Health Gorilla

Senior Security Engineer

Health Gorilla

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Salary

💰 $159,000 - $180,000 per year

Job Level

Senior

Tech Stack

AnsibleAWSCloudCyber SecurityLinux

About the role

  • Help secure platforms that power nationwide health data exchange, protect patient privacy, and ensure compliance in a cloud-native, high-scale environment.
  • Implement information security strategies and procedures, executing solutions that align with architectural designs, industry best practices, and regulatory requirements such as HIPAA and TEFCA.
  • Proactively recommend modifications and enhancements to strengthen security posture and identify opportunities for continuous improvement.
  • Work with engineering teams to define/refine information security systems management policies and settings.
  • Conduct vendor and 3rd party information security audits and help with security questionnaires.
  • Perform security analysis and risk assessments to identify threats and vulnerabilities, and document and remediate issues to safeguard information assets.
  • Create AWS Cloud Formation templates, Ansible scripts and automation with AWS Systems Manager.
  • Design, monitor, and enforce security controls using AWS-native security services including GuardDuty, Security Hub, Macie, Inspector, IAM, KMS, CloudTrail, and Config.
  • Implement identity and access management best practices in AWS (least privilege, service control policies, cross-account roles, and MFA enforcement).
  • Architect and operationalize security guardrails via AWS Config rules, SCPs, and automation (e.g., Lambda functions, EventBridge) for continuous compliance.
  • Monitor and incident detection using GuardDuty findings, CloudWatch alerts, and CloudTrail logs, integrating with SIEM/SOAR platforms.
  • Deploy, tune, and manage CrowdStrike Falcon EDR for endpoint visibility, prevention, and real-time response across cloud and enterprise environments.
  • Perform threat hunting and investigation using CrowdStrike telemetry, Falcon OverWatch, and custom queries.
  • Conduct malware analysis and incident response leveraging CrowdStrike’s real-time response capabilities, forensic data, and threat intelligence.
  • Partner with other Cybersecurity, Engineering, and Product teams to align detection strategies with organizational objectives.
  • Serve as central point of contact for 3rd party audits (SOC2, ISO, HIPAA, HITRUST), and other GRC functions

Requirements

  • Expert level experience with Linux operating system and AWS ecosystems.
  • Experience operating in highly regulated environments (e.g., HIPAA, HITRUST, SOC 2), with a strong understanding of compliance-driven security controls and documentation requirements.
  • 7+ years conducting security work in enterprise infrastructure or cloud environments (AWS experience a plus)
  • 3+ years working with any of the following: intrusion detection systems, remote access VPN technologies, vulnerability assessment tools, event and log analysis solutions and configuration and change management systems.
  • Possess knowledge of SIEM implementation and log ingestion, SOAR, Incident Response, and Threat Intelligence that will be data-driven with strong verbal, written communication, and leadership skills.
  • Strong experience with Information Security, Network Security, Security Monitoring, Incident Response, Auditing
  • RFP/RFI Response Knowledge (ability to work and support proposal efforts).
  • Certifications in information technology security such as AWS Security, AWS Associate Level certification, CISSP or CCSP.
  • Bachelor's degree in Computer Science or equivalent work experience