The Opportunity
We have been exclusively retained by a premier, mission-driven client in the healthcare sector to identify their next Cyber Security Engineer. This is a unique opportunity to join an organization renowned for its compassionate approach to patient care and its commitment to innovation.
In this critical, fully remote role, you will be instrumental in defending the digital infrastructure that supports life-changing medical services. Our client is looking for a hands-on expert to protect their systems, ensure patient data privacy, and maintain the integrity of their operations. You will be empowered to lead key security initiatives, hunt for advanced threats, and shape the security posture of a respected industry leader.
What You Will Do (Key Responsibilities)
As a key member of our client's security team, you will be the go-to expert for the hands-on defense of their digital enterprise.
Security Operations & Incident Response
- Lead comprehensive incident response efforts, from initial detection and analysis to containment, eradication, and recovery.
- Monitor and analyze network traffic, logs, and security alerts for suspicious activity using SIEM and other advanced security tools.
- Proactively hunt for emerging threats and vulnerabilities across networks, systems, and applications.
- Manage and optimize a suite of cybersecurity tools to ensure peak performance and threat detection capabilities.
Governance, Risk & Compliance (GRC)
- Architect, implement, and enforce robust security policies and procedures to protect data at rest and in motion.
- Ensure organizational compliance with key regulatory frameworks, particularly HIPAA.
- Conduct in-depth risk assessments to identify vulnerabilities and present strategic solutions to senior leadership.
- Serve as a security subject matter expert for internal teams, providing expert guidance on security best practices.
Project & Program Leadership
- Manage multiple high-impact security projects simultaneously, from initial planning and scoping to successful execution and delivery.
- Own key security programs, including vulnerability management, security awareness training, and internal audits.
- Build and maintain strong collaborative relationships with internal partners to foster a security-first culture.
What You Will Bring (Ideal Candidate Profile)
Required:
- Experience: 5+ years of dedicated experience in a cyber security role with proven, hands-on experience managing cybersecurity controls.
- Certifications:
- A valid CISSP certification (non-negotiable).
- Four (4) additional active, professional cybersecurity certifications, with at least three directly related to security engineering.
- Education: Associate's Degree with demonstrated professional writing proficiency.
Preferred:
- Bachelor's Degree in a related field (e.g., Computer Science, Information Security).
- Prior experience working within a healthcare or other highly regulated environment (e.g., finance).
Acceptable certifying authorities include SANS/GIAC, ISC², Cloud Security Alliance, ISACA, PMI, EC-Council, HITRUST, Offensive Security, major security vendors, and others.
What Our Client Offers
Our client invests heavily in their employees and is proud to offer an exceptional and comprehensive benefits package.
- Immediate Health Coverage: Comprehensive medical, dental, and vision benefits effective on your first day.
- Excellent Retirement Savings: A generous retirement plan with a company match of up to 6% after one year.
- Work-Life Balance: Substantial Paid Time Off (PTO) to ensure you can rest and recharge.
- Financial Security: Company-paid life insurance, short-term and long-term disability, plus access to FSA and HSA plans.
- Career Growth: A strong commitment to professional development, including tuition reimbursement and support for obtaining new certifications.
You might also be interested if you are currently:
- Information Security Engineer (InfoSec Engineer)
- IT Security Engineer
- Cybersecurity Analyst (Senior)
- Information Security Specialist
- GRC Security Engineer
- Security Operations Engineer
And have these skills:
Cyber Security, Information Security, CISSP, HIPAA, Healthcare IT, SANS, GIAC, ISC2, ISACA, Incident Response, SIEM, Vulnerability Management, Risk Assessment, Network Security, Endpoint Security, EDR, NIST, HITRUST, Policy Development, GRC, Compliance, Threat Hunting, Remote, Work from Home, WFH, IT Security.
