Systems and Security Engineer

The responsibilities of this job include, but are not limited to the following:

• Constructing, evaluating, and delivering financially responsible, accountable, justifiable, and defensible business decisions to support cost-effective and secure technology infrastructure on-premises and in the cloud with a focus on automation, sustainability, improvement, and best practice standards;
• Managing and maintaining system infrastructure both on-premises and in Azure Cloud Services, such as Azure AD DS, Teams, Intune, and AD Connect;
• Interpreting policies and providing technical recommendations and guidance for future programs, projects, and growth strategies; conducting project planning and resource estimation for new projects;
• Implementing and enforcing security best practices across all systems;
• Monitoring logs and system interactions, and analyzing risks on both Linux and Windows platforms as well as SaaS and PaaS integrations;
• Reviewing cloud Saas, Paas, and IaaS implementations for security best practices and remediation of vulnerabilities;
• Utilizing a range of security and monitoring tools to identify practical solutions before establishing and implementing best practices;
• Continuously researching and implementing new technologies and strategies to ensure Patient First’s systems are up-to-date and comparable to industry peers;
• Developing and maintaining scripts and code to automate tasks and improve system efficiency;
• Collaborating with other IT team members to ensure seamless integration and operation of systems;
• Translating security and technical policies into industry requirements (e.g. PCI, HIPAA, etc.) and communicating security risks to different audiences ranging from business leaders to engineers;
• Reviewing, designing, and accessing technical architecture and processes to provide documented information security requirements;
• Providing guidance and oversight for the correction of discovered vulnerabilities;
• Deploying, engineering, and optimizing enterprise class and technology-based systems;
• Attending and facilitating technical design reviews and technical briefings;
• Providing recommendations for improvements, evaluating alternate configurations, and developing concepts for modifications and future systems.

Minimum education and professional requirements include, but are not limited to, the following:

• Employee must be 18 years of age or older;
• Bachelor’s degree in Information Technology, Computer Science, Computer Engineering or a related field;
• Proven experience as a Systems and Security Engineer or similar role;
• A strong understanding of Azure principles and security best practices;
• Proficiency in scripting and coding (e.g. Python, PowerShell, Bash);
• Experience with both Linux and Windows operating systems;
• Familiarity with security and monitoring tools (e.g. SIEM, IDS/IPS, vulnerability scanners);
• Relevant certifications (e.g. CISSP, CEH, Azure certifications);
• Experience with cloud security and hybrid environments;
• Knowledge of compliance standards and regulations (e.g. GDPR, HIPAA, etc.);
• Excellent multitasking and problem-solving skills;
• Strong analytical skills and attention to detail;
• Ability to stay current with emerging technologies and industry trends;
• At least 5 years of experience working with:
  • Microsoft Azure, Entra ID, Enterprise Apps
  • Office 365 – Exchange Online, Teams, OneDrive, SharePoint
  • Advanced level and usage of scripting (PowerShell and/or Bash) for automation and problem resolution
  • SSO, SAML, and MFA expertise
• At least 5 years of experience working with RHEL 8/9 preferred;
• Experience with the following solutions a plus:
  • Varonis
  • Splunk
  • Carbon Black
  • Manage Engine
  • Rubrik
  • APIs