Cybersecurity Engineer II

Job description

• As the Security Engineer II, you will be responsible for enhancing Cybersecurity and safeguarding the organization's data and resources primarily through remote work.


• This role involves SOC alert handling, incident investigations, vulnerability management, documenting, and refining security procedures, conducting system reviews to ensure compliance with security and regulatory requirements, executing risk management and governance tasks, and leading security incident response activities.


• The Security Engineer II will also design and implement security policies for various devices and systems, oversee security for internal and external systems, and mentor junior staff.


• Candidates should be proficient in using advanced security tools.


• Responsibilities extend to participating in compliance audits, managing cybersecurity projects, and ensuring alignment with HIPAA, other applicable laws and regulations and/or standards.


• This mostly remote role includes a 24/7 on-call rotation and requires strong leadership, project management, and communication skills.


• To be successful in this role, you will be expected to stay up to date on the latest solutions and technologies and advocate for the adoption of industry best practices.

• Respond to and investigate SOC alerts generated from SIEM, EDR, and other security tools, including IPS/IDS, secure email gateway, data loss prevention system, web proxy, vulnerability assessment tools, antivirus, etc., providing advanced-level analysis, containment, and remediation.


• Monitor advanced security controls across endpoints, email, cloud environments, and IoT/IoMT devices.


• Partner with biomedical engineering and IT teams to mitigate IoT/IoMT security risks.


• Independently conduct complex incident investigations and report results and attack information to leaders/management.


• Monitor endpoint and email DLP solutions to prevent unauthorized data exfiltration.


• Document and refine procedures and techniques used by the Information Security and other teams.


• Measure and report organization's security capabilities using automated and manual tools.


• Research and test security tools pertaining to tactical or strategic plans.


• Perform activities as outlined in the security incident management procedure.


• Make onsite visits to facilities to identify cyber security vulnerabilities and report on findings.


• Socializes strategies, standards, policies, procedures, communications, and awareness efforts with business partners.


• Participates in reviews of new or existing systems to ensure security requirements are satisfied, prior to implementation, including performing pre-deployment and as-built risk assessments.


• Assists with system-wide compliance of the HIPAA Security and Privacy rules and other appropriate standards, audit requirements, works with internal audit staff to conduct regular tests and audits.
  
  Assists with external security assessments and penetration tests, and other activities.


• Designs policies and standard operational procedures (SOP) as required for security devices, including IPS/IDS, antivirus, and vulnerability management tools.


• Oversee internal or external systems security (i.e., cloud services).


• Conduct complex security incident reviews and investigations.


• Mentor and train junior staff on the effective use and management of security tools.


• Design comprehensive security measures, integrating new technologies and methodologies.


• Participate in multiple cybersecurity projects.


• Proficient in one or more specialized areas.

• Minimum eight (8) years combined IT/ Cybersecurity experience.


• Minimum five (5) years Cybersecurity experience


• Previous experience leading, supporting, managing, and administering at least one application


• Previous experience leading security projects and initiatives


• Previous experience with ability to lead, support, and document two applications.


• Previous experience leading security initiatives.

• Ability to work independently with minimal oversight on a broad range of security projects and initiatives.


• Demonstrated in-depth knowledge of information security principles, practices, and solutions.


• Demonstrated understanding of advanced security protocols and standards


• Leadership skills


• Hands-on experience with cloud platforms (Azure, Google Cloud) and their associated security features.


• Intermediate-level knowledge of network, application, and systems security architecture.


• Experience with desktop, server, network, and application security teams.


• Proven communication, customer service, and organizational skills.


• Experience with common security testing methods and tool sets such as email security, data loss prevention (DLP), IDS/IPS, EDR, anti-malware, and proxy tools.


• Previous experience with HIPAA, ITIL, NIST, and Project Management.

Required Skill Profession

Architecture And Engineering