Cybersecurity Engineer

Role Summary

We are seeking a seasoned and strategic Senior Cybersecurity Engineer to lead cybersecurity initiatives within our client s healthcare organization. This role demands deep technical security expertise, leadership in security assessments, and a proactive approach to identifying and mitigating risks. You ll be instrumental in safeguarding sensitive healthcare data, ensuring regulatory compliance. We need a candidate that can help our client shape the future of their security architecture.

Key Responsibilities

Security Assessments & Risk Management

• Lead end-to-end security assessments across healthcare systems, applications, and infrastructure.
• Evaluate compliance with HIPAA, HITECH, NIST, and HITRUST frameworks.
• Develop and refine risk models tailored to healthcare environments.

Vulnerability Discovery & Threat Analysis

• Conduct advanced vulnerability scans, penetration testing, and threat modeling.
• Interpret complex vulnerabilities and assess exploitability and business impact.
• Collaborate with cross-functional teams to prioritize and remediate findings.

Reporting & Executive Communication

• Author detailed technical reports and executive summaries with clear risk ratings and remediation strategies.
• Present findings to leadership, compliance teams, and external auditors.
• Maintain audit-ready documentation and evidence of security controls.

Security Engineering & Architecture

• Design and implement scalable security controls across hybrid environments (cloud/on-prem).
• Evaluate and integrate new security technologies (e.g., XDR, zero trust frameworks).
• Lead incident response efforts and post-mortem analyses.

Governance, Risk & Compliance

• Develop and enforce security policies, standards, and procedures.
• Support internal and external audits, certifications, and regulatory inquiries.
• Advise on secure software development practices and DevSecOps integration.

Qualifications

• Bachelor s or Master s degree in Cybersecurity, Computer Science, or related field.
• 5+ years of experience in cybersecurity roles, with at least 2 years in a senior or lead capacity.
• Deep understanding of healthcare compliance standards (HIPAA, HITECH, HITRUST).
• Expertise in vulnerability management tools (e.g., Nessus, Qualys, Burp Suite) and SIEM platforms.
• Strong grasp of cloud security (AWS, Azure, Google Cloud Platform) and modern security architectures.
• Exceptional communication, leadership, and stakeholder engagement skills.
• Relevant certifications preferred: CISSP, OSCP, HCISPP, CISM, or equivalent.

Preferred Traits

• Strategic technical thinker with a passion for healthcare data protection.
• Ability to translate technical risks into business language.
• Proven track record of driving security maturity in small to medium environments.