Remote Sr. Cybersecurity Engineer ( remote )

Description:

• The Cybersecurity Engineer utilizes business knowledge and solid technical experience of security to provide a secure environment for the business.
• Cybersecurity engineers identify threats and vulnerabilities in systems and software, then apply their skills to developing and implementing high-tech solutions to defend against hacking, malware, ransomware, insider threats, and all types of cybercrime.
• The successful candidate must demonstrate a strong ability to manage and improve operational security functions, implement risk-based solutions, develop and maintain security metrics, and promote security best practices and training across the organization.
• The role involves partnering with stakeholders from various IT and business teams.
• Focus areas will include managing security requests, investigating and responding to alerts and incident tickets, conducting user access reviews, developing and maintaining security documentation, network and endpoint security management, vulnerability management, identity and access management, incident response, SIEM and log management, cloud security operations, overall security monitoring, and reporting.
• The candidate will also be responsible for contributing to internal control testing related to client and regulatory audits (e.g., HIPAA, SOC1/2) by gathering and submitting proper technical evidence based on control testing needs and ensuring controls tests are completed comprehensively and on time.

Requirements:

• A Bachelor's degree or higher in Computer Science, Electrical Engineering, Information Assurance, Network Security, Computer Engineering, or a related field, or equivalent experience is required.
• The candidate must have 5+ years of Information Security / Cybersecurity experience.
• Strong knowledge of Information Security / Cybersecurity related technologies, processes, and tools is essential.
• Working knowledge of Office 365 security concepts, policies, settings, alerting, audit logging, security and compliance center, cloud app security, and investigations is required.
• Experience identifying assets (e.g., servers, network devices, applications), identifying network layouts, and determining security risk and potential solutions is necessary.
• A security-focused degree and/or certifications (e.g., BS/MS in Cybersecurity or related discipline, CEH, OCSP, CISSP, CISA, CompTIA Security+, etc.) is a plus.
• Familiarity with network security concepts and products (e.g., firewall (Palo Alto, Cisco), network (e.g., Cisco, Meraki), email (O365), and Cisco Umbrella) is preferred.
• Familiarity with endpoint security products and concepts (e.g., malware protection, network protection, forensics, DLP, compliance, and Bitdefender) is a plus.
• Familiarity with security monitoring (SIEM), analysis, and resolution of security events/alarms (e.g., AlienVault) is preferred.
• Familiarity with identity and access management concepts (e.g., Azure Active Directory, SSO, user access reviews) is required.
• HIPAA and healthcare experience is a plus.
• Understanding of the SDLC process is a plus.
• Excellent oral and written communication skills are essential.

Benefits:

• The position offers a supportive, progressive, fast-paced environment.
• A competitive pay structure is provided.
• There is a matching 401(k) plan with immediate vesting.
• Medical, dental, vision, life, and short-term disability insurance are included.
• AssistRx, Inc. is proud to be an Equal Opportunity Employer, ensuring all qualified applicants receive consideration without regard to various protected categories.
• All offers of employment with AssistRx are conditional based on the successful completion of a pre-employment background check.
• In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and complete the required employment eligibility verification document form upon hire.