11,501 Medical Device Security jobs in the United States

GENERAL SUMMARY:

The Emerging Technology Security Engineer works in collaboration with all functional areas relative to emerging technology security including AI systems, IoT devices, medical devices, cloud infrastructure, and other emerging technologies within Henry Ford Health (HFH). The position is responsible for implementing and maintaining security controls while ensuring compliance with healthcare regulations and security best practices. It is expected that the Emerging Technology Security Engineer will implement security architectures, maintain security controls, and establish technical standards for emerging technology deployments. This position will work in a collaborative effort with IT, Enterprise Architecture team, Cloud Security team, and Medical Device Security team to ensure security controls follow policies, applicable laws and regulations. Additionally, this role will work closely with other members of the SOC and IPSO teams to maintain comprehensive security coverage for emerging technology deployments.

PRINCIPLE DUTIES AND RESPONSIBILITIES:

• Implement and maintain security controls for AI/ML systems, including model security, data protection, and inference attack prevention.

• Deploy and maintain security standards for IoT device integration within healthcare environments.

• Configure network segmentation and security controls for medical devices and IoT systems.

• Implement zero trust architectures for emerging technology deployments.

• Configure and maintain micro segmentation solutions for medical device networks.

• Deploy and manage EDR/XDR solutions for emerging technology endpoints.

• Implement API security controls for emerging technology integrations.

• Configure SOAR playbooks for emerging technology incident response.

• Maintain security monitoring solutions for AI/ML systems.

• Deploy security controls for edge computing implementations.

• Configure and maintain container security solutions.

• Implement automated security testing frameworks.

• Create and maintain security implementation documentation.

• Perform security assessments of new technologies.

• Stay current with emerging technology security trends and threats.

EDUCATION/EXPERIENCE REQUIRED:

• Bachelor's Degree in Computer Science, Cybersecurity, Information Systems (or equivalent) is required.

• A minimum of five (5) years direct and hands on experience in security engineering with focus on emerging technologies.

• Strong experience in network security engineering.

• Experience with AI/ML security principles and implementations.

• Working knowledge of cloud security implementation and management.

• Strong scripting and automation skills (Python, PowerShell, Bash).

• Experience with security tool implementation and integration. Knowledge of healthcare regulations (HIPAA, HITECH) and security frameworks.

• Experience with DevSecOps practices and tools.

• Strong experience with the following security tools and platforms:

• Network Security: Cisco ISE, Palo Alto Networks firewalls, micro segmentation platforms.

• Cloud Security: Azure Security Center, AWS Security Hub, CNSP, CWPP.

• IoT/Medical Device Security experience with Claroty xDome Security tool.

• AI/ML Security: Model security tools, AI security frameworks.

• General Security: SIEM platforms, EDR/XDR solutions, SOAR platforms.

CERTIFICATIONS/LICENSURES REQUIRED:

• At least one of the following certifications are required:

• AI Certification. Security Certification (CISSP, CISM)

• Cloud Architecture Certification (Azure Solutions Architect, AWS Solutions Architect).

Additional Information

• Organization: Corporate Services

• Department: Ascension MEDICAL DEVICE SECUR

• Shift: Day Job

• Union Code: Not Applicable

  Additional Details

This posting represents the major duties, responsibilities, and authorities of this job, and is not intended to be a complete list of all tasks and functions. It should be understood, therefore, that incumbents may be asked to perform job-related duties beyond those explicitly described above.

Overview

Henry Ford Health partners with millions of people on their health journey, across Michigan and around the world. We offer a full continuum of services – from primary and preventative care to complex and specialty care, health insurance, a full suite of home health offerings, virtual care, pharmacy, eye care and other health care retail. With former Ascension southeast Michigan and Flint region locations now part of our team, Henry Ford’s care is available in 13 hospitals and hundreds of ambulatory care locations. Based in Detroit, Henry Ford is one of the nation’s most respected academic medical centers and is leading the Future of Health: Detroit, a $3 billion investment anchored by a reimagined Henry Ford academic healthcare campus. Learn more at henryford.com/careers .

