Security Engineer

Job Description:

Technical must haves – experience managing CyberARK (TAM, PAM) 

As a Security Engineer, you will be responsible for maintaining and enhancing our organization's security posture, focusing on HIPAA compliance and leveraging CyberArk TAM and PAM. You will work closely with cross-functional teams, including IT, compliance, and operations, to ensure that our security controls and practices align with regulatory requirements and industry best practices. Your expertise in HIPAA and CyberArk solutions will play a critical role in protecting sensitive data and managing privileged access within our systems.

Responsibilities:

• Develop and implement security controls, policies, and procedures to ensure compliance with HIPAA regulations.
• Collaborate with stakeholders to identify security requirements and translate them into technical solutions leveraging CyberArk TAM and PAM.
• Deploy, configure, and manage CyberArk TAM and PAM components to secure and monitor privileged accounts and access within the organization.
• Conduct regular assessments and audits to identify vulnerabilities, gaps, and areas for improvement in the security infrastructure.
• Investigate and respond to security incidents, conducting root cause analysis and implementing remediation measures.
• Monitor security systems and tools to detect and mitigate potential threats, including security breaches, malware, and unauthorized access attempts.
• Provide expertise and guidance to IT teams regarding secure coding practices, system hardening, and secure configurations.
• Collaborate with compliance teams to ensure security controls are aligned with HIPAA guidelines and other relevant regulations.
• Stay up to date with the latest security trends, threats, and vulnerabilities, and recommend appropriate mitigation strategies.
• Participate in security awareness programs and training initiatives to educate employees about security best practices and policies.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
• Solid experience working as a Security Engineer, with a focus on HIPAA compliance and CyberArk solutions (TAM and PAM).
• In-depth understanding of HIPAA regulations and their application in a healthcare or related industry.
• Proven experience deploying, configuring, and managing CyberArk TAM and PAM solutions.
• Strong knowledge of privileged access management concepts, techniques, and best practices.
• Familiarity with security frameworks such as NIST, ISO 27001, or CIS Controls.
• Experience with security incident response and handling, including conducting forensic investigations.
• Proficiency in security tools and technologies such as SIEM, IDS/IPS, firewalls, antivirus, and vulnerability scanners.
• Excellent problem-solving and analytical skills, with the ability to identify and mitigate security risks effectively.
• Strong communication and collaboration skills, with the ability to work effectively with cross-functional teams.

Preferred Qualifications:

• Relevant certifications such as CISSP, CISM, CEH, or CyberArk certifications (e.g., CyberArk Defender, CyberArk Sentry).
• Experience working in a healthcare or regulated industry, ensuring compliance with multiple regulatory frameworks.
• Knowledge of cloud security principles and experience securing cloud environments (e.g., AWS, Azure, GCP).
• Familiarity with other security technologies and solutions, such as DLP, IAM, WAF, or endpoint protection.
• Join our dynamic team and contribute your expertise to strengthen our security posture, ensure HIPAA compliance,