Staff Security Engineer (Forensic Engineer)
4 Months ago • 8-10 Years
Cyber Security
Job Description
Aledade is seeking a Staff Security Engineer specializing in Forensic Engineering. This role is crucial for protecting sensitive healthcare data and ensuring regulatory compliance. The engineer will lead complex digital forensic investigations, support incident response, and enhance forensic readiness in a cloud-native environment. Key responsibilities include investigating security incidents involving PHI/PII across various platforms, performing forensic analysis to determine breach scope and root cause, developing investigation procedures and toolkits, and collaborating with Legal, Privacy, and Compliance teams on HIPAA-related matters. The role also involves producing detailed investigation reports for stakeholders.
Good To Have:
- Cloud forensic investigations (AWS, Azure, GCP)
- Container forensics (Kubernetes)
- Experience with EnCase, Velociraptor, X-Ways, Volatility
- HIPAA, HITECH knowledge
- OS, file systems, memory structures, log analysis
- Scripting/automation (Python, PowerShell, Bash)
- Communication skills for diverse audiences
- Certifications: GCFA, GCFE, EnCE, CHFI
- HITRUST, SOC 2, ISO 27001 knowledge
- Threat hunting or malware analysis background
Must Have:
- 8+ years in digital forensics, incident response, or security engineering
- Experience in SaaS or healthcare preferred
- BS/BTech in CS, IT, Cybersecurity or 10 years security experience
- Lead security incident investigations (PHI/PII)
- Perform forensic analysis
- Develop investigation procedures
- Partner with Legal, Privacy, Compliance
- Produce detailed investigation reports
Perks:
- Flexible work schedules
- Remote work
- Health, dental, vision insurance (80% paid for employee and dependents)
- 21 days PTO in first year
- 2 paid volunteer days
- 11 paid holidays
- 12 weeks paid parental leave
- 6 weeks paid sabbatical after 6 years
- Educational Assistant Program
- Clinical Employee Reimbursement Program
- 401(k) with 4% match
- Stock options
The Staff Security Engineer - Forensic Engineer at Aledade will play a critical role in protecting sensitive healthcare data and ensuring compliance with regulatory requirements. You will lead complex digital forensic investigations, support incident response efforts, and enhance our forensic readiness across a cloud-native environment. This is a high-impact role that supports our mission to safeguard patient privacy and clinical data while maintaining operational integrity.
Primary Duties:
- Lead investigations into security incidents involving PHI/PII across endpoints, networks, SaaS platforms, and cloud infrastructure.
- Perform forensic analysis to determine the scope, impact, and root cause of security breaches or data loss events.
- Develop and maintain investigation procedures, forensic toolkits, and evidence handling practices aligned with industry and regulatory standards.
- Partner with Legal, Privacy, and Compliance teams on HIPAA-related investigations and e-discovery matters.
- Produce detailed investigation reports for internal stakeholders, regulators, and executive leadership.
Minimum Qualifications:
- BS/BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 10 years security domain experience without degree.
- 8+ years of experience in digital forensics, incident response, or security engineering, preferably in SaaS or healthcare.
Preferred Knowledge, Skills and/or Abilities:
- Domain Specific Experience: Digital Forensics
- Strong expertise in cloud forensic investigations (AWS, Azure, or GCP), including container environments (e.g., Kubernetes).
- Hands-on experience with tools such as EnCase, Velociraptor, X-Ways, Volatility, or similar.
- Understanding of HIPAA, HITECH, and other relevant healthcare security and privacy standards.
- Solid knowledge of operating systems, file systems, memory structures, and log analysis.
- Proficiency in scripting and automation (e.g., Python, PowerShell, Bash) to streamline investigations.
- Strong written and verbal communication skills; able to present complex findings to diverse audiences.
- Relevant certifications preferred: GCFA, GCFE, EnCE, CHFI, or similar.
- Knowledge of HITRUST, SOC 2, or ISO 27001 control frameworks.
- Background in threat hunting or malware analysis.
Who We Are:
Aledade, a public benefit corporation, exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014, and since then, we've become the largest network of independent primary care in the country - helping practices, health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally, by creating value-based contracts across a wide variety of health plans, we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care, aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients, good for practices and good for society - and if you're eager to join a collaborative, inclusive and remote-first culture - you've come to the right place.
What Does This Mean for You?
At Aledade, you will be part of a creative culture that is driven by a passion for tackling complex issues with respect, open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences, interests, backgrounds, beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission.
In addition to time off to support work-life balance and enjoyment, we offer the following comprehensive benefits package designed for the overall well-being of our team members:
Flexible work schedules and the ability to work remotely are available for many roles
Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
Robust time-off plan (21 days of PTO in your first year)
Two paid volunteer days and 11 paid holidays
12 weeks paid parental leave for all new parents
Six weeks paid sabbatical after six years of service
Educational Assistant Program and Clinical Employee Reimbursement Program
401(k) with up to 4% match
Stock options
And much more!
At Aledade, we don’t just accept differences, we celebrate them! We strive to attract, develop and retain highly qualified individuals representing the diverse communities where we live and work. Aledade is committed to creating a diverse environment and is proud to be an equal opportunity employer. Employment policies and decisions at Aledade are based on merit, qualifications, performance and business needs. All qualified candidates will receive consideration for employment without regard to age, race, color, national origin, gender (including pregnancy, childbirth or medical conditions related to pregnancy or childbirth), gender identity or expression, religion, physical or mental disability, medical condition, legally protected genetic information, marital status, veteran status, or sexual orientation.
Privacy Policy: By applying for this job, you agree to Aledade's Applicant Privacy Policy available at https://www.aledade.com/privacy-policy-applicants
Set alerts for more jobs like Staff Security Engineer (Forensic Engineer)
Set alerts for new jobs by Aledade
Set alerts for new Cyber Security jobs in United States
Set alerts for new jobs in United States
Set alerts for Cyber Security (Remote) jobs