Benefits

The health and overall well-being of our team members is our priority. That’s why we offer support in the various components of our team’s well-being: physical, emotional, social, financial and spiritual. Our Total Rewards program includes competitive health plan options, with three consumer-driven health plans (CDHPs), a PPO plan and an HMO plan. Our team members enjoy a number of additional benefits, ranging from dental and eye care coverage to tuition assistance, family forming benefits, discounts to dozens of businesses and more. Employees classified as contingent status are not eligible for benefits.

Equal Employment Opportunity/Affirmative Action Employer

GENERAL SUMMARY:Reporting to the Director of Emerging Technology Security, the Manager of Emerging Technology Security leads and oversees the comprehensive security program for artificial intelligence systems and cloud infrastructure within our healthcare institution. This position provides strategic direction and operational leadership for a team of security professionals dedicated to protecting AI/ML deployments and cloud environments while ensuring compliance with healthcare regulations and security bestpractices. The Manager of AI and Cloud Security is responsible for developing, implementing, and maintaining sophisticated security programs that address the complex challenges of AI and cloud technologies in healthcare. This includes overseeing AI model security, training data protection, inference system monitoring, cloud security architecture, and cloud security operations. The role ensures seamless alignment between security controls and business objectives while maintaining strict regulatory compliance and enabling innovation. The position is a key leadership role within the IPSO department and works collaboratively with other managers in SOC, IPSO (Risk, Privacy, etc.), and IT programs to develop and implement comprehensive approaches to AI and cloud security risks. This includes establishing frameworks for secure AI development, deployment, and monitoring, as well as ensuring robust cloud security across multiple platforms and services.PRINCIPLE DUTIES AND RESPONSIBILITIES:Strategic Leadership and Team Management:Lead and mentor a diverse team of security professionals specializing in AI and cloud security.Foster a culture of innovation and continuous learning in emerging security practices.Develop and manage resource allocation strategies for AI and cloud security initiatives.Create and maintain career development paths for team members.Establish performance metrics and goals for the team.AI Security Program Management:Develop and oversee comprehensive security strategies for AI/ML systems throughout their lifecycle.Establish frameworks for secure AI model development, testing, and deployment.Implement robust monitoring systems for detecting model tampering and adversarial attacks.Create and maintain security standards for training data protection and validation.Oversee security assessments of AI models pre and post-deployment.Develop incident response procedures specific to AI security incidents.Cloud Security Operations:Direct the development and implementation of cloud security architecture across multiple platforms.Establish security baseline standards for cloud services and applications.Oversee the implementation of cloud security tools and controls.Manage cloud security posture monitoring and improvement programs.Develop and maintain cloud security policies and procedures.Support cloud security incident response and recovery efforts.Risk Management and Compliance:Develop comprehensive risk assessment frameworks for AI and cloud technologies.Ensure compliance with healthcare regulations (HIPAA, HITECH) in AI and cloud deployments.Maintain security documentation and audit trails for compliance purposes.Conduct regular security assessments and vulnerability management.Create and maintain security metrics and reporting systems.Strategic Planning and Innovation:Develop long-term strategic plans for AI and cloud security programs.Evaluate and implement new security technologies and approaches.Build relationships with security vendors and service providers.Participate in industry groups and standards organizations.Monitor emerging threats and trends in AI and cloud security. EDUCATION/EXPERIENCE REQUIRED:Bachelor's Degree in Computer Science, Information Security, or related field required; Master's degree preferred.Minimum of eight (8) years of experience in information security with focus on medical device security.Minimum of three (3) years of management experience leading technical teams.Demonstrated experience with:AI/ML security principles and practices.Cloud security architecture and operations.Security program management.Team leadership and development.Leadership and Management Expertise:Demonstrated ability to build and lead high-performing technical teams.Strong project and program management capabilities.Experience with budget planning and resource allocation.Strategic planning and execution skills.Risk management and decision-making abilities.Excellent stakeholder management and communication skills.Technical Knowledge:Deep understanding of AI/ML security principles and best practices.Extensive knowledge of cloud security architectures and controls.Expertise in security automation and orchestration.Strong background in incident response and threat management.Understanding of healthcare compliance requirements.Knowledge of security frameworks and standards.Technical Platforms and ToolsAI Security:Model monitoring and protection platformsTraining data validation systemsMLOps security toolsAI anomaly detection systemsModel forensics platformsCloud Security:Major cloud platform security tools (Azure Security Center, AWS Security Hub)Cloud security posture management (CSPM) solutionsCloud workload protection platforms (CWPP)Cloud access security brokers (CASB)Security information and event management (SIEM) platformsCERTIFICATIONS/LICENSURES REQUIRED:At least two of the following certifications are required:CISSP (Certified Information Systems Security Professional).CISM (Certified Information Security Manager).Cloud Security Certification (CCSP, AWS Security, Azure Security).AI/ML Security Certification.CEH

