Sr. Information Security Engineer

Remote Full-time
Sr. Information Security Engineer

Remote Opportunity

Position Summary

The Senior Information Security Engineer plays a key role in safeguarding the company's cloud-based healthcare SaaS platforms, infrastructure, and customer data. This position is responsible for designing, implementing, and managing enterprise-grade security solutions that align with regulatory frameworks such as HIPAA, HITRUST, SOC 2, and NIST 800-53. The ideal candidate is a hands-on technologist with deep knowledge of cloud security (AWS/Azure), DevSecOps practices, endpoint protection, identity management, and security automation.

Key Responsibilities

1. Cloud and Infrastructure Security
• Design and maintain secure architectures across AWS, Azure, and GCP environments.
• Implement guardrails and controls using services such as AWS Security Hub, GuardDuty, Config, and IAM.
• Conduct regular vulnerability scans, configuration reviews, and remediation tracking for infrastructure and workloads.
• Develop and enforce network segmentation, encryption, and key management policies.

2. Application & SaaS Security
• Collaborate with DevOps and Engineering to integrate security into CI/CD pipelines (Snyk, StackHawk, etc.).
• Perform threat modeling, code reviews, and secure design reviews for microservices and APIs.
• Support penetration testing and application security validation efforts.
• Help ensure PHI/PII is protected across all SaaS platforms.

3. Endpoint & Identity Security
• Manage and enhance EDR/XDR solutions (e.g., Cortex, Defender for Endpoint).
• Implement and monitor identity security controls through Microsoft Entra ID (Azure AD), Conditional Access, and PIM.
• Support Intune and MDM compliance policies for Windows, macOS, and mobile devices.

4. Security Operations & Incident Response
• Monitor alerts, investigate incidents, and coordinate responses with the SOC.
• Develop and improve incident response runbooks, playbooks, and forensic analysis procedures.
• Support SIEM integrations and continuous improvement of detection use cases.

5. Governance, Risk & Compliance
• Support audits and evidence collection for HIPAA, HITRUST, SOC 2, and customer security assessments.
• Maintain asset inventories, risk registers, and remediation tracking.
• Collaborate with Compliance to ensure alignment between security controls and policies.
• Contribute to security awareness and training initiatives.

Qualifications

Required:
• Bachelor's degree in Computer Science, Information Security, or equivalent experience.
• 5+ years of experience in security engineering or related technical security roles.
• Strong knowledge of cloud-native security (AWS, Azure) and modern SaaS architectures.
• Hands-on experience with SIEM, EDR/XDR, IAM, vulnerability management, and security automation.
• Familiarity with HIPAA, HITRUST, and SOC 2 requirements.
• Experience securing containerized and serverless workloads (e.g., EKS, Lambda).

Preferred:
• Certifications such as CISSP, CISM, CCSP, AWS Security Specialty, or GIAC (GSEC, GCIA, GCIH).
• Experience with Terraform, Ansible, or CloudFormation for infrastructure-as-code security.
• Experience in DevSecOps pipelines and tools (e.g., Jenkins, Bitbucket).
• Strong scripting skills (Python, PowerShell, or Bash).

Key Competencies
• Analytical and detail-oriented with strong problem-solving skills.
• Ability to balance business needs with risk mitigation.
• Excellent communication skills, able to translate complex technical topics for non-technical stakeholders.
• Collaborative team player with a proactive approach to continuous improvement.

Our compensation reflects the cost of labor across several US geographic markets. Pay is based on several factors including market location and may vary depending on job-related knowledge, skills, and experience.

Reveleer E-Verifies all new hires.

Reveleer is an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity, sexual orientation, age, marital status, veteran status, disability status or genetic information, in compliance with applicable federal, state and local law.

Apply tot his job

Apply To this Job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Experienced Customer Service Representative - Sports Wagering and Online Casino Games - Remote Opportunity with blithequark

Remote

[Remote-Position] Remote Part-Time Bookkeeper or Bookkeeping

Remote

Project Support Specialist - A Great Role for Experienced Virtual Assistants

Remote

Jobs Walmart Distribution Center $27/Hour – US

Remote

YouTube Careers (Remote) – Flexible Work for Beginners

Remote

Communications & Training Coordinator

Remote

Retail, Sales Associate

Remote

Special Education Teacher – Cognitive Impairment (Remote/Hybrid Full‑Time) – Immediate Placement in Grandville Public Schools

Remote

Commercial Account Executive 2

Remote

Software Engineer L5 - Ads, CRM

Remote
← Back