Cybersecurity Engineer II

Overview

Join to apply for the Cybersecurity Engineer II role at Nordic Global .

Nordic is gearing up for an exciting new project and anticipates opening a role that could be a great fit for Cybersecurity professionals. While the position isn't officially open yet, we are building a pipeline of interested candidates who want to be among the first to hear when it is.

If you are curious, motivated, and looking to be part of something impactful, express interest now to be the first to know when the role goes live and to help us get to know you early.

The Cybersecurity Engineer II responsibilities include monitoring, detecting, investigating, and responding to security incidents within our organization. The ideal candidate will have an intermediate/working knowledge of incident detection, analysis, response, and threat hunting, and a solid understanding of cybersecurity principles and technologies. Provide support and guidance to IT for all customers and affiliate entities. Document work in incident reports, policies, standards, network security diagrams, playbooks, and knowledge base articles in support of PCI-DSS, HITRUST, HIPAA, and cybersecurity due-diligence and due care.

Nordic serves the healthcare industry and aims to empower healthcare providers to leverage technology and realize digital transformation. All Nordic staff embrace Nordic’s maxims and mission to serve our customers who care for us.

• Monitoring and Detection
  Monitor security alerts and events from SIEM, antivirus, IDS, log analysis tools, and cloud environments to identify potential security incidents.
• Conduct analysis of security events to determine nature, scope, and potential impact on systems and data.
• Stay informed on threats, vulnerabilities, and trends to enhance detection and response capabilities by monitoring government, healthcare, and industry groups.

• Incident Response
  Analyze incidents escalated from junior analysts to determine root cause, impact, and scope. Execute containment and mitigation strategies, coordinating with relevant stakeholders. Provide guidance to junior analysts during investigations. Liaise with internal stakeholders and external parties as required. Prepare detailed incident reports and contribute to incident response playbooks and SOPs.

• Threat Hunting and Intelligence Analysis
  Proactively hunt for threats using advanced tools and techniques. Analyze threat intelligence data to identify emerging threats and vulnerabilities and inform defense measures.

• Support and Collaboration
  Collaborate with SOC analysts and other IT security teams to support incident response. Assist in security awareness efforts and work with non-IT staff on cybersecurity issues. Help implement security measures based on identified threats.

• Intermediate/working knowledge of incident response and handling methodologies.
• Intermediate/working knowledge of security threats and vulnerabilities (e.g., common attack types and exploits).
• Intermediate/working knowledge of adversarial tactics, techniques, and procedures.
• Intermediate/working understanding of threat hunting.
• Intermediate/working knowledge of network security concepts and defense-in-depth.
• Knowledge of cloud technologies (AWS, Azure, GCP) security features and tools.
• Knowledge of intrusion detection methodologies and techniques.
• Intermediate/working knowledge of IT security principles, firewalls, encryption, and related controls.
• Intermediate/working knowledge of system administration, network, and OS hardening.
• Intermediate/working knowledge of Windows/Unix ports, services, and scripting (e.g., Bash, PowerShell).
• Knowledge of networking concepts, protocols, OSI model, and network security methodologies; familiarity with tools such as Wireshark or tcpdump.
• Knowledge of IDS/IPS tools and access control methods.
• Basic knowledge of applicable laws and standards (HIPAA, PCI-DSS, GDPR, etc.) and security guidelines (DISA STIG, CIS controls).

Generally requires a Bachelor's degree with 5 years of related experience, a Master's degree with 3 years of related experience, or 8 years of related experience with no degree.

Licensure/Certifications Preferred: CompTIA Security+, CompTIA Network+, CISSP, CEH, SANS GPEN, SANS GCIH, Tenable.

Nordic is an equal opportunity employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, marital or veteran status, or any other protected status under applicable laws. We encourage individuals of all backgrounds to apply, including women, minorities, individuals with disabilities, and veterans.