Remote Senior Cybersecurity Engineer

Description:

• The Senior Cybersecurity Engineer is responsible for being the primary custodian of Evergreen Nephrology's critical assets and information systems.
• This role involves supporting and enhancing the Information Security program, overseeing the protection and monitoring of Evergreen’s cloud-based systems, network devices, and endpoints.
• The engineer will address security incidents and vulnerabilities to mitigate risks.
• The position requires collaboration with the Sr. Director of Information Security to develop and implement security strategies, ensuring the confidentiality, integrity, and availability of Evergreen’s cloud infrastructure on Azure and Office 365 platforms.
• The engineer will work within the security team to develop, engineer, and maintain comprehensive security solutions for Evergreen’s Azure and Office 365 environments, ensuring compliance with HIPAA and HITRUST regulations.
• Responsibilities include leading the strategy and enhancement of Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions.
• The engineer will implement and manage technical security controls and tools, ensuring proper monitoring, logging, and automated notifications for critical systems.
• Continuous monitoring of Evergreen's cloud environments for security threats and vulnerabilities is required, along with prompt incident response and remediation.
• The role involves developing incident response playbooks and collaborating with key business units to maintain a comprehensive Data Loss Prevention (DLP) strategy.
• The engineer will ensure standardized, secure configurations for all endpoints and network devices, and perform periodic vulnerability scans.
• Collaboration with the Sr. Director of Information Security to identify security loopholes and integrate advanced security tools is essential.
• The engineer will develop and maintain documentation related to security policies and procedures, ensuring accessibility for authorized team members.
• Staying informed about the latest security threats and trends to recommend improvements to Evergreen's security strategy is a key responsibility.

Requirements:

• A Bachelor's Degree in Computer Science, Information Security, or a related field is required.
• A minimum of 7 years of experience in cybersecurity is necessary.
• Proven understanding of healthcare privacy and security practices, with knowledge of regulations such as HIPAA, HITECH, HITRUST, NIST, and PCI DSS is ideal.
• Certification in one or more of the following is required: CompTIA Sec+, CYSA, CEH, CISSP, CISM, CISA, CCSP, Azure Fundamentals, GCIH, GCFA.
• Strong technical foundation in security technologies and tools, including DLP, SIEM, Zscaler solutions, Azure Cloud Security, and Endpoint Controls is essential.
• Demonstrated proficiency in leveraging Microsoft Azure and Office 365 security capabilities is required.
• Knowledge of cybersecurity frameworks such as NIST, HITRUST, CIS, HIPAA, and PCI is necessary.
• Experience in creating scripts and automating processes is preferred.
• Strong incident response skills, including computer intrusion investigations and digital forensics, are required.
• Excellent organization, planning, time management, and project management skills are essential.
• Strong analytical and problem-solving skills are necessary.
• Intermediate skills with MS Office Suite, including Outlook and Teams, are required.
• Ability to work effectively in a primarily remote environment is essential, with specific internet speed requirements.

Benefits:

• The position offers a competitive base pay range of $140,000 to $150,000, with exact pay determined by experience and other criteria.
• Employees receive paid time off starting at four weeks for full-time employees, along with 12 paid holidays per year.
• Reimbursement for continuing medical education is provided.
• A 401k plan with a match is available, along with health, dental, and vision insurance.
• Family-friendly policies support paid parental leave and flexible work arrangements.
• A robust training and development program is committed to ongoing employee growth and success.
• Evergreen Nephrology is an equal opportunity employer, committed to inclusion and diversity, and provides reasonable accommodations for applicants with disabilities.