Cybersecurity Administrator

Houston healthcare industry company is seeking a hands-on Cybersecurity Engineer to join its growing security team. This role will be responsible for strengthening defensive security capabilities, managing critical infrastructure security tools, and leading incident response efforts across a hybrid Azure environment., * Firewall Administration:

• Configure, monitor, and manage Fortinet firewalls across corporate and joint venture environments.
• Build and maintain VPN tunnels for partner connectivity and secure remote access.
• Reduce reliance on external MSPs by developing in-house firewall expertise.
• Identity & Access Management (IAM):
• Support a hybrid Azure Active Directory environment, including role-based access control (RBAC) and identity governance.
• Implement and maintain Intra-to-AD integrations, including group and user writeback functionality.
• Manage OAuth, SAML, and certificate-based authentication systems.
• Incident Response & Threat Detection:
• Lead and support incident response investigations, from detection to remediation.
• Detect and analyze lateral movement using MITRE ATT&CK and kill chain frameworks.
• Collaborate with IT and JV partners to ensure timely containment and recovery.
• Vulnerability Management:
• Evaluate, implement, and operate vulnerability scanning tools (Tenable, Digital Defense, or equivalent).
• Perform internal TLS testing, certificate audits, and patch validation.
• Recommend and execute mitigation strategies for identified risks.
• Email & Endpoint Security:
• Manage and enhance Proofpoint and Microsoft 365 email security.
• Identify and remediate phishing, spoofing, and delivery vulnerabilities.
• Continuous Improvement:
• Recommend new tools, processes, and configurations to improve cyber hygiene.
• Provide technical mentorship and share best practices within the security team.
• Participate in planning for future specialization of security roles (e.g., dedicated IR or GRC teams).

This position is ideal for a technical professional who thrives on problem-solving, digging into details, and taking ownership of cybersecurity operations - not just defining policies, but executing them., * Fortinet firewall administration - must have hands-on configuration and troubleshooting experience.

• Azure Active Directory / Identity Management (including hybrid AD environments).
• Incident response and understanding of threat detection, lateral movement, and MITRE ATT&CK framework.
• Vulnerability assessment tools (Tenable, Digital Defense, or comparable).
• Email security systems (Proofpoint and/or Microsoft Defender).
• Network analysis tools (Wireshark, Nmap, etc.).
• Public Key Infrastructure (PKI) fundamentals, including TLS/SSL and certificate management., * 2+ years of experience working in a HIPAA-regulated environment (SOC 2, GDPR, or PCI experience acceptable).
• Familiarity with cloud resource security and Azure subscription management.
• Security certifications such as CEH, CompTIA Security+, or OSCP are desirable.
• Strong communication skills and ability to explain technical solutions to leadership.