Empower PharmacyRemote
Staff Cybersecurity Engineer
United States of America
Full Time
7 hours ago
H1B Sponsor Likely
Key skills
PythonPowerShellAIMLAnalyticsAWSAzureGCPIdentity ManagementCI/CDRisk ManagementCloud SecurityZero Trust
About this role
Empower Pharmacy is a visionary healthcare company dedicated to making quality, affordable medication accessible to millions of patients nationwide. The Staff Cybersecurity Engineer delivers enterprise-critical protection of digital assets, focusing on threat detection, incident response, and security engineering across cloud and application environments.
Responsibilities:
- Threat Detection: Lead real-time monitoring and analysis across SIEM, XDR, and AI-driven security platforms to identify, triage, and mitigate advanced threats, improving detection accuracy and reducing dwell time
- Incident Response: Execute and coordinate complex incident response activities using AI-enabled correlation and automation tools to accelerate containment, investigation, and recovery while maintaining compliance and forensic integrity
- Threat Hunting: Conduct proactive, intelligence-led threat hunting using behavioral analytics, MITRE ATT&CK frameworks, and AI-driven anomaly detection to uncover hidden threats and strengthen defensive posture
- Security Architecture: Design, implement, and optimize security controls across cloud platforms including AWS, Azure, and GCP, enforcing Zero Trust principles and enhancing identity-based protections
- Automation Engineering: Develop and maintain SOAR-driven automation workflows and AI-enabled orchestration to streamline detection and response processes and improve operational efficiency
- Vulnerability Management: Execute risk-based vulnerability management programs using AI-powered prioritization to identify, assess, and remediate security weaknesses
- Regulatory Alignment: Support and maintain alignment with regulatory frameworks such as HIPAA, GDPR, NIST, and ISO, ensuring controls are effective, audit-ready, and compliant
- Risk Assessment: Perform detailed risk assessments using data analytics and AI modeling to evaluate threats, vulnerabilities, and business impact
- Control Validation: Continuously test and validate security controls using automated tools and simulation techniques to ensure effectiveness and drive remediation efforts
Requirements:
- 8+ years of experience in cybersecurity, including security operations, incident response, and threat detection in cloud and hybrid environments
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field
- Advanced expertise in SIEM, SOAR, XDR, and AI/ML-driven cybersecurity platforms, with the ability to operationalize automation
- Strong knowledge of cloud security architecture across AWS, Azure, and GCP, including identity management and Zero Trust frameworks
- Proficiency in scripting and automation using Python, PowerShell, or similar languages
- Deep understanding of regulatory frameworks and risk management methodologies
- Experience with DevSecOps practices, CI/CD security integration, and application security tools such as SAST, DAST, and SCA
- Familiarity with threat intelligence platforms and adversary tactics, techniques, and procedures
- Knowledge of AI-related security risks, including prompt injection, model poisoning, and data privacy concerns
- Master's degree in Cybersecurity, Computer Science, Information Technology, or related field
- Preferred certifications include CISSP, CISM, GIAC certifications (e.g., GCIA, GCIH), CCSP, cloud provider security certifications, or CEH