Cybersecurity Engineer

City/State:

Elmsford, New York

Grant Funded:

No

Department:

IT - Security Operations

Work Shift:

Day

Work Days:

MON-FRI

Scheduled Hours:

8:30 AM-5 PM

Scheduled Daily Hours:

7.5 HOURS

Pay Range:

$120,000.00-$150,000.00

Job Summary

The Cybersecurity Engineer is an individual contributor responsible for designing, implementing, operating, and maintaining technical security controls that protect clinical systems, patient data, and enterprise infrastructure across a large, complex healthcare environment. This role emphasizes hands-on engineering, operational excellence, and close collaboration with architecture, SOC, cloud, infrastructure, and compliance teams to ensure security controls are effective, resilient, and aligned with regulatory requirements (HIPAA, HITECH, NYSDOH, etc.). As a Cybersecurity Engineer in a large healthcare system, you directly support patient safety, clinical operations, and the protection of sensitive health information. This role provides the opportunity to work deeply with modern security technologies while contributing to a mission-driven organization where cybersecurity is essential to care delivery.

Essential Functions

• Perform assigned security engineering tasks under guidance.
• Escalate complex issues appropriately.
• Maintain security technologies across network, endpoint, identity, cloud, and logging domains.
• Perform hands-on troubleshooting of security tooling, integrations, and agent deployments.
• Maintain security controls in alignment with enterprise architecture standards and engineering best practices.
• Develop and maintain technical documentation, runbooks, and standard operating procedures.
• Automate security tasks using scripting and infrastructure-as-code where appropriate.

Qualifications

• BS Required
• 1-3 years Fundamental understanding of cloud, network, email, and endpoint security. Required and
• 1-3 years Foundational understanding of cybersecurity threats, attack vectors, and mitigation strategies. Required and
• 1-3 years Strong analytical and problem-solving skills. Required and
• 1-3 years Ability to interpret logs and alerts. Preferred and
• 1-3 years Ability to perform scripting (Python, PowerShell, Bash). Preferred and
• 1-3 years Excellent technical documentation skills. Preferred and
• 1-3 years Strong verbal and written communication skills. Preferred and
• 1-3 years Knowledge of NIST CSF and NIST 800-series standards. Preferred and
• Endpoint and workload protection (EDR/XDR, server and container security). (Medium proficiency)
• Cloud and hybrid security engineering (AWS, Azure, GCP). (Medium proficiency)
• Data protection technologies. (Medium proficiency)
• Secure third-party and vendor integrations. (Medium proficiency)
• Change management and operational reliability. (Low proficiency)
• Maintain secure connectivity between on-prem and cloud environments. (Medium proficiency)
• Support regulatory compliance requirements in cloud environments. (Medium proficiency)
• CompTIA Security+ or equivalent foundational certification. within 1 Year Preferred or
• Cloud security certifications (CCSP, AWS or Azure Security Specialty) within 1-1/2 Yrs Preferred or
GIAC certifications (GSEC, GCED, GCIH, GCIA) within 1-1/2 Yrs Preferred or

Montefiore Health System, Inc. is an equal employment opportunity employer. Montefiore Health System, Inc. will recruit, hire, train, transfer, promote, layoff and discharge associates in all job classifications without regard to their race, color, religion, creed, national origin, alienage or citizenship status, age, gender, actual or presumed disability, history of disability, sexual orientation, gender identity, gender expression, genetic predisposition or carrier status, pregnancy, military status, marital status, or partnership status, or any other characteristic protected by law.