The IT Security Engineer supports the design, implementation, and maintenance of enterprise-wide security solutions to protect systems, data, and users across the organization. This role contributes to the development of secure architecture, operational standards, and processes that ensure consistent and reliable protection across both cloud-based and on-premises environments. Working closely with senior engineers and cross-functional teams, the IT Security Engineer helps implement scalable and resilient security controls that align with business needs and compliance requirements. Responsibilities include monitoring, troubleshooting, and optimizing security systems, as well as assisting in the integration of new tools and technologies to strengthen the organization's overall security posture. This role is ideal for professionals looking to deepen their expertise in enterprise security while contributing to continuous improvement and operational excellence.

Job Responsibilities:

• Support the management and optimization of enterprise IT security platforms to ensure availability, performance, and protection.
• Assist in the implementation and maintenance of security solutions across on-premises, hybrid, and multi-cloud environments.
• Apply and monitor security controls for networks, systems, applications, and data, ensuring proper integration of tools and platforms.
• Perform configuration, patching, upgrades, and health monitoring of IT security tools.
• Troubleshoot platform issues and work with vendors and internal teams to implement fixes and improvements.

• Collaborate with application owners and business stakeholders to support the onboarding of systems into the security ecosystem.
• Ensure secure integration of applications and services in compliance with internal policies and regulatory standards.
• Contribute to the deployment and maintenance of security solutions across diverse environments.

• Assist in the development and execution of security automation initiatives to improve operational efficiency and reduce manual tasks.
• Support scripting and use of APIs to automate routine security functions.
• Help implement and maintain security policies, standards, and procedures, ensuring compliance with industry regulations.
• Apply cloud security to best practices and support enforcement of Zero Trust and least privilege models.

• Work with infrastructure, development, and operations teams to embed security into systems and application lifecycles.
• Participate in assessments of new projects and technologies to identify security implications.
• Support the implementation of Role-Based Access Control (RBAC) models under guidance from senior engineers.

• Assist in creating dashboards and reports to track the effectiveness of security controls.
• Support audit activities by maintaining accurate documentation and evidence of control adherence.
• Participate in changing control processes for security systems, ensuring alignment with ITIL or similar frameworks.

• Stay informed on emerging security technologies and trends.
• Contribute ideas and feedback to help improve the organization's security posture and anticipate future challenges.

Job Requirements:

• Bachelor's Degree required.
• 7+ years of progressive experience supporting and implementing enterprise-scale information security solutions across diverse environments.
• 35 years of hands-on experience across multiple security domains, including security operations, architecture, vulnerability management, and compliance support.
• Demonstrated ability to implement secure frameworks and apply security controls in both cloud-based and on-premises environments.
• Solid understanding of cybersecurity principles, industry standards, and best practices.
• Experience in the deployment and maintenance of security infrastructures across on-premises, hybrid, and multi-cloud platforms.
• Proficiency in scripting and automation to support routine security tasks and improve operational efficiency.
• Working knowledge of regulatory compliance, including SOX (Sarbanes-Oxley), with experience supporting audit readiness through documentation and technical safeguards.
• Proven ability to collaborate with cross-functional teams, assist in risk assessments, and contribute to automation efforts that enhance provisioning, certification, and governance processes.
• Solid working knowledge of Information Security policies, standards, and procedures, with experience applying them in day-to-day operations.
• Experience supporting the implementation of IT Security frameworks aligned with regulatory requirements such as NIST, ISO 27001, SOX, and HIPAA.
• Hands-on technical proficiency in deploying and maintaining security solutions across enterprise environments.

