Remote Senior Cybersecurity Engineer

Description:

• The Senior Cybersecurity Engineer is responsible for being the primary custodian of Evergreen Nephrology's critical assets and information systems.
• This role involves supporting and enhancing the Information Security program, overseeing the protection and monitoring of Evergreen’s cloud-based systems, network devices, and endpoints.
• The engineer will address security incidents and vulnerabilities to mitigate risks.
• The position requires collaboration with the Sr. Director of Information Security to develop and implement security strategies, ensuring the confidentiality, integrity, and availability of Evergreen’s cloud infrastructure on Azure and Office 365 platforms.
• The role may involve mentoring and coaching junior team members while providing guidance and support in their professional development.
• Responsibilities include developing, engineering, and maintaining comprehensive security solutions for Evergreen’s Azure and Office 365 environments, ensuring compliance with HIPAA and HITRUST regulations.
• The engineer will lead the strategy and enhancement of Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions.
• The position requires continuous monitoring of Evergreen's cloud environments for security threats and vulnerabilities, responding to and remediating incidents promptly.
• The engineer will collaborate with the Security Team to develop incident response playbooks and take a proactive role in security incident response activities.
• The role includes developing and maintaining a comprehensive Data Loss Prevention (DLP) strategy and implementing standardized, secure configurations for all endpoints and network devices.
• The engineer will ensure all security tools are properly configured and aligned with Evergreen's Information Security Policy.
• Responsibilities also include performing periodic vulnerability scans, developing security recommendations, and collaborating on the procurement and implementation of new security tools.
• The engineer will maintain relevant documentation and stay informed about the latest security threats and industry trends.

Requirements:

• A Bachelor's Degree in Computer Science, Information Security, or a related field is required.
• A minimum of 7 years of experience in cybersecurity is necessary.
• Proven understanding of healthcare privacy and security practices, with knowledge of regulations such as HIPAA, HITECH, HITRUST, NIST, and PCI DSS is ideal.
• Certification in one or more of the following: CompTIA Sec+, CYSA, CEH, CISSP, CISM, CISA, CCSP, Azure Fundamentals, GCIH, GCFA is required.
• Strong technical foundation in security technologies and tools, including DLP, SIEM, Zscaler solutions, Azure Cloud Security, and Endpoint Controls is essential.
• Demonstrated proficiency in leveraging Microsoft Azure and Office 365 security capabilities is required.
• Knowledge of cybersecurity frameworks such as NIST, HITRUST, CIS, HIPAA, and PCI is necessary.
• Experience in creating scripts and automating processes is preferred.
• Strong incident response skills, including computer intrusion investigations and digital forensics in enterprise environments, are required.
• Excellent organization, planning, time management, project coordination, and project management skills are essential.
• Strong analytical and problem-solving skills are necessary.
• Exceptional interpersonal skills and the ability to communicate a security strategy to both technical and non-technical audiences are required.

Benefits:

• The position offers a competitive base pay range of $140,000 to $150,000, with exact pay determined based on experience and other criteria.
• Employees receive paid time off starting at four weeks for full-time employees and 12 paid holidays per year.
• The company provides reimbursement for continuing medical education and a 401k with match.
• Health, dental, and vision insurance are included in the benefits package.
• Family-friendly policies support paid parental leave and flexible work arrangements.
• Employees benefit from a robust training and development program that starts with onboarding and continues throughout their career.
• The work environment promotes collaboration with like-minded healthcare professionals committed to high-quality, value-based care.
• Evergreen Nephrology is an equal opportunity employer committed to inclusion and diversity, providing reasonable accommodations for applicants with disabilities.