H

Cyber Security Engineer

Hummingbird Healthcare
Full-time
Remote

Hi. We’re Hummingbird.

We’re a health technology services company with a mission to improve healthcare by better leveraging existing technology. We’re elevating the patient experience by reimagining how patients access care and how healthcare providers leverage their Epic platform. Join us and help build the healthcare experience we want for our communities, our families, and ourselves.

Summary

As a Cybersecurity Engineer at Hummingbird, you will play a critical role in designing, implementing, and maintaining our information security program as well as complying with key regulations (e.g. HIPAA, PCI, CCPA). You will work closely with our IT, data, and operations teams to ensure the confidentiality, integrity, and availability of sensitive healthcare data and systems. You will design, implement, and manage cybersecurity strategies and identity frameworks to protect Hummingbird’s systems and support secure access to client systems. In this senior role, you will work with wide latitude for independent judgment while collaborating with cross-functional teams to solve complex security challenges.

Strong understanding of healthcare data protection regulations such as HIPAA and HITECH and expertise in developing security policies in a healthcare environment is required.

Responsibilities

  • Employment Eligibility:Β Candidates must be legally authorized to work in the United States without sponsorship.
  • FLSA Status:Β Exempt
  • Compensation:Β Starting at $117,000+ per year less statutory deductions
  • Work Location:Β This position is remote. You must work from a location within the United States with consistent internet service.
  • Travel:Β 2-3 times/year for company events
  • Benefits Eligible:Β Yes

Cyber Security Engineering

  • Design, implement, and maintain effective cybersecurity controls, architectures, and best practices within Microsoft 365, Azure, and cloud-based environments to protect systems, networks, and data.

  • Collaborate with engineering teams to integrate new security technologies aligned with organizational requirements.

  • Support vendor relationships, ensuring project accountability and successful security project delivery.

  • Contribute to the design and improvement of security architectures, sharing expertise within the team and across departments.

Identity Access Management

  • Implement and manage Identity and Access Management (IAM) systems to ensure secure user access, including role-based access control and multi-factor authentication.

  • Support IAM tools, including Privileged Access Management (PAM), Identity Governance and Administration (IGA), Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Certificate Management. Maintain IAM policies and processes, automating user provisioning and deprovisioning workflows, where possible, across internal and client environments.

  • Provide technical support for escalated identity management issues, developing long-term resolutions.

  • Provide guidance to junior team members on IAM implementation and best practices.

Cyber-Defense

  • Conduct and manage vulnerability assessments, penetration tests, and risk analyses to identify and address potential security threats.

  • Support incident detection and response efforts, including collaboration with IT to resolve security breaches.

  • Implement security hardening measures across systems and applications to prevent threats.

  • Partner with IT operations to refine disaster recovery plans and ensure business continuity.

  • Monitor security metrics and KPIs to continuously improve governance and compliance efforts.

  • Assist in developing and delivering cybersecurity awareness training to employees.

Process and Policy Collaboration

  • Ensure compliance with HIPAA and other regulatory standards by helping develop and enforce security policies and procedures.

  • Collaborate with compliance and operational teams to integrate security requirements into broader company policies.

  • Maintain security documentation and update it as regulations and business needs evolve.

  • Partner with stakeholders to promote security governance and best practices within Hummingbird and external partners.

Required & Desired Skills

Required Skills and Experience

  • 5+ years of experience in cybersecurity engineering, including hands-on experience with Microsoft 365, Azure, and Intune environments.

  • Proven experience implementing and managing IAM systems, including role-based access control and multi-factor authentication.

  • Strong understanding of healthcare data protection regulations such as HIPAA and HITECH and expertise in developing security policies in a healthcare environment.

  • Experience in vulnerability assessments, risk management, and leading incident response activities.

  • Ability to work independently, mentor junior team members, and collaborate across departments to implement secure solutions.

Desired Skills and Experience

  • Relevant certifications such as CISSP, CEH, or OSCP

  • Experience with automation tools for IAM provisioning and management workflows.

  • Knowledge of advanced cloud security strategies and architectures.

  • Experience implementing large-scale security systems in cloud environments.

  • Leadership experience in managing cybersecurity projects and working with external vendors.

The Hummingbird Approach
We value a team that brings diverse perspectives and experiences to the work we do. While there are many ways to do this, people who are successful at Hummingbird:

  • Lead with Respect by valuing kindness and working to actively foster an environment of inclusion and respect.
  • Embrace Growth and seek out learning and growth for themselves and support those around them in their growth journey. They bring curiosity and an openness to innovation to all their interactions.
  • Bring a Win Together mentality by approaching conflict directly, listening carefully, and seeking to understand. They problem-solve with the goal of finding successes, not trade-offs, for all involved.

Equal Opportunity Statement
Hummingbird Healthcare is an equal opportunity employer committed to diversity and inclusion. We do not discriminate based on race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other protected characteristic. We value the talents of individuals from all backgrounds and actively seek a diverse workforce.Β 

Our mission is to provide a fair and inclusive recruitment process for everyone, and reasonable accommodations are available to any applicant who may need them. Β Please reach out to talent@hummingbird.healthcare to request accommodations and we’d be happy to chat.
Β 

Apply now
Share this job
Twitter Facebook Linkedin Email