Job Competencies:

• Strong analytical and problem-solving skills.
• Solid experience in security architecture and implementation.
• Familiarity with threat analysis, incident response, and digital forensics.
• Effective team collaborator.
• Clear and concise written and verbal communication skills.
• Demonstrates the ability to build productive relationships.
• Focused on aligning day-to-day security efforts with broader organizational objectives.
• Committed to delivering client-focused solutions.
• Capable of managing and prioritizing multiple security tasks and projects.
• Strong understanding of IAM/PAM principles.
• Ability to contribute to access management initiatives.
• Experience collaborating with senior engineers and contributing to knowledge sharing and best practices.
• Working knowledge of relational databases.
• Proficient in producing clear documentation.
• Effective communicator and team player.
• Supports cross-functional teams in the design and implementation of secure access controls.
• Demonstrated ability to assist in risk assessments.
• Strong analytical and problem-solving skills.
• Willingness to participate in On-Call support.
• Familiarity with financial systems.
• Performs assigned projects and additional responsibilities.
• Adheres to compliance policies.
• Supports architectural decisions.

1. Analyze system and application event logs to detect security vulnerabilities or malicious activity.
2. Investigate security incidents independently to determine root cause and remediation tactics.
3. Automate security monitoring and remediation processes.
4. Administer log collection services, including syslog-ng, and ensure system and application event logs are forwarded to aggregators.
5. Prepare and analyze security incident and event data for monthly and quarterly reports.
6. Perform security scans of network devices, systems, and applications.
7. Design and implement security solutions for cloud and on-premise systems.
8. Proactively research new threats, vulnerabilities, and exploits.
9. Collaborate with external resources for security penetration testing.
10. Test and evaluate security controls periodically to ensure policy compliance.

• 3+ years of experience with enterprise Information Security technology.
• Expertise in security log monitoring and incident response.
• Experience in event log management and collection; ELK experience is a plus.
• Scripting skills in Python, Perl, PowerShell, Bash, or similar languages.
• Experience with Microsoft Office365 Security (MCAS, Email ATP).
• Experience with malware investigations and remediation.
• Experience scripting with APIs.
• Experience with vulnerability scanners (Qualys, Tenable, Nexpose, Metasploit).
• Experience managing mobile devices via MDM or UEM.
• Proficiency with Windows, MacOS, Linux, virtualization, containers, and cloud technologies.
• Proficient in Microsoft Office applications.
• Preferred certifications: CompTIA Security+, CCNA Security, CISSP, CEH, OSCP, or related.
• Ability to travel as required.

After-hours configuration changes and on-call support are required. Duties and responsibilities may be adjusted over time.

Hub Group delivers robust end-to-end supply chain solutions tailored to meet your unique business needs and industry nuances.

Manage AWS Security tools (such as GuardDuty, Trusted Advisor, Secret Manager, Parameter Store, Inspector). Create AWS CloudFormation and manage AWS Security Groups. Implement Python code and AWS Lambda function to automate security. Provide support to Systems Administrators with implementation, monitoring, and compliance adherence to security standards and best practices.

Are you interested in working with the World's leading AI-powered Quality Engineering Company? Ready to advance your career, team up with global thought leaders across industries and make a difference every day? Join us at Qualitest!

We are looking for an Information Security Engineer to join our growing team in United States!

