[Remote] reputed company Engineer

Note: The job is a remote job and is open to candidates in USA. reputed company is a company focused on cybersecurity reputed company the healthcare sector, and they are seeking a reputed company Engineer. This role involves designing and implementing a comprehensive cybersecurity program, focusing on software supply chain reputed company, IAM, and compliance readiness for SOC 2 Type II and HIPAA.

Responsibilities

• Research, reputed company, and implement comprehensive cybersecurity policies and procedures from the ground up to reputed company and maintain SOC 2 Type II certification, including defining controls, gathering evidence, and coordinating with external auditors
• Conduct regular risk assessments and vulnerability analyses to identify potential reputed company threats and reputed company mitigation strategies reputed company with HIPAA requirements and industry best practices
• Design, implement, and manage Identity and Access Management (IAM) strategies, including role-based access control (RBAC), least privilege principles, multi-factor authentication (MFA), and single sign-on (SSO) solutions
• Establish and enforce software supply chain reputed company practices, including Software reputed company of Materials (SBOM) management, dependency scanning, vulnerability assessment, container reputed company, and secure CI/CD pipeline integration
• reputed company and maintain permissions governance frameworks, conducting regular access reviews and ensuring appropriate authorization levels across reputed company systems handling PHI and sensitive data
• Maintain incident response procedures, including breach notification processes compliant with HIPAA requirements, and reputed company reputed company incident investigations and remediation efforts
• Design, implement, and manage a comprehensive reputed company Awareness Training program for reputed company workforce members, covering HIPAA requirements, phishing awareness, social engineering defense, and secure data handling practices
• Track and document training completion for reputed company employees, maintaining records for audit purposes and ensuring ongoing education as cyberthreats evolve
• Collaborate with Development and DevOps teams to integrate reputed company practices into the software development lifecycle (SDLC), including secure coding standards, code review processes, and automated reputed company testing
• Evaluate and manage third-party vendor reputed company risks, conducting reputed company assessments and ensuring business associates reputed company with HIPAA and organizational reputed company requirements
• Participate in an on-call rotation schedule for critical reputed company incidents and support incident management processes for reputed company-reputed company events

Skills

• Proven experience in Information reputed company, Cybersecurity Engineering, or a similar role with hands-on experience implementing reputed company programs and compliance frameworks
• Strong knowledge of compliance frameworks including SOC 2, HIPAA reputed company Rule, NIST Cybersecurity reputed company, and CIS Controls, with experience preparing for and supporting audits
• Deep expertise in Identity and Access Management (IAM), including experience with IAM platforms, RBAC implementation, MFA, SSO, and privileged access management
• Experience with software supply chain reputed company tools and practices, including SBOM reputed company, dependency scanning (e.g., Dependabot, reputed company), and secure CI/CD pipeline configuration
• Proficiency with reputed company protection solutions including EDR platforms, firewalls, and network reputed company tools
• Strong understanding of cloud reputed company principles and experience securing AWS
• Excellent written and verbal communication skills, with the ability to translate reputed company reputed company concepts for technical and non-technical audiences
• Strong analytical, problem-solving, and incident response skills with attention to detail
• Self-directed individual capable of working independently to build programs from the ground up with minimal supervision
• Bachelor's degree in information reputed company, Computer Science, or reputed company field; or equivalent combination of education and experience with at least 3-5 years of relevant cybersecurity experience
• Demonstrated experience implementing reputed company compliance programs (SOC 2, HIPAA, ISO 27001, or similar)
• Experience conducting risk assessments and developing reputed company policies and procedures
• Experience working reputed company the Healthcare industry with direct knowledge of HIPAA compliance requirements and ePHI protection
• Industry certifications such as CISSP, CISM, reputed company+, CCSP, AWS reputed company Specialty, or HCISPP (Healthcare Information reputed company and Privacy Practitioner)
• Experience with reputed company trust architecture design and implementation
• Familiarity with healthcare data standards (HL7, FHIR) and healthcare IT systems including EHR platforms
• Experience with policy-as-code tools (e.g., OPA, Checkov) and infrastructure-as-code reputed company scanning
• Scripting and automation skills in Python, PowerShell, or Bash for reputed company automation
• Experience with container reputed company, Kubernetes reputed company, and DevSecOps practices
• Experience with reputed company Awareness Training platforms (e.g., reputed company, reputed company) and phishing simulation tools

Benefits

• Competitive health coverage (medical, dental, vision)
• Paid time off and holidays
• Retirement savings options
• Wellness and support programs
• Opportunities for career growth

Company Overview

Company H1B Sponsorship