Cybersecurity Engineer II
Scottsdale, Maricopa County, Arizona, 85261, USA
Listed on 2026-07-07
-
IT/Tech
Cybersecurity
Cybersecurity Vulnerability Engineer II - Overview
As a Cybersecurity Vulnerability Engineer II, you will protect Banner Health’s patients’ safety and privacy by identifying weaknesses in internal and internet‑facing systems. You will detect vulnerabilities, missing patches, and misconfigurations that expose Banner Health’s systems to potential exploits, collaborate with system owners on remediation plans, communicate findings through dashboards and reports, and review exception requests for threat and risk.
The role supports the Vulnerability Management team and its infrastructure. It is a remote position (required states: AL, AK, AR, AZ, CA, CO, FL, GA, IA, , IN, KS, KY, LA, MD, MI, MN, MO, MS, NC, ND, NE, NH, NM, NV, NY, OH, OK, OR, PA, SC, TN, TX, UT, VA, WA, WI, WV, WY). Occasional travel up to 10% and on‑call rotation are expected.
Locationand Schedule
Remote (specified states).
Work schedule:
Monday‑Friday 8:00a.m. – 5:00p.m. with limited flexibility.
- Design and implement cybersecurity solutions.
- Provide technical expertise and support for cybersecurity solutions, including operational aspects of software, hardware, network/firewall.
- Design, implement, and maintain secure configurations for applications and infrastructure components.
- Conduct technical assessments of systems and applications to ensure compliance with policy, standards, and regulations.
- Evaluate and develop security policies and procedures; revise them as needed.
- Lead cybersecurity projects, developing scopes, implementing products, tuning, and creating operational support models.
- Manage cybersecurity across multiple departments system‑wide, interacting at all staff and management levels.
- Bachelor’s degree in Computer Science, Information Security, Information Systems, or related field.
- 4–6 years of enterprise‑scale information security engineering, preferably in healthcare.
- 1–3 years of experience in a healthcare environment, or equivalent combination of education, technical, business, and healthcare experience.
- Experience with IT operations, automation of cybersecurity processes, coding and scripting languages, documentation, and use‑case development.
- Experience assessing cyber products, vendor selection, define requirements, and contractual documentation development.
- Proficient in regulatory and compliance mandates, including HIPAA, HITECH, PCI, Sarbanes‑Oxley.
- Advanced knowledge of security engineering principles, risk management, resilience, vulnerability management, NIST, MITRE ATT&CK, etc.
- Expertise in cyber products such as Data Loss Prevention, EDR, Antivirus, Perimeter services, threat systems, SIEM, CASB, cloud security.
- Strong communication, presentation, and mentoring skills; ability to work independently and make critical decisions.
- Certifications in two or more of: SSCP, HCISPP, CompTIA Security+, CISSP – Engineering (ISSEP), CEH, SANS GIAC, CISA.
- Three or more years as a System Administrator, Security Operations, IT Operations, risk management, or GRC in a healthcare environment.
- Additional related education and/or experience.
Estimated Pay Range: $40.91 – $68.19 per hour.
Banner Health is committed to pay equity and transparency. The posted compensation range is an estimate that includes base salaries and excludes the value of our total rewards package. Actual pay will be determined at offer based on experience, education, certifications, skills, and geographic location.
EEO StatementEEO/Disabled/Veterans
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).