Position Overview:
The Information Security Engineer will support the Information Security team by maintaining and developing our existing audit and reporting server and scripts. This role is ideal for a highly curious and self-directed individual who thrives in cross-functional collaboration and technical problem-solving.

Key Responsibilities and Essential Functions:

• Maintain, organize and/or develop new scripts for security monitoring, auditing and reporting.
• Organize and manage data on a Linux webserver which presents structured output via
• Interact with REST APIs for retrieving data and for executing automation workflows.
• Collaborate across teams to ensure stakeholders are getting the information they need, in a consistent and stable manner.
• Enable security technology workflows, reporting, and automation.
• Contribute to the development and tuning of security event logging and alerting.
• Maintain and/or develop new GitLab pipelines and jobs (YAML) as needed.

• High proficiency in Python and Bash scripting, with ability to read and understand Perl is preferred.
• High proficiency with using REST APIs.
• Proficiency with CICD pipeline and working with YAML.
• Experience with Linux server environments and web-based data presentation.
• Familiarity with security technologies across network, endpoint, identity, cloud, and data protection domains.
• Familiarity to security event logging and tuning, including syslog configuration.
• An understanding of security orchestration.
• Self-motivated, inquisitive, and comfortable working independently.
• Excellent communication skills and ability to collaborate with diverse stakeholders.

• Remote or hybrid work setup.
• Should be able to be available during weekday hours between 9am EST - 3pm EST, as needed.

• Python
• Azure DevOps
• Rest API

• Bash Scripting, Read and understand Pearl, CICD pipeline and working with YAML.

• Be a part of a company who strives to support for diversity and inclusion in the workplace - we are one, we are many at Qualitest. Celebrate culture, share knowledge with engineers from around the globe, and inspire each other through our differences. We have more than 40% women and around 120 different nationalities. Local and global opportunities - we offer you internal rotation and international mobility opportunities to grow your career.
• Clear view of your career and progression with the company - Qualitest is growing massively (since 2021 - tripled our employees base - we now have more than 8,000 engineers) and giving you the opportunity to grow with us.
• Work hard and play harder with our flexible and casual culture. Take a break from work and join an employee event, or enjoy the amenities and games provided from one of our Employees Centers. Save your earnings and prepare for your future by enrolling in our 401k plan where Qualitest will match your contributions accelerating your savings plan.
• Take care of health with enrollment into one of our competitive healthcare benefits. Qualitest will match towards your HSA if you choose to participate.
• Never stop experimenting and learning with QCraft - our Learning & Development platform: 50,000+ courses, 300+ virtual labs, mentorship and leadership programs, professional tribes, sponsored certifications, and much more.
• Stay active and get rewarded with our Corporate Wellness Program. We pay your Gym membership and giving you opportunities to Earn additional vacation times for attendance the gym!
• Earn bonuses via our Client Referral and Employee Referral Program's. Refer and earn - tap your network for net-worth.
• We recognize our employees work via our Qudos platform - You can earn bonuses and spot awards by celebrating your and your peers' achievements.
• Planning a vacation? Looking for car insurance? Get access to Qualitest Employee Perks for discounts on anything from travel to electronics. With so many offerings the savings are endless!
• A Competitive pay, the salary range for the role is $110,000 - $140,000.
• Intrigued to find more about us?

• This is a hands-on, highly technical position within a fast-paced environment, reporting to the Senior Manager of Information Security at our technology center of excellence in Walnut Creek, CA. We are building the Information Security Program, and you will have great experience building a greenfield environment.
• The role requires four days in the office.
• Provide best-in-class enterprise subject-matter expertise across all Cybersecurity controls for on-premises Infrastructure and Azure Cloud.
• Responsible for maintaining operational excellence status on cybersecurity services related to administration, availability, diagrams, documentation, updates, and policy management.
• Investigate and analyze security alerts to determine scope, urgency, impact, and remediation.
• Manage cyber security incidents and conduct triage/forensic analyses and root cause analyses of cyber-attacks.
• Continually improve internal scanning, detection, and reporting of security risks and anomalous activity.
• Provide input for Key Performance Indicators (KPIs) and Metrics reporting.
• Identify opportunities to automate or streamline current processes.
• Participate in tabletop exercises.

