Sr. Cybersecurity Engineer

Full Time
St. Louis, MO
Areas of Interest: Software Assurance and Security Engineering
report a problem
This position functions as a member of the enterprise Security Engineering organization, focusing on the application of cybersecurity concepts and controls as applied to information technology design and implementation.
He/She will work across the organization to ensure the design, development and implementation of both new and existing security capabilities and standards including threat modeling, vulnerability management, analytics, incident response and investigative support across the network security landscape. The Sr. Cybersecurity Engineer will both develop and adhere to ESI's network security design principles and information protection policies. Focus will be on assuring the security of the computing environment, protecting customer and employee confidential information, and complying with regulatory requirements. This is accomplished through strong information risk governance, active collaboration with business risk managers, and providing high quality security solutions and services that ultimately work to improve overall risk posture.
Security Engineering acts as a collaborative partner to the CISO in protecting the Confidential Information of our members, clients, partners, employees, and the corporation. Our mission is to deliver, optimize, and maintain a comprehensive ecosystem of security control technology, solution designs, methods, and processes to detect, deter, and prevent compromise of our systems and data theft from both internal and external sources, and to protect against the unintentional misuse and exposure of confidential information. We will ensure that security controls are being monitored, that they remain viable, that they are performing as expected, that they are alerting, and collecting data that is useful in providing threat intelligence. We will remain vigilant in assessing our attack surface and staying abreast of current and emerging threats.
  • Identify areas for architectural, engineering, and operational improvements of existing security solutions
  • Engineer, implement and monitor security measures for the protection of computer systems, networks and information
  • Design computer security architecture and develop detailed cyber security designs
  • Complex planning and analysis to determine what tools, technologies, processes, and controls are needed to meet security objectives.
  • Develop and update security metrics for framework maturity, security posture governance, and reporting
  • Perform systems security engineering activities for deployment of new enterprise cyber security technologies
  • Ensure all security technologies and solutions are operating at a high level of assurance and properly integrated into SIEM solution(s).
  • Be a strong partner and collaborate with company Information Risk Management organization in identifying and developing solutions for evolving threat model.
  • Identify risks/gaps and make recommendations for remediation.
  • Stay current on the latest and emerging cyber threats and threats to enterprise information security and proactively work to address risk.
  • Prepare and document standard operating procedures and protocols
  • Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
  • Ensure that the company knows as much as possible, as quickly as possible about security incidents


  • 8 + years of proven work experience as a system security engineer or information security engineer
  • Experience in building and maintaining security systems
  • Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus / anti-malware software, authentication systems, log management, content filtering, email security DLP and remote access
  • Experience with network security and networking technologies and with system, security, and network monitoring tools
  • Experience with computer and end-point security solutions and technologies
  • Experience with penetration testing, vulnerability management, forensic investigation and red team / blue team exercises
  • Thorough understanding of the latest security principles, techniques, and protocols
  • Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols and application security concepts including WAF.
  • Basic working knowledge of Unix/Linux operating systems and concepts
  • Scripting / automation background a plus
  • Security certifications a plus (CISSP, SSCP, CISA, etc.)
  • Bachelor's degree in Cybersecurity / Information Security or related experience

Advance your career with the company that makes it easier for people to choose better health. Express Scripts is a leading healthcare company serving tens of millions of consumers. We are looking for individuals who are passionate, creative and committed to creating systems and service solutions that promote better health outcomes. Join the company that Fortune magazine ranked as one of the 'Most Admired Companies' in the pharmacy category. Then, use your intelligence, creativity, integrity and hard work to help us enhance our products and services. We offer a highly competitive base salary and a comprehensive benefits program, including medical, prescription drug, dental, vision, 401(k) with company match, life insurance, paid time off, tuition assistance and an employee stock purchase plan.

Express Scripts is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity Employer, making decisions without regard to race, color, religion, sex, national origin, age, veteran status, disability, or any other protected class. Applicants must be able to pass a drug test and background investigation. Express Scripts is a VEVRAA Federal Contractor.

Share this job:

Express Scripts

Careers with Purpose Join our collaborative team at Express Scripts
Express Scripts manages prescriptions for 100 million Americans. On behalf of our clients– employers, health plans, unions and government health programs– we make the use of prescription drugs safer and more affordable. Express Scripts unique platform, Health Decision Science, combines three capabilities– behavioral science, clinical specialization and actionable data–to help individuals make the best drug choices, pharmacy choices and health choices. Better decisions mean healthier outcomes. Express Scripts provides integrated pharmacy benefit management services, including network-pharmacy claims processing, home delivery, specialty benefit management, benefit-design consultation, drug utilization review, formulary management, and medical and drug data analysis services. The company also distributes a full range of biopharmaceutical products and provides cost-management and patient-care services. To learn more about how Express Scripts applies Health Decision Science to enable better decisions for healthier outcomes, visit or follow @ExpressScripts on Twitter. SUBSIDIARIES AND BRANDS Express Scripts Canada– provider of health benefit management (HBM) services to 7 million Canadians Freedom Fertility Pharmacy– specializing in delivery of infertility medication Accredo®– specialty pharmacy and services through Therapeutic Resource Centers™ United BioSource Corporation®– partners with life science companies to develop and commercialize products
Visit Express Scripts's Social Media pages:
Company Industry: Hospital & Health Care
Company Type: Public Company
Company Size: 5,001-10,000