Empower PharmacyRemote
Staff Cybersecurity Engineer
United States of America
Full Time
4 weeks ago
H1B Sponsor Likely
Key skills
PythonPowerShellAIMLAnalyticsAWSAzureGCPIdentity ManagementCI/CDRisk ManagementCloud SecurityZero Trust
About this role
Empower Pharmacy is a visionary healthcare company dedicated to making quality, affordable medication accessible to millions of patients nationwide. The Staff Cybersecurity Engineer delivers enterprise-critical protection of digital assets, focusing on advanced threat detection, incident response, and security engineering outcomes across various environments.
Responsibilities:
- Lead real-time monitoring and analysis across SIEM, XDR, and AI-driven security platforms to identify, triage, and mitigate advanced threats, improving detection accuracy and reducing dwell time
- Execute and coordinate complex incident response activities using AI-enabled correlation and automation tools to accelerate containment, investigation, and recovery while maintaining compliance and forensic integrity
- Conduct proactive, intelligence-led threat hunting using behavioral analytics, MITRE ATT&CK frameworks, and AI-driven anomaly detection to uncover hidden threats and strengthen defensive posture
- Design, implement, and optimize security controls across cloud platforms including AWS, Azure, and GCP, enforcing Zero Trust principles and enhancing identity-based protections
- Develop and maintain SOAR-driven automation workflows and AI-enabled orchestration to streamline detection and response processes and improve operational efficiency
- Execute risk-based vulnerability management programs using AI-powered prioritization to identify, assess, and remediate security weaknesses
- Support and maintain alignment with regulatory frameworks such as HIPAA, GDPR, NIST, and ISO, ensuring controls are effective, audit-ready, and compliant
- Perform detailed risk assessments using data analytics and AI modeling to evaluate threats, vulnerabilities, and business impact
- Continuously test and validate security controls using automated tools and simulation techniques to ensure effectiveness and drive remediation efforts
Requirements:
- 8+ years of experience in cybersecurity, including security operations, incident response, and threat detection in cloud and hybrid environments
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field; master's degree preferred
- Advanced expertise in SIEM, SOAR, XDR, and AI/ML-driven cybersecurity platforms, with the ability to operationalize automation
- Strong knowledge of cloud security architecture across AWS, Azure, and GCP, including identity management and Zero Trust frameworks
- Proficiency in scripting and automation using Python, PowerShell, or similar languages
- Deep understanding of regulatory frameworks and risk management methodologies
- Experience with DevSecOps practices, CI/CD security integration, and application security tools such as SAST, DAST, and SCA
- Familiarity with threat intelligence platforms and adversary tactics, techniques, and procedures
- Knowledge of AI-related security risks, including prompt injection, model poisoning, and data privacy concerns
- Preferred certifications include CISSP, CISM, GIAC certifications (e.g., GCIA, GCIH), CCSP, cloud provider security certifications, or CEH