Cybersecurity Engineer II

The University of Wisconsin is seeking a Cybersecurity Engineer II to design, implement, and maintain advanced cybersecurity solutions within the Wisconsin Health Data Hub. This role involves bridging security strategy and engineering, focusing on proactive risk reduction and continuous monitoring to secure sensitive healthcare datasets.

Responsibilities:

• Design and implement security controls across WHDH cloud infrastructure, applications, data platforms, and network environments
• Build secure-by-design architectures for data ingestion, storage, analytics, and AI workloads
• Configure identity and access management controls including role-based access, least privilege, and privileged account protections
• Implement encryption solutions for data at rest, in transit, and during controlled data exchange processes
• Conduct architecture reviews to identify and remediate security weaknesses before deployment
• Implement and maintain security monitoring tools, logging pipelines, and alerting capabilities across the WHDH environment
• Develop automated detection rules for suspicious activity, unauthorized access, and anomalous system behavior
• Investigate security alerts, triage incidents, and coordinate containment and remediation activities
• Lead technical response efforts for cybersecurity incidents affecting infrastructure, applications, or data assets
• Conduct post-incident reviews and implement preventive improvements
• Secure cloud-native environments including compute, storage, networking, and containerized workloads
• Implement vulnerability management processes including scanning, prioritization, patch coordination, and remediation tracking
• Harden operating systems, databases, containers, and endpoints supporting the WHDH platform
• Support secure CI/CD pipelines and DevSecOps practices for platform engineering teams
• Maintain backup integrity, disaster recovery readiness, and resilience controls
• Ensure platform operations align with institutional security policies, research data governance requirements, and healthcare privacy standards
• Support compliance with HIPAA-aligned safeguards, NIST frameworks, and applicable contractual security obligations
• Perform risk assessments, security reviews, and control documentation for new technologies and vendor integrations
• Maintain technical evidence and documentation required for audits, grant reporting, and security assessments
• Provide security guidance to project teams handling sensitive or regulated data
• Partner with data engineers, data scientists, and software engineers to implement secure solutions without impeding innovation
• Deliver practical cybersecurity guidance for secure data sharing, external collaboration, and research computing workflows
• Promote security awareness and best practices across WHDH technical teams
• Evaluate emerging cybersecurity technologies and recommend improvements to platform defenses

Requirements:

• 5 years of professional experience implementing cybersecurity controls in enterprise or cloud environments (7 years preferred)
• Experience with identity and access management, network security, vulnerability management, and security monitoring
• Experience securing cloud platforms such as AWS, Azure, or Google Cloud
• Familiarity with scripting or automation using tools such as Python, PowerShell, Bash, or Terraform
• Strong understanding of security principles including encryption, authentication, logging, and incident response
• Experience securing healthcare, research, or regulated data environments
• Familiarity with frameworks such as NIST Cybersecurity Framework, NIST 800-53, CIS Controls, or HITRUST
• Experience with SIEM, EDR, CSPM, or container security platforms
• Knowledge of DevSecOps and secure software development lifecycle practices
• Experience with Kubernetes, Docker, and cloud-native application security
• Professional certifications such as CISSP, GIAC, Security+, CCSP, or equivalent