Security Engineer - EOD
Listed on 2026-06-21
-
IT/Tech
Cybersecurity, Information Security, Network Security
Location:
Remote - United States
Base Pay: $ - $ / Year
The Security Engineer is responsible for implementing, maintaining, monitoring, and improving the health system’s cybersecurity technologies and controls to protect patient, clinical, financial, and operational information assets. This position works closely with Information Security, Information Technology, Clinical Engineering, and business stakeholders to support the organization's cybersecurity program through the deployment and management of security tools, vulnerability remediation efforts, incident response activities, and security monitoring functions.
The Security Engineer serves as a technical resource for cybersecurity operations and helps ensure compliance with healthcare regulatory requirements, industry standards, and organizational security policies.
- Responsible for Tool Administration (MFA, EDR, Email Security), Integrations, Automation, Vendor Coordination
- Specific Project Focus on MFA Expansion, SOAR Workflows, Security Awareness Tooling
- Technical ownership of:
- Encryption & Certificate Management
- Data Loss Prevention (Endpoint & Email)
- Endpoint Security & Power Shell Controls
- SIEM Integration & Incident Response Coordination
- Monitor security alerts and events, investigate potential threats, and coordinate response and remediation activities.
- Participate in cybersecurity incident response activities, including containment, eradication, recovery, and post-incident analysis.
- Conduct vulnerability assessments and assist with vulnerability remediation efforts across servers, workstations, network devices, cloud environments, and applications.
- Support the deployment, configuration, and maintenance of security controls and technologies.
- Monitor and analyze security logs, threat intelligence feeds, and system activity to identify suspicious or unauthorized activity.
- Assist with securing cloud environments, including Microsoft Azure, AWS, and Microsoft 365 platforms.
- Collaborate with IT infrastructure, networking, application, and clinical technology teams to implement security controls and best practices.
- Support third-party risk management activities by assisting with security reviews and vendor assessments.
- Participate in periodic security assessments, penetration tests, and audit activities.
- Assist in the development and maintenance of security documentation, procedures, standards, and technical guidelines.
- Support data protection initiatives, including encryption, data loss prevention, and secure data handling practices.
- Assist with business continuity and disaster recovery planning and testing efforts from a cybersecurity perspective.
- Maintain cybersecurity asset inventories and ensure security tools are functioning as intended.
- Participate in after-hours support and cybersecurity incident response activities as required.
- Stay current on emerging cybersecurity threats, vulnerabilities, technologies, and healthcare industry risks
- Bachelor's degree in Information Technology, Information Security, Computer Science, Engineering, or a related field required.
- Equivalent combination of education and relevant experience may be considered.
- Minimum of 3 to 5 years of experience in cybersecurity, information technology, network administration, systems administration, or a related technical field.
- Experience supporting enterprise cybersecurity technologies and security operations functions.
- Experience working with security monitoring, endpoint protection, vulnerability management, or identity and access management solutions.
- Experience supporting Microsoft Windows Server, Active Directory, Microsoft 365, and enterprise networking environments.
- Experience with cloud platforms such as Microsoft Azure and/or AWS preferred.
- Experience in a healthcare, hospital, or highly regulated environment preferred.
- Familiarity with cybersecurity frameworks such as NIST Cybersecurity Framework (CSF), CIS Controls, HITRUST, and ISO 27001 preferred.
- Working knowledge of cybersecurity principles, technologies, and best practices.
- Understanding of network security concepts, including…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).