HealthDrive delivers on-site dentistry, optometry, podiatry, audiology, behavioral health, and primary care services to residents in long-term care, skilled nursing, and assisted living facilities. Each specialty offered by HealthDrive directly impacts on the quality of daily life for the deserving residents we serve. We connect patients in need of vital healthcare to doctors committed to dignity and excellence.

We are seeking a hands-on, experienced Security Engineer with a strong foundation in infrastructure and cloud security to join our growing IT and Security team. This role is ideal for a proactive professional who thrives in a hybrid environment of on-premise and cloud technologies, particularly Microsoft Azure. You will play a critical role in safeguarding sensitive patient data, ensuring regulatory compliance (HIPAA), and enhancing our overall security posture.

This is a technical, implementation-focused role that requires both strategic insight and the ability to execute. You will work closely with the Director of Infrastructure and collaborate with internal teams and external partners, including our Managed Security Service Provider (MSSP).

• Security Infrastructure Management: Design, deploy, and maintain security infrastructure including firewalls, mobile device management (MDM), identity platforms, email security, and cloud environments using tools such as Fortinet, Palo Alto, Cisco Meraki, Microsoft Active Directory, Office 365, and Azure.
• Infrastructure & Networking Setup: Support the design, implementation, and maintenance of secure, scalable network and server infrastructure, including routing, switching, VPNs, VLANs, DNS/DHCP, and system hardening across on-prem and cloud environments.
• Cloud Security: Implement and manage cloud security controls in platforms such as Microsoft Azure, focusing on identity and access management, network security, and data protection.
• Endpoint & Data Protection: Manage endpoint protection and data loss prevention (DLP) solutions such as SentinelOne, CrowdStrike, Proofpoint, or Microsoft Defender, ensuring robust protection against malware and data exfiltration.
• Vulnerability Management: Conduct regular vulnerability assessments using tools such as Tenable, Qualys, or SecureWorks, and coordinate remediation efforts with IT teams.
• Incident Response: Support incident detection, investigation, containment, and recovery in collaboration with internal teams and external partners.
• Security Automation: Develop scripts using PowerShell, Python, or Bash to automate routine security tasks and improve operational efficiency.
• Compliance & Risk Management: Ensure adherence to HIPAA and other regulatory requirements through policy enforcement and risk mitigation strategies.
• Documentation & Training: Maintain detailed documentation of security configurations and procedures. Provide training and guidance to business and IT staff on security best practices.
• Collaboration with MSSP: Act as a liaison with our Managed Security Service Provider to ensure effective threat monitoring and response.

Required:

• Bachelor’s degree in Cybersecurity, Computer Science, or a related field
• 5–10 years of experience in security engineering with a strong infrastructure focus
• Deep understanding of networking (TCP/IP, DNS, routing, firewalls)
• Hands-on experience with enterprise-grade firewalls and network security tools
• Proficiency in Microsoft Active Directory and Azure Active Directory
• Strong knowledge of Azure cloud security best practices
• Experience with endpoint protection and DLP technologies
• Excellent problem-solving, communication, and collaboration skills
• Ability to work independently and in cross-functional teams

Preferred:

• Security certifications (e.g., CISSP, CCNA Security, CompTIA Security+, Azure Security Engineer Associate)
• Experience with MDM solutions such as Cisco Meraki or Intune
• Proficiency in scripting (PowerShell, Python, Bash)
• Familiarity with SIEM/xDR platforms such as SecureWorks, Sentinel, or AlienVault
• Experience working with MSSPs and vulnerability detection & response platforms
• Knowledge of healthcare compliance standards (HIPAA, HITECH)