Information Security Engineer

Information Security Engineer – Full-Time, Onsite

Employment Type: Full-Time

Compensation: Competitive Base Salary Annual Bonus

Benefits: Full Benefits Package

Work Schedule: 5 Days per Week, Onsite

Position Overview

This role is part of a mission-driven organization that operates with a strong sense of urgency to deliver innovations that improve quality of life for patients with musculoskeletal disorders. The team is inspired by patient needs and the surgeons and healthcare providers who treat them, partnering closely with researchers and educators to transform clinical insights into real-world solutions. The work directly improves surgical techniques and outcomes, helping patients return to their lives as quickly as possible.

Position Summary

We are seeking a seasoned Information Security Engineer with 10 years of experience to lead and enhance cybersecurity infrastructure, threat detection capabilities, and incident response processes. This role drives strategic security initiatives, mentors junior analysts, and collaborates cross-functionally to ensure a resilient and secure enterprise environment. The ideal candidate brings deep technical expertise, a proactive mindset, and a strong understanding of modern threat landscapes and security frameworks.

Essential Functions

• Architect and implement scalable security solutions across cloud and on-prem environments
• Lead threat detection, incident response, and forensic investigations
• Develop and maintain security automation scripts and response playbooks
• Oversee the vulnerability management lifecycle and remediation strategies
• Partner with DevOps, IT, and business units to embed security into operational and development pipelines
• Conduct red team / blue team exercises and tabletop simulations
• Evaluate, select, and integrate new security technologies and platforms
• Support compliance initiatives including ISO 27001, NIST, and SOC 2, and ensure audit readiness
• Produce reporting on risk posture, threat trends, and mitigation efforts
• Mentor junior security staff and contribute to team growth and development
• Adhere to all internal codes of conduct and applicable compliance policies
• Ensure compliance with applicable governmental laws, rules, and regulations in the U.S. and internationally

Reasonable accommodations may be made to enable individuals with disabilities to perform these essential functions.

Qualifications

Education

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field

Certifications (Preferred)

• CISSP, OSCP, GCIH
• AWS or Azure Security certifications (or equivalent)

Technical Skills

• Advanced experience with SIEM, EDR, SOAR, and vulnerability management tools
• Strong scripting skills (Python, PowerShell, Bash)
• Deep knowledge of cloud security (AWS, Azure, GCP)
• Familiarity with DevSecOps and CI/CD security integration
• Experience with Zero Trust architecture and identity management

Core Competencies

• Action Oriented: Takes initiative and responds decisively to challenges
• Problem Solving: Applies strong analytical thinking to proactively resolve issues
• Approachability: Builds rapport easily and addresses concerns early
• Composure: Remains calm and effective under pressure
• Technical Learning: Quickly adopts new technologies and independently expands skillsets