Cyber Security Engineer

Kaleida Health
Buffalo, United States of America
17 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Shift work
Languages
English
Experience level
Intermediate
Compensation
$ 130K

Job location

Buffalo, United States of America

Tech stack

Microsoft Windows
Cloud Computing
Cloud Computing Security
Computer Security
Computer Networks
Linux
Identity and Access Management
Virtual Private Networks (VPN)
Network Security
Network Segmentation
Remote Access Technology
Zero Trust Network Access
Security Information and Event Management
User Provisioning Software
Wireless Intrusion Prevention Systems
Scripting (Bash/Python/Go/Ruby)
Firewalls (Computer Science)
Information Technology
Firewall Services Module

Job description

The Cyber Security Engineer is responsible for engineering, optimizing, and evolving the organization's security platform stack across endpoint, email, identity, cloud, and network security controls. This role focuses on building and tuning security tooling, implementing best-practice configurations, advancing zero trust enforcement, and integrating security capabilities across a multi-site healthcare enterprise. The engineer works closely with application owners, project managers, infrastructure teams, and vendors to deliver secure, reliable, and compliant solutions. In addition to platform engineering responsibilities, this role includes day-to-day operational and analyst duties such as handling security-related tickets, investigating alerts and incidents, and participating in on-call support. As security platforms, automation, and processes mature, the position is expected to shift toward a greater emphasis on engineering, optimization, and strategic initiatives. The engineer supports alignment with HIPAA and NIST CSF 2.0 and contributes to the ongoing maturity of programs such as DLP, endpoint hardening, secure remote access, and firewall and zero-trust application onboarding.

Requirements

Do you have experience in Zero Trust security?, Do you have a Master's degree in cybersecurity?, BA/BS in Computer Sciences, Information, Cybersecurity, or a related field, or equivalent practical experience (typically 5-7 plus years of hands-on experience in IT, cybersecurity, or related technical roles.) required. Master's degree in computer science, information technology, cybersecurity, or a related field preferred., 3 plus years of experience in cybersecurity roles that include a combination of security engineering, security operations, and analyst responsibilities, including experience in several of the following areas required. 3 years of experience in managed firewall and network-security workflows-including rule creation, application onboarding, access provisioning, and posture enforcement-across Firewall, VPN, proxy, IAM, and NIPS/WIPS platforms while partnering with PMs, application owners, and infrastructure teams to support secure builds and updates required. 3 years of experience in implemented and enforced zero-trust controls, including NAC, endpoint firewall policies, network segmentation, and secure remote access, with continuous refinement as organizational needs evolved required. . 3 years of experience in engineered and optimized SIEM, EDR, DLP, MDM, and endpoint-hardening platforms, applying best-practice configurations to maintain a strong enterprise security posture required. 3 years of experience in developed and tuned detection logic, correlation rules, and alerting to improve signal fidelity and reduce noise across large, modern network environments required. 3 years of experience in built automation using scripting languages and developed SOAR playbooks to streamline response workflows and reduce manual effort required. 3 years of experience in secured Windows and Linux platforms through hardening, monitoring, and alignment with HIPAA, NIST CSF 2.0, and internal compliance requirements required. 3 years of experience in advanced cloud-security initiatives and evaluated emerging technologies to ensure secure adoption and integration into existing controls required. 3 years of experience in participated in on-call rotations for security incidents and fulfilled security-centric service requests including access reviews, secure remote access setup, and network share provisioning required. 3 years of experience in maintained documentation of security controls, configurations, and procedures; identified opportunities to enhance the organization's overall security posture.

Working Conditions Essential:

  • Weight Requirement - Light (up to 20 lbs), Wage will be determined based on factors such as candidate's experience, qualifications, internal equity, and any applicable collective bargaining agreement.

About the company

Kaleida Health's mission is to advance the health of our community, and we believe our diversity, equity, and inclusion (DEI) strategic work is mission- critical for the good of our workforce and the community who need and depend on our care and services. We understand that racism and health inequities stand firmly in the way of advancing the health of our community, and Kaleida Health envisions DEI as the pursuit of equity and restorative justice for every person. We will exemplify courage and accountability through both the professing and practice of our core values for our friends, colleagues, and community. Kaleida Health is committed to creating a culture of equity and inclusion where diversity is valued and celebrated!

Apply for this position