Senior Cybersecurity Engineer

WHO WE ARE

Evergreen Nephrology partners with nephrologists to transform kidney care through a value-based, person-centered, holistic, and comprehensive approach to kidney care. We believe patients living with kidney disease deserve the best care. We are committed to improving patient outcomes and improving quality of life by delaying disease progression, shifting care to the home, and accelerating kidney transplants.

We help nephrologists focus on the right patients at the right time across the full care spectrum. We do this by providing them with the best-in-class interdisciplinary clinical resources, analytical insight and tools, and services to patients.

We listen to the needs of our patients, our employees, and our client partners, continually working to push beyond the status quo in which the care system manages patients today.

WHO YOU ARE

You are devoted, compassionate, and passionate about creating an exceptional employee experience. You’re excited to be part of building a team from the ground up, and love to help set up employees for success by supporting their onboarding, performance management, and engagement. You thrive in innovative and evolving environments with high rates of change. You are driven by process improvements. Does this sound like you? If so, we should talk.

YOUR ROLE

The Senior Cybersecurity Engineer is responsible for functioning as the primary custodian of Evergreen Nephrology's critical assets and information systems. Partnering closely with the Sr. Director of Information Systems, you will support and enhance the Information Security program, overseeing the protection and monitoring of Evergreen’s cloud-based systems, network devices, and endpoints, addressing security incidents and vulnerabilities to mitigate risks. Additionally, you will partner with the Sr. Director of Information Security to develop and implement security strategies, ensuring the confidentiality, integrity, and availability of Evergreen’s cloud infrastructure on Azure and Office 365 platforms.

As a Senior Cybersecurity Engineer at Evergreen Nephrology, you are able to excel in a dynamic environment where priorities shift rapidly, taking full responsibility for your role and deliverables, while also guiding and mentoring junior team members. Exceptional communication skills help you articulate ideas clearly and inclusively, thriving in collaborative settings to solve complex problems.

PRIMARY FUNCTIONS FOR THIS ROLE

• This role may mentor and coach more junior team members while also providing guidance and support in their professional development and daily tasks.
• Work within our security team to develop, engineer, and maintain comprehensive security solutions for Evergreen’s Azure and Office 365 environments. This includes protecting sensitive data, PII, and PHI in strict compliance with HIPAA and HITRUST regulations.
• Lead the strategy and ongoing enhancement of the configuration and management of Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions.
• Develop and harmonize sustainable security strategies that significantly strengthen Evergreen’s overall security posture and ensure compliance with all relevant regulatory and industry requirements leveraging in-depth expertise in the features and functionalities of Microsoft 365 security solutions, including but not limited to Entra, Defender XDR, Defender for Cloud Apps, Purview, Defender for Endpoints, and Information Protection and Governance.
• Implement and manage a comprehensive suite of technical security controls and tools, including but not limited to Azure monitoring and alerts, endpoint protection, firewalls, routers, switches, Azure AD, group policies, and conditional access policies. Ensure that proper monitoring, logging, and automated notification mechanisms are in place for all critical systems, applications, network devices, and processes.
• Continuously monitor Evergreen's cloud environments for security threats and vulnerabilities. Promptly respond to and remediate any incidents, minimizing potential impact and ensuring the ongoing security and integrity of Evergreen’s information systems and assets.
• Collaborate with the Security Team and Sr. Information Security Director to develop incident response playbooks. Ensure that these playbooks provide clear guidance for properly investigating, documenting, and resolving security incidents.
• Take a proactive role in all phases of security incident response activities, including triage, containment, eradication, and recovery, when necessary.
• Collaborate closely with the Sr. Director of Information Security and key business units to develop and maintain a comprehensive Data Loss Prevention (DLP) strategy. This strategy must provide robust protection against unauthorized access or exfiltration of PII, ePHI, and other sensitive business information without hindering Evergreen’s ability to conduct day-to-day operations.
• Develop and implement standardized, secure configurations for all endpoints, network devices, and applications. Ensure that unnecessary ports, services, and features are properly disabled or removed before deployment to production environments.
• Ensure that all security tools, including but not limited to Zscaler, Sentinel One, SIEM, O365, Abnormal, and Absolute, are properly configured and aligned with the policies and standards outlined in Evergreen's Information Security Policy.
• Perform periodic vulnerability scans to ensure all endpoints, firewalls, and network devices are running the latest security patches. Prioritize the remediation of high and critical vulnerabilities within acceptable remediation timelines. Confirm that default-deny rules are in place, allowing traffic only for the necessary services and ports that have been explicitly approved. Ensure that all configuration changes are properly documented, reviewed, and approved through Evergreen's formal change control process.
• Develop well-informed security recommendations and solutions in collaboration with the Sr. Director of Information Security, key stakeholders and business units.
• Work closely with the Sr. Director of Information Security to pinpoint security loopholes, vulnerabilities, inefficiencies, and areas for enhancement. Integrate advanced security tools, AI, and automation strategies to enhance Evergreen's ability to effectively detect, respond, and recover from security incidents.
• Collaborate with the Sr. Director of Information Security to make strategic decisions regarding the procurement, consolidation, and implementation of new security tools and technologies. Conduct thorough proof-of-concept evaluations to ensure selected solutions effectively address Evergreen's security requirements and integrate seamlessly with existing infrastructure.
• Develop, maintain, and regularly update all relevant documentation, including security policies, procedures, standards, and diagrams. Ensure that all documentation is stored in a secure, centralized repository, with proper version control and easy accessibility for authorized team members.
• Proactively stay informed about the latest security threats, vulnerabilities, and industry trends. Leverage this knowledge to identify, recommend, and implement improvements to Evergreen's security strategy and operations.

