What are the responsibilities and job description for the Security Engineer position at Gifthealth?
About the Role
We are seeking a highly skilled and proactive Security Engineer to join our team. This role is critical in strengthening our organization’s security posture, managing risks, and ensuring compliance with industry standards. The ideal candidate will have a strong background in security audits, vulnerability assessments, and incident response while being able to effectively communicate security strategies to leadership.
Key Responsibilities
- Assist in development of security processes and automated tooling to prevent classes of security issues
- Coordinate and implement a SIEM solution in accordance with industry best practices and regulatory requirements
- Conduct regular security audits, vulnerability assessments, and implement remediation strategies
- Lead initiatives in Disaster Recovery and Business Continuity planning
- Develop and deploy incident response plans, ensuring swift action against security threats
- Promote security awareness by running internal phishing campaigns and cybersecurity training programs
- Work closely with Governance & Compliance teams to address regulatory and policy gaps
- Perform penetration testing on proprietary hardware, software, and endpoints
- Manage and optimize security configuration, firewall exclusions, and web filtering
- Oversee patch management, system hardening, and compliance enforcement
- Track security initiatives, report metrics, and provide strategic recommendations to senior leadership
- Stay informed about new security technologies, industry trends, and evolving regulations.
Qualifications
- Experience: 3-5 years of experience in cybersecurity, IT security, or related field
- Certifications: Security , CEH, OSCP, or relevant certification preferred, not required
- Technical Skills:
- Understanding of common security and compliance frameworks: NIST 800-53, HIPAA, SOC2, etc.
- Experience with PowerShell scripting, SQL queries, and automation
- Familiarity with security tools like Kail Linux, SIEM, and endpoint protection solutions
- Knowledge of cloud security best practices
- Strong ability to communicate security concerns to both technical and non-technical stakeholders
- Experience working with leadership and cross-functional teams to drive security initiatives
Salary : $120,000 - $140,000
