Senior Cybersecurity Engineer

Hospital for Special Surgery•New York, NY

About The Position

How you move is why we’re here. ® Now more than ever. Get back to what you need and love to do. The possibilities are endless... Now more than ever, our guiding principles are helping us in our search for exceptional talent - candidates who align with our unique workplace culture and who want to maximize the abundant opportunities for growth and success. If this describes you then let’s talk! HSS is consistently among the top-ranked hospitals for orthopedics and rheumatology by U.S. News & World Report. As a recipient of the Magnet Award for Nursing Excellence, HSS was the first hospital in New York City to receive the distinguished designation. Whether you are early in your career or an expert in your field, you will find HSS an innovative, supportive and inclusive environment. Working with colleagues who love what they do and are deeply committed to our Mission, you too can be part of our transformation across the enterprise. Emp Status Regular Full time Work Shift Compensation Range The base pay scale for this position is $128,500.00 - $196,375.00. In addition, this position will be eligible for additional benefits consistent with the role. The salary of the finalist selected for this role will be determined based on various factors, including but not limited to: scope of role, level of experience, education, accomplishments, internal equity, budget, and subject to Fair Market Value evaluation. The hiring range listed is a good faith determination of potential compensation at the time of this job advertisement and may be modified in the future. What you will be doing JOB DESCRIPTION PRINCIPAL DUTIES & RESPONSIBILITIES Support technical investigations and incident response activities in collaboration with the Lead Cybersecurity Engineer, contributing to triage, containment, and root cause analysis across endpoints, networks, and cloud environments. Operate and tune detection tools such as SIEM, EDR, IDS/IPS, and log aggregation platforms. Conduct threat hunting and forensic analysis to identify anomalous behavior or indicators of compromise. Perform vulnerability assessments and guide remediation efforts in partnership with IT technical and application teams. Collaborate across departments to ensure secure configurations and deployment of systems and services. Develop and maintain security detection rules, playbooks, and response runbooks. Stay up to date on evolving threats, vulnerabilities, and attacker tactics; incorporate this into daily operations. Support evaluation, deployment, and optimization of new security tools and technologies. Write clear, concise documentation and communications for both technical and executive audiences. Mentor junior engineers and analysts to build team capability and knowledge sharing.

Requirements

Bachelor’s degree in information security, computer science, engineering, or a related technical field — or equivalent practical experience.
7+ years of professional IT experience, including at least 5 years in a cybersecurity engineering role.
Strong conceptual and hands-on knowledge of security technologies, including: Firewalls, proxies, SIEM, EDR, IDS/IPS, NAC Network and endpoint security principles Authentication, encryption, and secure communications
Demonstrated experience with incident response, threat detection, and system hardening.
Deep understanding of TCP/IP networking, HTTP/S, DNS, routing, and other core protocols.
Familiarity with cloud security (e.g., Azure, AWS) and securing hybrid environments.
Strong scripting or automation experience (e.g., PowerShell, Python, bash).
Excellent analytical and problem-solving skills with a curiosity-driven mindset.
Clear and effective written and verbal communication skills for technical and non-technical audiences.

Nice To Haves

Industry certifications such as GCIA, GCIH, OSCP, CISSP, or AWS Security Specialty.
Experience in a regulated environment such as healthcare (HIPAA, HITRUST).
Prior involvement in SOC, blue team, or red team operations.
Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, or CIS Controls.
Experience working in a high-availability, 24/7 operational environment.
Knowledge of container security, DevSecOps, or securing modern app architectures.

Responsibilities

Support technical investigations and incident response activities in collaboration with the Lead Cybersecurity Engineer, contributing to triage, containment, and root cause analysis across endpoints, networks, and cloud environments.
Operate and tune detection tools such as SIEM, EDR, IDS/IPS, and log aggregation platforms.
Conduct threat hunting and forensic analysis to identify anomalous behavior or indicators of compromise.
Perform vulnerability assessments and guide remediation efforts in partnership with IT technical and application teams.
Collaborate across departments to ensure secure configurations and deployment of systems and services.
Develop and maintain security detection rules, playbooks, and response runbooks.
Stay up to date on evolving threats, vulnerabilities, and attacker tactics; incorporate this into daily operations.
Support evaluation, deployment, and optimization of new security tools and technologies.
Write clear, concise documentation and communications for both technical and executive audiences.
Mentor junior engineers and analysts to build team capability and knowledge sharing.