Cybersecurity Engineer

Hi. We’re Hummingbird.

We’re elevating patient access so patients can get healthcare how, when, and where they need it. We partner with healthcare systems to transform how patients access care, enabling their providers to focus on what matters most – caring for patients. By managing patient access as a technology-enabled service, we help health systems stabilize costs and improve patient experience while creating good jobs that attract and retain talent in the industry. Our team of experts is obsessed with the connection between the people, processes, and technology that make healthcare organizations hum. Join us and help build the healthcare experience we want for our communities, our families, and ourselves.

Summary

Responsibilities

Employment Eligibility: Candidates must be legally authorized to work in the United States without sponsorship.

FLSA Status:Exempt

Compensation:$104,000 - $127,250 per year less statutory deductions

Work Location:This position is remote. You must work from a location within the United States with consistent internet service.

Travel:2-3 times per year for client visits, training, and company events

Benefits Eligible:Yes

People Manager:No

Cybersecurity Engineering

• Design, implement, and maintain effective cybersecurity controls, architectures, and best practices within Microsoft 365, Azure, and cloud-based environments to protect systems, networks, and data.
• Collaborate with engineering teams to integrate new security technologies aligned with organizational requirements.
• Support vendor relationships, ensuring project accountability and successful security project delivery.
• Contribute to the design and improvement of security architectures, sharing expertise within the team and across departments.

Identity Access Management

• Implement and manage Identity and Access Management (IAM) systems to ensure secure user access, including role-based access control and multi-factor authentication.
• Support IAM tools, including Privileged Access Management (PAM), Identity Governance and Administration (IGA), Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Certificate Management. Maintain IAM policies and processes, automating user provisioning and deprovisioning workflows, where possible, across internal and client environments.
• Provide technical support for escalated identity management issues, developing long-term resolutions.
• Provide guidance to junior team members on IAM implementation and best practices.

Cyber-Defense

• Conduct and manage vulnerability assessments, penetration tests, and risk analyses to identify and address potential security threats.
• Support incident detection and response efforts, including collaboration with IT to resolve security breaches.
• Implement security hardening measures across systems and applications to prevent threats.
• Partner with IT operations to refine disaster recovery plans and ensure business continuity.
• Monitor security metrics and KPIs to continuously improve governance and compliance efforts.
• Assist in developing and delivering cybersecurity awareness training to employees.

Process and Policy Collaboration

• Ensure compliance with HIPAA and other regulatory standards by helping develop and enforce security policies and procedures.
• Collaborate with compliance and operational teams to integrate security requirements into broader company policies.
• Maintain security documentation and update it as regulations and business needs evolve.
• Partner with stakeholders to promote security governance and best practices within Hummingbird and external partners.

Required & Desired Skills

Required Skills and Experience

• 3+ years of experience in cybersecurity engineering, including hands-on experience with Microsoft 365, Azure, and Intune environments.
• Proven experience implementing and managing IAM systems, including role-based access control and multi-factor authentication.
• Strong understanding of healthcare data protection regulations such as HIPAA and HITECH and expertise in developing security policies in a healthcare environment.
• Experience in vulnerability assessments, risk management, and leading incident response activities.
• Ability to work independently, mentor junior team members, and collaborate across departments to implement secure solutions.

Desired Skills and Experience

• Relevant certifications such as CISSP, CEH, or OSCP
• Experience with automation tools for IAM provisioning and management workflows.
• Knowledge of advanced cloud security strategies and architectures.
• Experience implementing large-scale security systems in cloud environments.
• Leadership experience in managing cybersecurity projects and working with external vendors.

The Hummingbird Approach
We value a team that brings diverse perspectives and experiences to the work we do. While there are many ways to do this, people who are successful at Hummingbird:

• Lead with Respect by valuing kindness and working to actively foster an environment of inclusion and respect.
• Embrace Growth and seek out learning and growth for themselves and support those around them in their growth journey. They bring curiosity and an openness to innovation to all their interactions.
• Bring a Win Together mentality by approaching conflict directly, listening carefully, and seeking to understand. They problem-solve with the goal of finding successes, not trade-offs, for all involved.

Equal Opportunity Statement
Hummingbird Healthcare is an equal opportunity employer committed to diversity and inclusion. We do not discriminate based on race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other protected characteristic. We value the talents of individuals from all backgrounds and actively seek a diverse workforce.

Our mission is to provide a fair and inclusive recruitment process for everyone, and reasonable accommodations are available to any applicant who may need them. Please reach out to [email protected] to request accommodations and we’d be happy to chat.