Security Engineer & Analyst

About The Position

Requirements

• Endpoint Management: Strong Intune experience for Windows; familiarity with macOS MDM solutions (e.g. Intune, Jamf, or similar).
• Security Tools: Hands-on experience with EDR/XDR platforms such as Huntress, CrowdStrike, Defender for Endpoint, or SentinelOne.
• SIEM/Monitoring: Experience with Azure Sentinel, Splunk, or similar platforms, including log analysis and correlation.
• Scripting: Proficiency in PowerShell and Python for security automation and orchestration.
• Networking: Understanding of network segmentation, firewalls, VPNs, and zero-trust principles.
• Clear technical writing skills for documentation, procedures, and audit artifacts.
• Ability to translate security risks into business impact for non-technical stakeholders.
• Strong problem-solving skills with high attention to detail.
• Self-motivated with the ability to work independently in a hybrid environment.

Nice To Haves

• 2+ years in biotech, pharma, medical device, or healthcare IT environments
• Familiarity with FDA 21 CFR Part 11, EU Annex 11, NIST frameworks, CMMC, and/or SOC 2
• AZ-500, SC-200, SC-300, AWS Security Specialty, CISSP, CCSP, or comparable security certifications
• Experience with Infrastructure as Code (e.g., Terraform, ARM templates)
• Container security experience (e.g., Docker, EC2-based workloads)
• DevSecOps practices and CI/CD pipeline security
• Experience with Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB) solutions

Responsibilities

• Architect and maintain security posture across Azure, AWS, and Microsoft 365/Entra ID environments.
• Design and implement Zero/Low Implicit Trust architecture with Conditional Access policies, MFA enforcement, and Privileged Identity Management (PIM).
• Configure and maintain Azure Security Center, AWS Security Hub, and native cloud security controls.
• Implement secure baselines for cloud workloads, storage, and networking components.
• Manage identity lifecycle, RBAC, and least-privilege access models across cloud and SaaS platforms.
• Administer endpoint protection platforms (EDR/XDR) across Windows 11 and macOS devices.
• Deploy and maintain Intune policies for Windows endpoints including BitLocker encryption, Windows Defender, and compliance baselines.
• Implement macOS security controls using MDM solutions (Jamf/Kandji or Intune for Mac).
• Secure shared laboratory and manufacturing endpoints using kiosk modes and restricted profiles.
• Orchestrate patch management, software deployment, and configuration drift monitoring for endpoints.
• Design and tune SIEM alerting rules (e.g., Azure Sentinel, Splunk, or similar) to minimize false positives while detecting critical events.
• Lead incident response activities including communication with MDR vendor, triage, forensics, containment, eradication, and recovery.
• Conduct threat hunting exercises and security investigations based on logs, alerts, and intelligence.
• Maintain incident response runbooks and coordinate tabletop exercises.
• Generate security metrics, KPIs, and executive-level reporting.
• Support FDA, SOC 2, CMMC, and GxP audit activities through evidence collection, documentation, and remediation tracking.
• Perform vulnerability assessments and coordinate remediation efforts with relevant teams.
• Conduct vendor security assessments and manage third-party risk.
• Develop and maintain security policies, standards, and procedures.
• Partner with QA/Compliance teams on 21 CFR Part 11 and data integrity requirements.

Benefits

• Stock bonus
• Health, Dental, and Vision premiums fully covered by Lumen
• 401k match up to 4%
• Industry-leading PTO policy, paid refresh days, and paid year-end holiday office closure
• Monthly wellness program to support your health and well-being
• Free onsite parking or public transportation subsidies
• Comprehensive parental leave policies
• Life insurance, short & long-term disability, and access to employee assistance programs