Sr Engineer - Privacy Monitoring

Senior Information Security Engineer

Security Platform Engineering

The Senior Information Security Engineer is a hands‑on platform owner within the Security Engineering and Automation (SEA) team. This role carries end‑to‑end accountability for the operational health, integration, and vendor relationship of assigned security and compliance platforms, partners with the business and technical teams that depend on those platforms, and serves as a technical liaison across Information Security when investigations or incidents require coordinated handling.

• Own operational reliability, configuration, upgrades, integration health, and change governance for assigned security platforms, with documented runbooks and rollback readiness.
• Serve as a technical contact for security platform vendors, managing support escalations and tracking case resolution.
• Partner with users who depend on security platforms, translating their requirements into sustainable technical capability.
• Build dashboards, reports, and user enablement to give partner teams the views and capabilities they need to operate efficiently.
• Serve as a technical liaison across Security Operations during investigations or incidents, coordinating evidence handling and handoff between teams.
• Integrate platforms with SIEM and SOAR for enrichment, correlation, and case workflow; maintain posture metrics and report them to partner teams, Security Operations leadership, and the CISO on a defined cadence.

• Healthcare or regulated industry experience with familiarity with HIPAA, HITECH, PCI, SOX, or comparable regulatory frameworks.
• Experience with an insider threat, user behavior analytics, or patient privacy monitoring platforms.
• Certifications such as CISSP, GCIA, GCIH, or Splunk enterprise security certifications.
• Work Location: Hybrid – minimum of 2 days per week on site.

Bachelor's Degree in a computer science, math, engineering, or another relevant discipline or equivalent training and work experience (required).

5+ years of experience in cybersecurity focusing on engineering and implementation of controls, systems, and applications (required).

• Limited experience in applying key cybersecurity practices, controls, and frameworks.
• Excellent written and verbal communication and presentation skills; interpersonal, collaborative, and the ability to communicate risk-related concepts to technical and non‑technical audiences.
• Some experience in implementing cybersecurity applications and systems including network devices, firewalls, asset management tools, access management systems, and Active Directory.
• Some experience in applying systems engineering principles such as requirements definition, system design, test planning and documentation, integration, and functional and operational testing.
• Limited experience with engineering practices related to performing operational trade‑offs in performance, functionality, cost, and efficiency.
• Some experience performing test measurement and analysis of cybersecurity and IT systems.

• Initiate and execute tasks involving the identification of cybersecurity system performance.
• Initiate and shape tasking involving the operation, monitoring, and analysis of cybersecurity applications and systems.
• Coordinate actions involving the testing and deployment of cybersecurity systems including firewalls, network analysis tools, access management systems, and vulnerability management applications.
• Coordinate actions necessary to recover from system failures.
• Identify key reporting metrics associated with cybersecurity systems.

Silver Spring, Maryland

Work Schedule: Day shift 9‑5 full time

Children’s National Hospital is an equal opportunity employer that evaluates qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law.