• Bachelor's degree with advanced security certifications such as CISSP, Certified Cloud Security Professional (CCSP), SANS GIAC, Offensive Security, Azure Certified Security Associate (AZ-500), Microsoft Cybersecurity Architect (SC-100), Etc.
• Four to Six years of experience in Information/Cyber Security.

• Expertise with Azure Cloud Security and the Azure Well-Architected Framework.
• Experience with Rapid7 Insight IDR and Microsoft Sentinel other SIEM platforms to manage, create, and improve threat detection rules within the SIEM platform.
• Expertise in Beyond Trust PAM , other PAM solutions, and CrowdStrike Identify Exposure.
• Expertise with CrowdStrike or other EDR solutions, and CIS Operating System Hardening
• Expertise with Palo Alto Networks Prisma or other cloud native tools.
• Expertise in Tenable One, Rapid7 or other Vulnerability Management Platforms.
• Expertise with On-premises Fortinet FortiGate or other NGFW technologies.
• Expertise with Incident Detection and Response.
• Expertise with Synk or other Application code scanning tools. Including SAST/DAST.
• Understanding of networking and network security and common enterprise communication technologies.
• Knowledge of MITRE Telecommunication&CK, CIS and NIST CSF Frameworks.
• Experience with various cybersecurity techniques and principles, such as Security Operations Center and SIEM, forensics, threat hunting, penetration testing, and threat intelligence.
• Designing and orchestrating requirements for CI/CD pipelines in DEVSECOPS.
• Experience with threat modeling.
• Experience with Microsoft Purview and Data Privacy.
• Experience with drafting security policies, procedures, SOPs.
• Proficiency in secure coding/scripting and automation.
• Knowledge of compliance framework, e.g. SOC2, NIST, ISO 27001
• Excellent communication skills in writing and speaking.
• Self-starter, and someone who is not afraid of new challenges and is willing to learn and grow in the Infosec field.

Join to apply for the Information Security Engineer role at Piper Companies

2 days ago Be among the first 25 applicants

Join to apply for the Information Security Engineer role at Piper Companies

Piper Companies is looking for an Information Security Engineer to join healthcare organization. This is based in Columbia, MD with 2 remote days per week .

Essential Duties of the Information Security Engineer :

• Performs security functions including IAM, vulnerability scanning, light pen testing, daily review of security reports and security systems.
• Oversee and lead the implementation of security solutions; develop technical and reference architectures throughout the project duration.
• Monitor information systems for security incidents and vulnerabilities; develop monitoring and visibility capabilities; and report on incidents, vulnerabilities, and trends.
• Analyze trends, news, advisories, and changes in threats, and conduct security assessments with risk mitigation plans.
  
  

• B.S. or M.S. and 5+ years of security or cybersecurity experience.
• Strong understanding of Security Operations.
• Experience with HIPAA requirements.
• Experience with XDR tools such as SecureWorks, CrowdStrike, etc.
• Experience with firewalls.
  
  

• $100,000 - $30,000 (based on experience)
• 2 days remote per week
• Comprehensive benefit package; Cigna Medical, Cigna Dental, Vision, 401k w/ ADP, PTO, paid holidays, Sick Leave as required by law, paid holidays
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Business Consulting and Services

Referrals increase your chances of interviewing at Piper Companies by 2x

Get notified about new Information Security Engineer jobs in Columbia, MD .

