Cybersecurity Engineer

City/State:

Elmsford, New York

Grant Funded:

No

Department:

IT - Security Operations

Work Shift:

Day

Work Days:

MON-FRI

Scheduled Hours:

8:30 AM-5 PM

Scheduled Daily Hours:

7.5 HOURS

Pay Range:

$120,000.00-$150,000.00

Montefiore is ranked among the top hospitals nationally and regionally by U.S. News & World Report. For more than 100 years we have been innovating new treatments, procedures, and approaches to patient care, producing stellar outcomes and raising the bar for academic medical centers in the region and around the world. Our work to improve health outcomes in underserved communities is unparalleled in the United States. Our workforce is among the most diverse in the US: Montefiore associates speak 60+ languages.

Job Summary:
The Cybersecurity Engineer is an individual contributor responsible for designing, implementing, operating, and maintaining technical security controls that protect clinical systems, patient data, and enterprise infrastructure across a large, complex healthcare environment. This role emphasizes hands-on engineering, operational excellence, and close collaboration with architecture, SOC, cloud, infrastructure, and compliance teams to ensure security controls are effective, resilient, and aligned with regulatory requirements (HIPAA, HITECH, NYSDOH, etc.). As a Cybersecurity Engineer in a large healthcare system, you directly support patient safety, clinical operations, and the protection of sensitive health information. This role provides the opportunity to work deeply with modern security technologies while contributing to a mission-driven organization where cybersecurity is essential to care delivery.

Responsibilities:

• Perform assigned security engineering tasks under guidance.
• Escalate complex issues appropriately.
• Maintain security technologies across network, endpoint, identity, cloud, and logging domains.
• Perform hands-on troubleshooting of security tooling, integrations, and agent deployments.
• Maintain security controls in alignment with enterprise architecture standards and engineering best practices.
• Develop and maintain technical documentation, runbooks, and standard operating procedures.
• Automate security tasks using scripting and infrastructure-as-code where appropriate.

Required experience:

• Bachelor's degree or equivalent work experience. 
• 1-3 years Fundamental understanding of cloud, network, email, and endpoint security.
• 1-3 years Foundational understanding of cybersecurity threats, attack vectors, and mitigation strategies.
• 1-3 years Strong analytical and problem-solving skills.
• Endpoint and workload protection (EDR/XDR, server and container security)
• Cloud and hybrid security engineering (AWS, Azure, GCP).
• Data protection technologies.
• Secure third-party and vendor integrations.
• Maintain secure connectivity between on-prem and cloud environments.
• Support regulatory compliance requirements in cloud environments.
• Change management and operational reliability.

Certifications (Preferred):

• CompTIA Security+ (or equivalent foundational security certification) — obtained within 1 year
• Cloud Security Certification (e.g., CCSP, AWS Security Specialty, or Azure Security Engineer Associate) — obtained within 18 months
• GIAC Certifications (GSEC, GCED, GCIH, or GCIA) — obtained within 18 months

Preferred experience:

• 1-3 years Ability to interpret logs and alerts.
• 1-3 years Ability to perform scripting (Python, PowerShell, Bash).
• 1-3 years Excellent technical documentation skills.
• 1-3 years Strong verbal and written communication skills.
• 1-3 years Knowledge of NIST CSF and NIST 800-series standards.

#SF-DICE-MIT

#LI-MF1

Montefiore Health System, Inc. is an equal employment opportunity employer. Montefiore Health System, Inc. will recruit, hire, train, transfer, promote, layoff and discharge associates in all job classifications without regard to their race, color, religion, creed, national origin, alienage or citizenship status, age, gender, actual or presumed disability, history of disability, sexual orientation, gender identity, gender expression, genetic predisposition or carrier status, pregnancy, military status, marital status, or partnership status, or any other characteristic protected by law.