Sr. Cyber Security Engineer

Sr. Cyber Security EngineerUS/RemoteJob SummaryThe Senior Cybersecurity Engineer is responsible for designing, implementing,and maintaining advanced security solutions to protect Client's digital assets,infrastructure, and sensitive data. This role focuses on proactive threatdetection, vulnerability management, and incident response across hybridenvironments, ensuring compliance with HIPAA and other regulatoryframeworks.Duties & Responsibilities• Security Engineeringo Design and implement (or manage) layered security controls acrosscloud, on-prem, and hybrid environments.o Lead integration and optimization of security tools including:o Microsoft Defender (Cloud, Endpoint)o Microsoft Entra (Azure AD, Conditional Access, PIM)o Microsoft Purview DLPo MS Azure MFA, SSO, WAFo MS Sentinel SIEMo Zscaler, Proofpoint Suite, Rapid7 Suite, BeyondTrust, ADAudit Pluso Review Next-Generation Firewall (NGFW) configurations for secureconfiguration.• Threat Detection & Responseo Monitor and analyze security events using MS Sentinel, Proofpoint TAP,and Rapid7 InsightVM.o Lead incident response efforts, including containment, eradication, andrecovery.o Collaborate with SOC and IT teams to triage alerts and investigate1anomalies.• Vulnerability Managemento Conduct regular vulnerability management meetings with cross functionalteams to address challenges with remediation of identified vulnerabilities.Coordinate with VM MSSP on any challenges.o Coordinate remediation efforts with system owners and applicationteams.o Maintain risk register.• Identity & Access Managemento Administer Microsoft Entra, Privileged Identity Management, andBeyondTrust Password Safe.o Enforce least privilege access and conditional access policies.o Support onboarding/offboarding processes and access reviews.• Data Protection & Complianceo Implement and manage Microsoft Purview DLP, Proofpoint EmailProtection, and Spycloud.o Ensure compliance with HIPAA, HITECH, and NIST CSF.o Participate in internal and external audits.• Automation & Reportingo Develop scripts and integrations for security automation (Python,PowerShell).o Work with MSSP for new playbooks in SOAR platform (MS Sentinel) and orticketing solution (Freshworks)o Utilize ManageEngine OpUtils and Nudge Security for asset and userbehavior insights.• Security Tool Maintenance & Governanceo Perform regular maintenance and troubleshooting of Zscaler to ensureoptimal performance and security posture. Criticalo Maintain and update Microsoft Conditional Access Policies to align withevolving business and security requirements.o Conduct monthly best practice assessments for all security tools and2coordinate the review, remediation, and documentation of results tocompletion.o Actively participate in the Architecture Review Board (ARB) to providesecurity guidance and ensure alignment with enterprise architecture.o Actively participate in the Change Advisory Board (CAB) to providesecurity guidance and ensure alignment with enterprise architecture.Requirements & Qualifications• Education & Experience- Bachelor's degree in Information Security, Computer Science, or relatedfield.- 7+ years of hands-on cybersecurity engineering experience.- Experience in healthcare or insurance industries preferred.• Certifications- CISSP, CEH, or equivalent certifications preferred.• Skills & ToolsExpertise in SIEM, DLP, IAM, endpoint protection, vulnerability management.Strong understanding of OWASP Top 10, MITRE ATT&CK, and CISbenchmarks.- Familiarity with cloud security (Azure), email security, and networksegmentation.Experience with scripting and automation (Python, PowerShell).Must have strong Networking understanding in a Hybrid Azure/ AD space.Evaluation CriteriaStrong communication and stakeholder engagement skills.Ability to manage multiple priorities and deliver quality results on time.Proactive in identifying data issues and proposing improvement solutions.3Physical Work Essentials: NAPlease send your resume and salary requirements tocareers@elevancesystems.comElevance Systems, Inc. is an equal opportunity employer, which prohibitsdiscrimination and harassment of any type and affords equal employmentopportunities to employees and applicants without regard to race, color,religion, sex, sexual orientation, gender identity or expression, pregnancy, age,national origin, disability status, genetic information, protected veteran status, orany other characteristic protected by law.4