, and API security, ensuring compliance with the OWASP Top 10 security requirements.

• Review code scan reports generated by tools such as Fortify and Black Duck, providing remediation guidance and issue resolution recommendations to development teams.

• Define and prescribe security requirements for a broad range of implementations, including COTS applications, custom-developed software, SaaS, and platform services, ensuring alignment with corporate and regulatory standards.

• Engineer security designs and controls for enterprise platforms such as Pega, Salesforce, and Snowflake, with a focus on data protection, access governance, and regulatory compliance on those platforms.

• Perform threat modeling utilizing multiple frameworks (e.g., STRIDE, PASTA, MITRE ATT&CK, MITRE ATLAS), integrating outcomes into system design to proactively mitigate identified risks.

• Conduct detailed risk assessments and analyses, mapping results to NIST, HIPAA, PCI DSS, and ISO/IEC 27001 standards to inform strategic business decisions and risk mitigation plans.

• Collaborate with cross-functional teams to develop security patterns, standards, and reusable controls, facilitating scalable and consistent security adoption throughout the enterprise.
   

  Base Pay Information
  The national base pay range at the end is a good-faith estimate of what Delta Dental may pay for new hires. Actual pay may vary based on Delta Dental’s assessment of the candidate’s knowledge, skills, abilities (KSAs), related experience, education, certifications and ability to meet required minimum job qualifications. Other factors impacting pay include prevailing wages in the work location and internal equity. 
  Pay Grade 23. $ 195,000 - $ 230,000/year

To Apply: Apply directly at-https://ejep.fa.us2.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1/job/3133/?utm_medium=jobshare&utm_source=External+Job+Share