Description:

The Staff Security Engineer - Forensic Engineer at Aledade will play a critical role in protecting sensitive healthcare data and ensuring compliance with regulatory requirements.
You will lead complex digital forensic investigations, support incident response efforts, and enhance our forensic readiness across a cloud-native environment.
This is a high-impact role that supports our mission to safeguard patient privacy and clinical data while maintaining operational integrity.
Primary duties include leading investigations into security incidents involving PHI/PII across endpoints, networks, SaaS platforms, and cloud infrastructure.
You will perform forensic analysis to determine the scope, impact, and root cause of security breaches or data loss events.
The role involves developing and maintaining investigation procedures, forensic toolkits, and evidence handling practices aligned with industry and regulatory standards.
You will partner with Legal, Privacy, and Compliance teams on HIPAA-related investigations and e-discovery matters.
Producing detailed investigation reports for internal stakeholders, regulators, and executive leadership is also a key responsibility.

Requirements:

A BS/BTech (or higher) in Computer Science, Information Technology, Cybersecurity, or a related field is required, or 10 years of security domain experience without a degree.
A minimum of 8 years of experience in digital forensics, incident response, or security engineering, preferably in SaaS or healthcare, is necessary.
Strong expertise in cloud forensic investigations (AWS, Azure, or GCP), including container environments (e.g., Kubernetes), is preferred.
Hands-on experience with tools such as EnCase, Velociraptor, X-Ways, Volatility, or similar is required.
An understanding of HIPAA, HITECH, and other relevant healthcare security and privacy standards is essential.
Solid knowledge of operating systems, file systems, memory structures, and log analysis is necessary.
Proficiency in scripting and automation (e.g., Python, PowerShell, Bash) to streamline investigations is required.
Strong written and verbal communication skills are necessary; you should be able to present complex findings to diverse audiences.
Relevant certifications such as GCFA, GCFE, EnCE, CHFI, or similar are preferred.
Knowledge of HITRUST, SOC 2, or ISO 27001 control frameworks is beneficial.
A background in threat hunting or malware analysis is advantageous.

Aledade offers flexible work schedules and the ability to work remotely for many roles.
Health, dental, and vision insurance is paid up to 80% for employees, dependents, and domestic partners.
A robust time-off plan includes 21 days of PTO in your first year, two paid volunteer days, and 11 paid holidays.
The company provides 12 weeks of paid parental leave for all new parents.
Employees are eligible for a six-week paid sabbatical after six years of service.
Aledade has an Educational Assistant Program and Clinical Employee Reimbursement Program to support professional development.
A 401(k) plan with up to a 4% match is available.
Stock options and many other benefits are included in the comprehensive benefits package.