Senior Cyber Security Engineer-Data Security

Status: Full-Time 

Schedule: Hybrid, Monday-Friday, 8am-5pm

Location: Downtown Orlando

*On Call Required*

At Orlando Health, we are ordinary people with extraordinary individuality, working together to bring help, healing and hope to those we serve. By daily embodying our over 100-year legacy, we reinforce our reputation as a trusted and respected healthcare organization that delivers professional and compassionate care to our patients, families and communities. Through our award-winning hospitals and ERs, specialty institutes, urgent care centers, primary care practices and outpatient facilities, our 27,000+ team members serve communities that span Florida’s east to west coasts and beyond.

ORLANDO HEALTH - BENEFITS & PERKS:

All Inclusive Benefits (start day one)

• Student loan repayment, tuition reimbursement, FREE college education programs, retirement savings, paid paternity leave, fertility benefits, back up elder and childcare, pet insurance, PTO/Holidays, and more for full time and part time employees.

Forbes Recognizes Orlando Health as a Best-In-State Employer

• Forbes has named Orlando Health as one of America's Best-In-State Employers for 2024. Orlando Health is the top healthcare organization in the Metro Orlando area to make the prestigious list. "We are proud to be named once again as a best place to work," said Karen Frenier, VP (HR). "This achievement reflects our positive culture and efforts to ensure that all team members feel respected, supported and valued.

Employee-centric

• Orlando Health has been selected as one of the “Best Places to Work in Healthcare” by Modern Healthcare

The Senior Cyber Security Engineer provides technical leadership in the design, implementation, and operationalization of enterprise data security and data trust controls across structured and unstructured data environments. This role is responsible for protecting sensitive data throughout its lifecycle by leveraging Microsoft Purview, Varonis, and Imperva to deliver data discovery, classification, access governance, monitoring, and threat detection capabilities.

The engineer partners closely with Security Architecture, Data Platform, IAM, Cloud, Application, and SOC teams to embed data protection controls into cloud, on‑premises, and hybrid environments. This role drives data risk reduction initiatives, ensures regulatory compliance, and advances a data‑centric security model aligned with Zero Trust and least‑privilege principles.

Essential Functions

• Lead design, deployment, and optimization of security solutions for on-premises and cloud environments, ensuring alignment with security requirements and best practices.
• Lead the design, deployment, and optimization of enterprise data security solutions protecting both structured (databases, data warehouses) and unstructured data (file shares, SharePoint, OneDrive, Teams, SaaS platforms).
• Implement and operationalize data trust frameworks, ensuring sensitive data is continuously discovered, classified, protected, and monitored across its lifecycle.
• Translate business, regulatory, and privacy requirements into scalable data security architectures and technical controls.
• Engineer and manage Data Security capabilities, including:
  • Data discovery and classification
  • Sensitivity labels and information protection
  • Data Loss Prevention (DLP)
  • Insider risk and compliance integrations
• Integrate Purview with Microsoft 365, Azure, and cloud data platforms to enforce consistent data protection policies.Reduce data exposure risk by identifying over‑permissioned data and automating access remediation.
• Protect critical databases and applications from unauthorized access, data exfiltration, and misuse.
• Oversee security network tuning and optimization, proactively identifying vulnerabilities, optimizing system performance, and aligning with strategies conceived by Security Architect.
• Resolve complex security issues, ensuring continuous improvement of security protocols.
• Drive security standards development and tool/vendor selection to ensure effective security measures.
• Recommend and implement security enhancements to strengthen the organization's security posture.

• Collaborate with cross-functional teams (SOC, Resiliency, IAM, etc.) to develop and integrate comprehensive security strategies into infrastructure, operations, and incident response frameworks.
• High proficiency in network security concepts, such as security event correlation, TCP/IP concepts, DNS, firewall technologies, IPS/IDS, Endpoint protection, routers, switches, perimeter security devices, MFA, encryption and PKI as well as IPSEC and SSL based VPN solutions.
• Provide expertise in network concepts & protocols, and for Windows, Linux, macOS, and mobile OS, guiding the team on platform-specific security measures.
• Create and maintain automation scripts (Bash, PowerShell, Python) to streamline security tasks.
• Stay updated on emerging threats/trends, security laws, principles and practices and proactively adjust strategies.
• Serve as a subject matter expert and mentor to junior engineers, providing guidance on complex security practices, technical problem-solving, incident handling, and career development.
• Partner with project teams to ensure that security is designed in all technology initiatives.
• Aid in the development and refinement of security policies ensuring alignment with regulatory requirements and organizational goals.
• Ensure risk management and compliance initiatives are supported within TPRM validations.
• Drive continuous improvement in security operations and security culture.
• Assist teams in various security and privacy risk mitigation efforts, including incident response.
• Develop and document security standards, configurations and procedures.
• Conduct risk assessment and audit on the organization’s information technology infrastructure
• Ensure high availability and effective incident response by actively participating in the 24/7 On-Call rotation and supporting critical escalations as needed.
• Perform other related duties as required.
• Maintain reasonably regular, punctual attendance consistent with Orlando Health policies, the ADA, FMLA and other federal, state and local standards.
• Maintain compliance with all Orlando Health policies and procedures.

Education/Training

Bachelor's degree preferred. Associates degree or equivalent and five (5) years of directly related experience may substitue for the Bachelor's degree (in addition to the requirements listed in the Experience section).

Licensure/Certification

Required: Two or more of the following Security or Network related certification: (SC-200, MS-500, AZ-500, AZ-700, AZ-800, Security+, CISM, CISSP / GIAC (500+ series) / SSCP / PCNSE/Linux+ / or similar) *or ability to obtain within 180 days. Microsoft Purview, Varonis, or Imperva certifications (strongly preferred)

Experience

Five (5) years’ experience in Information Technology, including three (3) years of IT Security/Engineering related experience.