Security Engineer
United States of America
Full-time
2 weeks ago
H1B Sponsor
Key skills
AIMLAzure
About this role
Signature Performance, Inc. is dedicated to improving the health of their clients' business and lowering healthcare administrative costs. They are seeking a Security Engineer who will design, implement, monitor, and optimize security controls while ensuring compliance with various regulatory requirements.
Responsibilities:
- Develop, implement, and maintain security controls across cloud, on-premises, and hybrid environments
- Configure, monitor, and enhance Security Information and Event Management (SIEM) systems to improve detection fidelity and response readiness
- Build and tune detections based on environment-specific threats and compliance expectations
- Conduct hands-on security analysis for assigned systems, including log validation, encryption checks, identity reviews, and control-boundary assessments
- Analyze vulnerabilities, assess risk impact, and recommend practical remediation steps
- Participate in threat modeling activities and document attack surfaces, trust boundaries, and system flows
- Develop automated workflows/scripts for SIEM enrichment, SBOM/SCA/SAST evidence, and compliance reporting
- Assist with creation of architectural artifacts such as data flow diagrams, system overviews, and control-boundary documentation
- Support preparation of materials for enterprise technical review processes
- Support secure configurations in Azure, Azure Gov, and hybrid environments
- Assist with audit evidence preparation for HIPAA, FedRAMP, NIST, and internal reviews
- Assist in evaluating AI/ML use cases for risk and compliance considerations
Requirements:
- Experience in providing hands-on SIEM support
- Experience in threat modeling input
- Experience in automation for security workflows
- Technical analysis of security requirements for new and existing systems
- Design, implementation, monitoring, and optimization of security controls
- Compliance alignment with HIPAA, NIST, FISMA, FedRAMP, FIPS, and HITRUST requirements
- Ability to manage multiple projects using problem-solving skills
- Team-oriented and self-motivated
- Conduct hands-on security analysis for assigned systems
- Log validation, encryption checks, identity reviews, and control-boundary assessments
- Analyze vulnerabilities and assess risk impact
- Recommend practical remediation steps
- Participate in threat modeling activities
- Document attack surfaces, trust boundaries, and system flows
- Develop automated workflows/scripts for SIEM enrichment, SBOM/SCA/SAST evidence, and compliance reporting
- Assist with creation of architectural artifacts such as data flow diagrams, system overviews, and control-boundary documentation
- Support preparation of materials for enterprise technical review processes
- Support secure configurations in Azure, Azure Gov, and hybrid environments
- Assist with audit evidence preparation for HIPAA, FedRAMP, NIST, and internal reviews
- Assist in evaluating AI/ML use cases for risk and compliance considerations
- Security certification preferred (CISSP, CISM, CEH, CISA, Security+, or similar)