Note: Please read the complete description below before applying for this job.

Current Emanate Health Employees - Please log into your Workday account to apply

Everyone at Emanate Health plays a vital role in the care we deliver. No matter what department you belong to, the work you do at Emanate Health affects lives. When you join Emanate Health, you become part of a team that works together to strengthen our communities and grow as individuals.

On Glassdoor's list of "Best Places to Work" in 2021, Emanate Health was named the #1 ranked health care system in the United States, and the #19 ranked company in the country.

Job Summary

Reporting to the Chief Information Officer (CIO), The Sr. Cyber Security Engineer is responsible for safeguarding critical healthcare systems, electronic protected health information (ePHI), and clinical operations. Responsible for designing and maintaining a robust security program that ensures compliance with healthcare regulations while protecting against evolving cyber threats. Expertise in healthcare security frameworks, understanding the sensitivity of patient data, and balancing security with system availability in clinical environments.

Job Requirements

Minimum Education Requirement:

Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field required or extensive years of experience in lieu of degree. 

Minimum Experience Requirement:

Minimum of five to eight (5-8) years of experience in cybersecurity, with at least 2+ years in healthcare or regulated environments. Strong understanding of healthcare data protection requirements (ePHI handling, privacy, and security rules) Experience securing healthcare systems, including EHR platforms and clinical networks. Hands-on experience with security tools (SIEM, EDR, DLP, vulnerability management platforms). Knowledge of network segmentation and Zero Trust strategies in hospital environments. Experience with cloud security in regulated environments. Proficiency in scripting/automation (Python, PowerShell, or Bash). Proven incident response experience involving sensitive data. Experience with HITRUST CSF certification processes preferred. Familiarity with medical device security standards (e.g., FDA guidance, IEC 80001) preferred. Experience with security tools such as Splunk, CrowdStrike, Aruba, and Microsoft Sentinel preferred. Knowledge of data loss prevention (DLP) and encryption strategies for patient data. Experience implementing Zero Trust or SASE in healthcare environments preferred. Understanding and expertise in cybersecurity frameworks. i.e. NIST 2.0 or SANS Security Controls.

Minimum License Requirement:

CISSP, CISM, HCISPP (Healthcare Information Security and Privacy Practitioner), or GIAC preferred.

Delivering world-class health care one patient at a time.

Pay Range: