Security Engineer (Cybersecurity)

Responsibilities Evaluates data, clients, personnel, solutions, and service providers for potential security risks and provides appropriate recommendation and helps drive remediation. Responsible for pulling and gathering vulnerabilities and sorting them into work streams for remediation. Responsible for creating pivot tables so the work can be sorted by data center, by product, and by client. Ensures compliance that our tooling and agents are enabled on servers throughout multiple data centers. Represents security's interests in a broad range of business and IT projects and initiatives and works to ensure efficient collaboration and cooperation with other stakeholders. Works with stakeholders across the company to ensure they remain informed and engaged, and that their priorities are captured and addressed as appropriate. Carries out information security plans and policies, develops strategies to respond to and recover from a security breach, and implements mechanisms to reduce security threats. Participates in efforts that shape the organization’s security policies and standards in public cloud (especially Microsoft Azure) and private data center hosting environments. Ensures solutions and personnel are in compliance with security policies, procedures, and standards and provides input and feedback on security architectures, tools, and protection mechanisms. Establishes and maintains documentation of implementations, via technical documentation and run books. Develops processes, procedures, and practices for security programs and activities. Collaborates with other security and operations teams to execute strategic plans and develop tactical and operational execution methodologies which improve the security function of the company. Guides, supports, and oversees the overarching security model for all cloud-based infrastructure being built and data center hosting environments, especially for migrations to the cloud (Microsoft Azure). Evaluates and implements security techniques and ensures the correct level of security tools, methods, and processes are implemented for monitoring, logging, and auditing the environment. Provides overall security on a range of security programs, such as vulnerability management, hardening, and attack-surface minimization. Identifies use cases that can be built with existing tools and services to enhance both security automation and posture. Investigates security breaches with other teams and drives recovery efforts to restore functionality. Works with governance, compliance, and risk management teams to ensure the system consistently meets the requirements for certification and accreditation. Will work alongside of multi-disciplinary staff, contractors, executives, and clients on projects and day-to-day activities. Requirements 2+ years of experience from a highly critical, complex enterprise environment required and experience in a comparable security role. Must be willing to work in shifts Strong working knowledge of Microsoft Azure security and public cloud/hosting platforms. Experience with hosted data center environments. Degree in Information Science/Computer Science preferred. Certification in one or more of the following: Microsoft Azure Administrator (AZ-103 and/or 104), MCSE Productivity, Azure Security Engineer (AZ-500), Microsoft 365 Security Administration (MS-500) preferred. Strong understanding of specific healthcare related compliances (HIPAA) and security frameworks as ISO 27001/2, NIST, CSF, CSA CCM, etc. Demonstrated comprehension of cybersecurity fundamentals and best practices. Strong experience with security engineering and ensuring technologies and solutions are securely designed. Ability to develop and implement processes that may be complex and cross organizational boundaries. Ability to develop presentations, analyze data, and communicate across cross-functional staff. Strong communication skills, both verbal and written, as well as the ability to communicate well with people in a variety of positions, roles and levels. Strong analytical and problem-solving skills required.