Security Engineer

About Us: TherapyNotes is the go-to superhero for behavioral health Practice Management and EHR software; top-notch SaaS solution handles scheduling, billing, documenting, telehealth, and more.
Position Description: Senior Cyber Security Engineer blending deep technical execution with strategic influence, hands-on across detection and response, vulnerability and risk management, and secure cloud architecture; mentor junior engineers and collaborate across IT, DevOps, and product teams.
Responsibilities:
Hands-on management of enterprise-wide security tools and platforms including SIEM, DLP, EDR/XDR, and vulnerability management across hybrid environments (cloud and on-prem).
Monitor security alerts, respond to incidents, and manage escalations.
Participate in Incident Response on-call rotation.
Conduct threat analysis, vulnerability assessments, and risk evaluations.
Manage and secure identities in Microsoft Entra ID through Conditional Access and Entitlement Management.
Develop and implement strategies for Data Loss Prevention and identify gaps in DLP coverage.
Stay informed about the latest cyber threats, attack methodologies, and vulnerabilities.
Conduct periodic system and network configuration reviews to ensure compliance with security standards.
Collaborate with developmental teams to ensure security is continuously integrated into the SDLC and CI/CD pipeline.
Enforce secure coding standards and best practices.
Identify and document cyber risks and manage mitigation; report issues to leadership.
Align Zero Trust principles with organizational security goals.
Participate in audits and assessments, supporting GRC efforts.

Senior Cloud Security Engineer

Manager, Security Engineering

IT Security Professional II

Staff Security Engineer

Data Security Engineer

Cybersecurity SME