HOW YOU QUALIFY

• Demonstrated ability to lead and mentor security team members, fostering continuous improvement and collaboration
• Highly entrepreneurial spirit with a "make it happen" attitude
• High degree of emotional intelligence, competence, maturity, adaptability, resilience, integrity, and initiative
• Exceptional interpersonal skills and the ability to collaborate effectively with executives, managers, and team members across various departments, fostering a positive and productive work environment
• Ability to communicate a security strategy to both technical and non-technical audiences
• Bachelor's Degree in Computer Science, Information Security, or a related field
• A minimum of 7 years of experience in cybersecurity
• Proven understanding of healthcare privacy and security practices, with knowledge of regulations such as HIPAA, HITECH, HITRUST, NIST, and PCI DSS (ideal)
• Certification in one or more of the following: CompTIA Sec+, CYSA, CEH, CISSP, CISM, CISA, CCSP, Azure Fundamentals, GCIH, GCFA
• Strong technical foundation in security technologies and tools, such as DLP, SIEM, Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions, Azure Cloud Security, Intune, Defender, Entra, Conditional Access Policies, and Endpoint Controls, with the ability to design, implement, and manage robust security solutions
• Demonstrated proficiency in leveraging the security capabilities of Microsoft Azure and Office 365 to protect sensitive data, ensure compliance, and mitigate risks
• Knowledge of cybersecurity frameworks such as NIST, HITRUST, CIS, HIPAA, PCI
• Experience creating scripts and automating processes
• Strong incident response skills, including computer intrusion investigations and digital forensics in enterprise environments
• Excellent organization, planning, time management, project coordination, and project management skills
• Strong analytical and problem-solving skills

Pay range for this role is $120,000 to $140,000, with exact pay determined based on experience, education, demand for role, and other role-specific criteria.

HOW YOU ARE SUPPORTED

You will benefit from Evergreen Nephrology’s exceptional total rewards package, including competitive base pay with bonuses, paid time off starting at four weeks for full-time employees, 12 paid holidays per year, reimbursement for continuing medical education, 401k with match, health, dental, and vision insurance.

We are proud to offer family-friendly policies that support paid parental leave and flexible work arrangements.

We commit to a robust training and development program that starts with onboarding and continues throughout your career with Evergreen Nephrology.

As an inclusive and diverse team, you will collaborate with like-minded healthcare professionals who, like you, understand the importance and value of Evergreen Nephrology’s high-quality, value-based care model.

Evergreen Nephrology is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant (Opens in a new window) .

Evergreen Nephrology will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation or that of other applicants. United States Department of Labor. Learn more (Opens in a new window).

Evergreen Nephrology is committed to working with and providing reasonable accommodations to job applicants with physical or mental disabilities. Applicants with a disability who require a reasonable accommodation for any part of the application or hiring process should email us for assistance. Reasonable accommodations will be determined on a case-by-case basis.