Senior Information Security Engineer – Cloud Engineer

Senior Information Security Engineer – Cloud Engineer at UChicago Medicine

Join a world‑class academic healthcare system, UChicago Medicine, as a Senior Information Security Engineer in our Information Security department. This is a remote, work‑from‑home opportunity, and you may be based outside of the greater Chicagoland area.

$/yr – $/yr

As a Senior Information Security Engineer, you will lead efforts in enhancing and maturing our defensible architecture across our network and cloud solutions, assist incident response as needed, and document improvements to processes and procedures. Primary responsibilities include creating standard operating procedures for SOC operations related to network security solutions implemented.

• Design, deploy, and manage security solutions within cloud environments (Azure experience preferred).
• Assist other security engineering and consulting needs as they arise.
• Implement cloud security controls and monitor compliance frameworks (Azure Security Center, Azure Policy, etc.).
• Collaborate with development, operations, and compliance teams to achieve security goals.
• Document security processes and procedures for cloud‑related monitoring and response personnel.
• Develop project plans and manage project teams for security‑related projects.
• Provide communications, including status reporting, risk management, and escalation of issues, ensuring projects are delivered on budget, on schedule, and within scope.
• Other duties as assigned.

• BS or BA degree in Computer Science or related IT field, or equivalent combination of education and experience.
• 8+ years of Information Security experience, including at least 3 years in a senior or lead engineering role.
• Minimum 5 years’ experience in cloud security engineering, focusing on Microsoft Azure.
• 5 years’ experience maintaining and designing defense‑in‑depth strategies for complex network architectures.
• Solid understanding of threat modeling, risk assessment, and cloud security best practices.
• In‑depth knowledge of network routing and defensible architectures in cloud environments (Azure, AWS, or Google Cloud).
• In‑depth knowledge of computing systems, data network communications, and network architecture.
• Effective written and verbal communication skills.
• Good working knowledge of the plan‑build‑run model within an IT environment.
• Some scripting or programming skills (PERL, Python, Power Shell, etc.) preferred.
• Expert understanding of TCP/IP (OSI Layers 1–4) and Internet and intranet technologies (OSI Layers 5–7).
• Good knowledge of Windows and Linux operating systems.
• Knowledge of vulnerability management, risk analysis, and forensics preferred.
• Experience with HIPAA, NIST, FERPA, and SOX preferred.

UChicago Medicine is committed to transparency in compensation and benefits. The pay range reflects the anticipated wage or salary reasonably expected for the position. Compensation offered at hire will vary based on qualifications and experience.

UChicago Medicine is an equal‑opportunity employer. We evaluate qualified applicants without regard to race, color, ethnicity, ancestry, sex, sexual orientation, gender identity, marital status, civil union status, parental status, religion, national origin, age, disability, veteran status, or other legally protected characteristics.

As a condition of employment, all employees are required to complete a pre‑employment physical, background check, drug screening, and comply with flu vaccination requirements prior to hire. Medical and religious exemptions will be considered for flu vaccination consistent with applicable law.