Montefiore Health System is hiring: Cloud Cybersecurity Solutions Engineer in Ci
Montefiore Health System, City of Yonkers, NY, United States,
Montefiore Health System
The Cloud Cybersecurity Solutions Engineer will serve as the technical expert and implementation specialist responsible for building scalable cloud security controls to protect cloud infrastructure. This individual will lead the implementation and management of security solutions that protect our cloud infrastructure, support advanced workload scalability, and align with regulatory requirements. The role requires deep technical expertise in multi-cloud services and tools, a background in cybersecurity architecture, and hands-on experience with cloud-native security practices.
Key Responsibilities:
- Implement a secure, resilient cloud architecture, aligning with business objectives and regulatory standards.
- Follow blueprints, design patterns, and reusable architecture frameworks for secure cloud deployments.
- Enforce best practices for securing cloud environments, including network segmentation, data encryption, and identity access management, specifically tailored for cloud services.
- Implement governance policies and guardrails for cloud usage across business units, ensuring consistent application of security controls.
- Identify, assess, and prioritize cloud security risks, implementing appropriate mitigation strategies.
- Integrate security monitoring, logging, and alerting with existing SIEM to proactively manage threats.
- Implement and enforce least-privilege IAM roles, fine-grained access policies, security groups, that integrate with existing privileged access management and multi-factor authentication mechanisms.
- Integrate identity federation and single sign-on (SSO) solutions with enterprise IAM solutions.
- Implement encryption strategies for data at rest, data in transit, and data in use that integrate with the enterprise HSM.
- Implement and enforce data protection policies, ensuring sensitive data is managed securely and complies with relevant data protection regulations.
- Implement security automation practices using Infrastructure as Code (IaC) tools.
- Perform the implementation of comprehensive cloud native cybersecurity solutions that protect the organization’s critical assets.
- Generate reports and presentations demonstrating that the company cloud architecture complies with relevant laws, regulations, and industry standards (e.g., HIPAA, HITECH, NYSDOH 405.46, HITRUST, etc.).
- Engage with external stakeholders, including vendors, partners, and regulators, to ensure the organization’s cloud cybersecurity posture is robust and aligned with industry standards.
- Participate in cross-functional teams in the design and implementation of cloud native security solutions, ensuring collaboration and alignment across the organization.
- Lead the continuous improvement of the organization’s cloud cybersecurity posture, ensuring it evolves to address new threats and challenges.
- Stay informed of the latest developments in cybersecurity, participating in professional networks and continuing education opportunities.
Required Skills and Knowledge:
- Deep understanding of cloud-based cybersecurity principles, including encryption, authentication, access control, and network security.
- Extensive experience implementing and managing cybersecurity architectures for complex, multi-cloud environments.
- Expertise in cloud security, identity and access management (IAM), and security information and event management (SIEM) systems.
- Expertise in secure networking practices including segmentation and remote access management.
- Strong strategic thinking skills, with the ability to develop and execute long-term cybersecurity plans.
- Ability to operate within large-scale cybersecurity initiatives and projects, ensuring alignment with organizational goals.
- Excellent communication skills, with the ability to present complex technical information to both technical and non-technical audiences.
- Strong interpersonal skills, with the ability to build relationships and influence stakeholders at all levels of the organization.
- Experience in collaborating with cross-functional teams, including IT, legal, compliance, and business units.
Required Experience:
- Experience: 10+ years of experience in cybersecurity, with a focus on cloud configuration and management.
- Experience in Cloud Cybersecurity Tools and Practices: Hands-on experience implementing and managing cybersecurity solutions in complex multi-cloud organizations.
Education:
- Bachelor’s degree or equivalent experience in Cybersecurity, Computer Science, Information Security, or a related field.
Certifications (Preferred but not required):
- AWS Certified Security - Specialty
- Microsoft Security Operations Analyst (SC-200)
- Microsoft Identity and Access (SC-300)
- Administering Information Protection and Compliance in Microsoft 365 (SC-400)
- Microsoft Azure Security Technologies (AZ-500)
- Google Professional Cloud Security Engineer
- ISC2 Certified Cloud Security Professional (CCSP)
- GIAC Cloud Security Automation (GCSA)
- EC-Council Certified Cloud Security Engineer
Personal Attributes:
- Visionary Leadership: Ability to inspire and lead teams towards a shared vision of cybersecurity excellence.
- Curiosity and Innovation: A natural inclination to explore new technologies and push the boundaries of what is possible in cybersecurity.
- Integrity and Ethics: Commitment to ethical behavior and adherence to the highest standards of professional conduct.
- Resilience and Adaptability: Ability to navigate and lead in a fast-paced, ever-changing cybersecurity landscape.
- Strategic Thinking: Ability to see the big picture and develop long-term strategies that align with organizational goals.
Department: Montefiore Information Technology
Bargaining Unit: Non Union
Campus: YONKERS
Employment Status: Regular Full-Time
Address: 3 Odell Plaza, Yonkers
Shift: Day
Scheduled Hours: 8:30 AM-5 PM
Req ID: 222407
Salary Range/Pay Rate: $127,500.00-$170,000.00
To learn more about the “Montefiore Difference” – who we are at Montefiore and all that we have to offer our associates, please click here.
Diversity, equity and inclusion are core values of Montefiore. We are committed to recruiting and creating an environment in which associates feel empowered to thrive and be their authentic selves through our inclusive culture. We welcome your interest and invite you to join us.
Montefiore is an equal employment opportunity employer. Montefiore will recruit, hire, train, transfer, promote, layoff and discharge associates in all job classifications without regard to their race, color, religion, creed, national origin, alienage or citizenship status, age, gender, actual or presumed disability, history of disability, sexual orientation, gender identity, gender expression, genetic predisposition or carrier status, pregnancy, military status, marital status, or partnership status, or any other characteristic protected by law.
#J-18808-Ljbffr