Fort Meade, MD 120,000.00- 160,000.00 2 weeks ago

Columbia, MD 77,000.00- 95,000.00 4 months ago

Washington, DC 130,000.00- 170,000.00 1 month ago

Bethesda, MD 10,000.00- 215,000.00 1 week ago

Rockville, MD 105,000.00- 120,000.00 1 month ago

Fort Meade, MD 160,000.00- 175,000.00 3 days ago

Washington, DC 91,000.00- 169,000.00 1 week ago

Linthicum, MD 150,000.00- 165,000.00 3 weeks ago

Silver Spring, MD 91,000.00- 169,000.00 1 week ago

Washington, DC 85,000.00- 110,000.00 2 months ago

Washington, DC 138,000.00- 205,000.00 1 week ago

Laurel, MD 168,000.00- 240,000.00 5 months ago

Washington, DC 89,000.00- 135,000.00 2 weeks ago

Washington, DC 166,000.00- 244,000.00 2 weeks ago

Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Job Summary

As an Information Security Engineer in our Security Operations Center (SOC), you will contribute to the organization's security efforts by actively participating in the monitoring, detection, and response to security threats. This role involves implementing security measures, supporting incident response activities, and collaborating with various teams to ensure a strong security posture. You will have the opportunity to work closely with senior engineers to enhance your skills and apply your knowledge to protect the organization's digital assets.

Job Responsibilities:

• Assist in the design, implementation, maintenance, and management of comprehensive information security projects and initiatives within the Security Operations team. Ensuring the confidentiality, integrity, and availability of information assets within the insurance company.
• Assist in coordinating and executing incident response activities, including identifying, investigating, and documenting security incidents, following established protocols and collaborating with senior engineers to ensure effective resolution.
• Assist in the delivery, implementation, and maintenance of SIEM and SOAR platforms to improve incident response capabilities and security operations.
• Monitor security events and manage ongoing incident response efforts to ensure efficient threat detection, analysis, and containment.
• Engage with industry forums, security communities, and regulatory bodies to stay informed about emerging security threats and regulations, representing the company's interests and contributing to industry-wide security initiatives.
• Collaborate with IT, network, and development teams to seamlessly integrate security practices across all technological domains of the organization.
• Familiarity with utilizing pre-trained AI models (such as OpenAI models) for security applications, including integrating AI for threat intelligence, automated threat detection and response, and data analytics for processing and analyzing security data. Comfortable with deploying AI solutions within security frameworks and aligning AI tools with cybersecurity strategies while ensuring their ethical use and maintenance in secure environments.

• Actively engage in internal groups such as Technical Advisory Boards (T-CAB), Communities of Practice, and cohorts to advocate for security best practices and drive a culture of security awareness across the organization.

• Contribute innovative ideas to refine security processes and documentation, aligning them with industry best practices to continuously strengthen the organization's security framework.

• Participate in the evaluation and integration of new security solutions and technologies to enhance the organization's defense capabilities.

Job Qualifications:

• Minimum 1-3 years of relevant experience in Information Security or Information Technology.
• Bachelor's degree in Information Security, Computer Science, Information Technology or a related field and/or commensurate experience.
• Good understanding of information security principles and secure event log analysis
• Familiarity with SIEM (Security Information and Event Management) systems and tools.
• Basic experience in scripting and programming (e.g., Python, PowerShell) is a plus.
• Strong analytical skills and attention to detail.

Certifications:

Pursuing industry recognized security certifications, such as

• ISC(2)

  • CISSP, CCSP, CSSLP, ISSEP, ISSAP, ISSMP

• GIAC (Global Information Assurance Certifications)

  • GCIH, GMON, GSOC, GDSA, GCDA, GISF, GSLC

• ISACA

  • CISM, CRISC, CDPSE, CET, CSX-P

Behavioral Competencies:

• Ability to work in a fast-paced environment and manage workload, especially during times of stress or escalated activity

• Comfortable with defined tasks and requirements

• Strong analytical and investigation skills

• Strong time management and multitasking skills, with attention to detail

• Strong collaborative skills

• Effective communication

• Customer focus

• Decision quality

• Nimble learning

Technical Skills:

• Network Security
• Incident Response
• Security Monitoring
• Vulnerability Management
• Threat Intelligence
• Identity Management
• Information Security
• Encryption Techniques
• Security Assessments
• Firewall Management
• Security Engineering

This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.