Security Engineer

We are offering an exciting opportunity for a Security Engineer to join our team in New York. This role involves implementing and managing security measures to safeguard our organization's infrastructure. You will work closely with cross-functional teams to enforce security policies and procedures, as well as respond to security incidents and breaches.

Responsibilities:

• Implement and manage security solutions such as Rapid7, GPO, SOC, Patching, and SolarWinds to protect the organization's infrastructure.
• Conduct security assessments, vulnerability scanning, and penetration testing to identify potential threats and weaknesses.
• Collaborate with various teams to develop and enforce security policies and procedures.
• Monitor, investigate, and respond to security incidents and breaches promptly.
• Stay updated with healthcare security regulations like HITRUST and ensure compliance.
• Provide expertise in security patching, vulnerabilities, and remediation, making recommendations to improve security posture.
• Manage access and permissions to secure folders and critical systems, ensuring only authorized personnel have access.
• Develop and maintain documentation related to security processes and configurations.
• Participate in on-call support and incident response activities as needed.
• Use skills such as Rapid7, CISSP, HITRUST, and Zscaler to perform job responsibilities effectively. • A minimum of 5 years of experience in the field of Security Engineering or a related field
• Proficiency in Rapid7, CISSP, HITRUST, and Zscaler
• Bachelor’s degree in Computer Science, Engineering or a related field
• Strong knowledge of system and network security protocols
• Experience in creating and implementing security structures and standards
• Ability to identify potential threats and propose solutions
• Excellent problem-solving skills and the ability to work under pressure
• Strong communication skills, both written and verbal
• Proven ability to work in a team and independently
• Familiarity with information security laws and regulations
• Proven ability to manage multiple tasks while meeting strict deadlines
• Certified Information Systems Security detail oriented (CISSP) certification is a plus
• Experience in conducting security audits and risk assessments
• Familiarity with cloud security and data protection strategies
• Strong understanding of ethical hacking and intrusion detection systems.