Cybersecurity Engineer II

About The Position

Requirements

• 5 years of professional experience implementing cybersecurity controls in enterprise or cloud environments
• Experience with identity and access management, network security, vulnerability management, and security monitoring.
• Experience securing cloud platforms such as AWS, Azure, or Google Cloud.
• Familiarity with scripting or automation using tools such as Python, PowerShell, Bash, or Terraform.
• Strong understanding of security principles including encryption, authentication, logging, and incident response.

Nice To Haves

• 7 years of professional experience implementing cybersecurity controls in enterprise or cloud environments
• Experience securing healthcare, research, or regulated data environments.
• Familiarity with frameworks such as NIST Cybersecurity Framework, NIST 800-53, CIS Controls, or HITRUST.
• Experience with SIEM, EDR, CSPM, or container security platforms.
• Knowledge of DevSecOps and secure software development lifecycle practices.
• Experience with Kubernetes, Docker, and cloud-native application security.
• Professional certifications such as CISSP, GIAC, Security+, CCSP, or equivalent.

Responsibilities

• Design and implement security controls across WHDH cloud infrastructure, applications, data platforms, and network environments.
• Build secure-by-design architectures for data ingestion, storage, analytics, and AI workloads.
• Configure identity and access management controls including role-based access, least privilege, and privileged account protections.
• Implement encryption solutions for data at rest, in transit, and during controlled data exchange processes.
• Conduct architecture reviews to identify and remediate security weaknesses before deployment.
• Implement and maintain security monitoring tools, logging pipelines, and alerting capabilities across the WHDH environment.
• Develop automated detection rules for suspicious activity, unauthorized access, and anomalous system behavior.
• Investigate security alerts, triage incidents, and coordinate containment and remediation activities.
• Lead technical response efforts for cybersecurity incidents affecting infrastructure, applications, or data assets.
• Conduct post-incident reviews and implement preventive improvements.
• Secure cloud-native environments including compute, storage, networking, and containerized workloads.
• Implement vulnerability management processes including scanning, prioritization, patch coordination, and remediation tracking.
• Harden operating systems, databases, containers, and endpoints supporting the WHDH platform.
• Support secure CI/CD pipelines and DevSecOps practices for platform engineering teams.
• Maintain backup integrity, disaster recovery readiness, and resilience controls.
• Ensure platform operations align with institutional security policies, research data governance requirements, and healthcare privacy standards.
• Support compliance with HIPAA-aligned safeguards, NIST frameworks, and applicable contractual security obligations.
• Perform risk assessments, security reviews, and control documentation for new technologies and vendor integrations.
• Maintain technical evidence and documentation required for audits, grant reporting, and security assessments.
• Provide security guidance to project teams handling sensitive or regulated data.
• Partner with data engineers, data scientists, and software engineers to implement secure solutions without impeding innovation.
• Deliver practical cybersecurity guidance for secure data sharing, external collaboration, and research computing workflows.
• Promote security awareness and best practices across WHDH technical teams.
• Evaluate emerging cybersecurity technologies and recommend improvements to platform defenses.
• Leads the design, development, and implementation of cybersecurity services and infrastructure and ensures that best practices and standards are applied
• Determines necessary technical changes to improve security
• Leads the development of procedures and training for daily administrative tasks for cybersecurity services and infrastructure
• Oversees compliance and security governance activities by evaluating emerging threats, automating security processes, and producing metrics, dashboards, and reporting related to risk posture, control effectiveness, and regulatory readiness
• Ensures that change management processes are followed for cybersecurity services and infrastructure
• Leads cybersecurity operations including continuous monitoring, threat detection, incident response, vulnerability management, and remediation activities to protect systems, applications, and data assets
• Conducts security architecture reviews for new technologies, cloud platforms, vendor integrations, and application deployments while providing secure-by-design guidance to technical teams
• Designs and implements enterprise security controls including identity and access management, encryption, key management, secure backup, disaster recovery, and cyber resilience capabilities

Benefits

• The starting salary for the position is $111,000 annually; but is negotiable based on experience and qualifications.