Listing Description

WHO YOU ARE

You are an experienced Cybersecurity Engineer who excels at maintaining a secure IT environment for healthcare organizations. You have a deep understanding of the unique challenges that come with securing sensitive healthcare data, and you are passionate about finding solutions to protect patient’ privacy.

You are a natural problem-solver who thrives in high-pressure situations. Your ability to stay calm under pressure enables you to manage complex cybersecurity incidents effectively, quickly identify potential threats, and implement effective remediation strategies.

Your passion for your work and empathy towards those you support make you an asset to any healthcare organization. You are always updated with the latest healthcare security trends and technologies. You are committed to continuously learning and improving your skills to provide the best possible cybersecurity support to your team and the organization.

Does this sound like you? If so, we should talk.

WHO WE ARE

Evergreen Nephrology partners with nephrologists to transform kidney care through a value-based, person-centered, holistic, and comprehensive approach to kidney care. We believe patients living with kidney disease deserve the best care. We are committed to improving patient outcomes and improving quality of life by delaying disease progression, shifting care to the home, and accelerating kidney transplants.

We help nephrologists focus on the right patients at the right time across the full care spectrum. We do this by providing them with the best-in-class interdisciplinary clinical resources, analytical insight and tools, and services to patients.

We listen to the needs of our patients, our employees, and our client partners, continually working to push beyond the status quo in which the care system manages patients today.

YOUR ROLE

As a Cybersecurity Engineer at Evergreen Nephrology, your role would be to ensure the security of the organization's IT infrastructure, systems, processes, and applications. Your main responsibility would be safeguarding the company's sensitive data, such as patient health information and other confidential data, from unauthorized access, theft, or damage. You will partner with Evergreen’s Sr. Director of Information Security to establish and maintain our security posture while ensuring regulatory compliance.

PRIMARY FUNCTIONS

• Ability to independently engineer security solutions while collaborating with multiple internal departments and vendors.


• Research vulnerabilities, perform vulnerability scanning, remediate vulnerabilities, and alleviate threats.


• Develop, implement, and maintain healthcare security policies and procedures to ensure compliance.


• Conduct risk assessments and develop risk management plans to identify and remediate security vulnerabilities.


• Monitor and analyze security events and alerts to proactively identify potential security incidents.


• Perform daily system monitoring, log management, and verify the integrity and availability of all hardware, server resources, systems, and critical processes.


• Install, configure, test, maintain, monitor, and troubleshoot healthcare-related hardware and software.


• Research and implement automated approaches for system administration tasks using command-line and PowerShell scripts, leveraging resources to provide economies of scale.


• Support the implementation of security controls and measures to safeguard healthcare systems and data.


• Collaborate with other departments to ensure compliance with healthcare regulations.


• Stay up to date with healthcare security trends, threats, and vulnerabilities to proactively mitigate risks.


• Provide guidance and training to other team members on healthcare security best practices to improve overall security posture.

YOU’RE GOOD AT

• You reviewed the Who You Are section of this job posting and immediately felt the need to read on. That makes you a match for our innovative culture.


• You accept that things change quickly in a startup environment and are willing to pivot rapidly on priorities.


• A Bachelor's or Master's degree in computer science, information security, or a related field is required.


• A minimum of 4 years of experience in cyber security is necessary.


• Proven experience conducting hands-on Cyber Security investigations into network, infrastructure, and application activity is required.


• A certification in one or more of the following is required: CompTIA Sec+, CYSA, CEH, CISSP, CISM, CISA, CCSP, Azure Fundamentals, GCIH, CISA, GCFA.


• Strong skills in various elements of incident response, including but not limited to computer intrusion investigations and digital forensics in enterprise environments, is essential.


• Experience in deploying and managing security controls, capabilities, and tools in large, complex environments is required.


• Excellent organization and planning skills, including time management, project coordination, and project management, are necessary.

Strong technical knowledge of security technologies and tools such as firewalls, IDS/IPS, DLP, GRC Tools, SIEM, Azure Cloud, Endpoint Controls, etc. is essential.

• Knowledge of healthcare regulations and standards such as HIPAA, HITECH, HITRUST, NIST 800-53, PCI DSS, etc., is ideal.


• Experience conducting risk assessments and developing risk management plans.


• Ability to analyze and interpret security data and reports.


• Excellent written and verbal communication skills.


• Strong analytical and problem-solving skills. 


• Stakeholder management skills and the ability to define and communicate the data strategy to both technical and non-technical audiences.


• Proven understanding of healthcare privacy and security practices

• Excellent communication skills, both written and spoken

WE’RE GOOD AT

• You will benefit from Evergreen Nephrology’s exceptional total rewards package, including competitive base pay with bonuses, paid time off starting at four weeks for full-time employees, 12 paid holidays per year, reimbursement for continuing medical education, 401k with match, health, dental, and vision insurance.


• We are proud to offer family-friendly policies that support paid parental leave and flexible work arrangements.


• We commit to a robust training and development program that starts with onboarding and continues throughout your career with Evergreen Nephrology


• As an inclusive and diverse team, you will collaborate with like-minded healthcare professionals who, like you, understand the importance and value of Evergreen Nephrology’s high-quality, value-based care model.

Common characteristics of the people who comprise Evergreen Nephrology:

Smart, detail-oriented, mission-driven, entrepreneurial, and operates with urgency