Security Engineer & Analyst

About the position Responsibilities • Architect and maintain security posture across Azure, AWS, and Microsoft 365/Entra ID environments. • Design and implement Zero/Low Implicit Trust architecture with Conditional Access policies, MFA enforcement, and Privileged Identity Management (PIM). • Configure and maintain Azure Security Center, AWS Security Hub, and native cloud security controls. • Implement secure baselines for cloud workloads, storage, and networking components. • Manage identity lifecycle, RBAC, and least-privilege access models across cloud and SaaS platforms. • Administer endpoint protection platforms (EDR/XDR) across Windows 11 and macOS devices. • Deploy and maintain Intune policies for Windows endpoints including BitLocker encryption, Windows Defender, and compliance baselines. • Implement macOS security controls using MDM solutions (Jamf/Kandji or Intune for Mac). • Secure shared laboratory and manufacturing endpoints using kiosk modes and restricted profiles. • Orchestrate patch management, software deployment, and configuration drift monitoring for endpoints. • Design and tune SIEM alerting rules (e.g., Azure Sentinel, Splunk, or similar) to minimize false positives while detecting critical events. • Lead incident response activities including communication with MDR vendor, triage, forensics, containment, eradication, and recovery. • Conduct threat hunting exercises and security investigations based on logs, alerts, and intelligence. • Maintain incident response runbooks and coordinate tabletop exercises. • Generate security metrics, KPIs, and executive-level reporting. • Support FDA, SOC 2, CMMC, and GxP audit activities through evidence collection, documentation, and remediation tracking. • Perform vulnerability assessments and coordinate remediation efforts with relevant teams. • Conduct vendor security assessments and manage third-party risk. • Develop and maintain security policies, standards, and procedures. • Partner with QA/Compliance teams on 21 CFR Part 11 and data integrity requirements. Requirements • Endpoint Management: Strong Intune experience for Windows; familiarity with macOS MDM solutions (e.g. Intune, Jamf, or similar). • Security Tools: Hands-on experience with EDR/XDR platforms such as Huntress, CrowdStrike, Defender for Endpoint, or SentinelOne. • SIEM/Monitoring: Experience with Azure Sentinel, Splunk, or similar platforms, including log analysis and correlation. • Scripting: Proficiency in PowerShell and Python for security automation and orchestration. • Networking: Understanding of network segmentation, firewalls, VPNs, and zero-trust principles. • Clear technical writing skills for documentation, procedures, and audit artifacts. • Ability to translate security risks into business impact for non-technical stakeholders. • Strong problem-solving skills with high attention to detail. • Self-motivated with the ability to work independently in a hybrid environment. Nice-to-haves • 2+ years in biotech, pharma, medical device, or healthcare IT environments • Familiarity with FDA 21 CFR Part 11, EU Annex 11, NIST frameworks, CMMC, and/or SOC 2 • AZ-500, SC-200, SC-300, AWS Security Specialty, CISSP, CCSP, or comparable security certifications • Experience with Infrastructure as Code (e.g., Terraform, ARM templates) • Container security experience (e.g., Docker, EC2-based workloads) • DevSecOps practices and CI/CD pipeline security • Experience with Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB) solutions Benefits • Stock bonus • Health, Dental, and Vision premiums fully covered by Lumen • 401k match up to 4% • Industry-leading PTO policy, paid refresh days, and paid year-end holiday office closure • Monthly wellness program to support your health and well-being • Free onsite parking or public transportation subsidies • Comprehensive parental leave policies • Life insurance, short & long-term disability, and access to employee assistance programs Apply tot his job