Security Engineer & Analyst

Remote Full-time
About the position Responsibilities • Architect and maintain security posture across Azure, AWS, and Microsoft 365/Entra ID environments. • Design and implement Zero/Low Implicit Trust architecture with Conditional Access policies, MFA enforcement, and Privileged Identity Management (PIM). • Configure and maintain Azure Security Center, AWS Security Hub, and native cloud security controls. • Implement secure baselines for cloud workloads, storage, and networking components. • Manage identity lifecycle, RBAC, and least-privilege access models across cloud and SaaS platforms. • Administer endpoint protection platforms (EDR/XDR) across Windows 11 and macOS devices. • Deploy and maintain Intune policies for Windows endpoints including BitLocker encryption, Windows Defender, and compliance baselines. • Implement macOS security controls using MDM solutions (Jamf/Kandji or Intune for Mac). • Secure shared laboratory and manufacturing endpoints using kiosk modes and restricted profiles. • Orchestrate patch management, software deployment, and configuration drift monitoring for endpoints. • Design and tune SIEM alerting rules (e.g., Azure Sentinel, Splunk, or similar) to minimize false positives while detecting critical events. • Lead incident response activities including communication with MDR vendor, triage, forensics, containment, eradication, and recovery. • Conduct threat hunting exercises and security investigations based on logs, alerts, and intelligence. • Maintain incident response runbooks and coordinate tabletop exercises. • Generate security metrics, KPIs, and executive-level reporting. • Support FDA, SOC 2, CMMC, and GxP audit activities through evidence collection, documentation, and remediation tracking. • Perform vulnerability assessments and coordinate remediation efforts with relevant teams. • Conduct vendor security assessments and manage third-party risk. • Develop and maintain security policies, standards, and procedures. • Partner with QA/Compliance teams on 21 CFR Part 11 and data integrity requirements. Requirements • Endpoint Management: Strong Intune experience for Windows; familiarity with macOS MDM solutions (e.g. Intune, Jamf, or similar). • Security Tools: Hands-on experience with EDR/XDR platforms such as Huntress, CrowdStrike, Defender for Endpoint, or SentinelOne. • SIEM/Monitoring: Experience with Azure Sentinel, Splunk, or similar platforms, including log analysis and correlation. • Scripting: Proficiency in PowerShell and Python for security automation and orchestration. • Networking: Understanding of network segmentation, firewalls, VPNs, and zero-trust principles. • Clear technical writing skills for documentation, procedures, and audit artifacts. • Ability to translate security risks into business impact for non-technical stakeholders. • Strong problem-solving skills with high attention to detail. • Self-motivated with the ability to work independently in a hybrid environment. Nice-to-haves • 2+ years in biotech, pharma, medical device, or healthcare IT environments • Familiarity with FDA 21 CFR Part 11, EU Annex 11, NIST frameworks, CMMC, and/or SOC 2 • AZ-500, SC-200, SC-300, AWS Security Specialty, CISSP, CCSP, or comparable security certifications • Experience with Infrastructure as Code (e.g., Terraform, ARM templates) • Container security experience (e.g., Docker, EC2-based workloads) • DevSecOps practices and CI/CD pipeline security • Experience with Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB) solutions Benefits • Stock bonus • Health, Dental, and Vision premiums fully covered by Lumen • 401k match up to 4% • Industry-leading PTO policy, paid refresh days, and paid year-end holiday office closure • Monthly wellness program to support your health and well-being • Free onsite parking or public transportation subsidies • Comprehensive parental leave policies • Life insurance, short & long-term disability, and access to employee assistance programs Apply tot his job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Remote Immigration Attorney (PR)

Remote

[Remote] Oracle Health Federal Technical Customer Service Administrator

Remote

**Experienced Remote Data Entry Clerk – Entry Level Flexible Hours with Arenaflex**

Remote

Experienced Customer Service Officer - Remote Work Opportunity at careerzynith

Remote

Manager, Airport Customer Care (Philadelphia, PA, US)

Remote

Staff Accountant job at Planet Fitness in Hampton, NH

Remote

GCP Lead or Architect

Remote

Ciox Health – Medical Records Specialist I (ON-SITE) – Baltimore, MD

Remote

Customer Support Specialist - Night Shift

Remote

Netflix Data Entry Jobs From Home – WFH – US

Remote
← Back