Cybersecurity Engineer

Laboratory Corporation of America (LCA) is seeking a Cybersecurity Engineer to join the Office of Information Security, reporting to the Director of Security Engineering. The Cybersecurity Engineer will have particular strengths in Microsoft technologies, but will work across a variety of technical disciplines and partner with various teams to ensure the enterprise security strategy is carried out.

Responsibilities:

• Lead and participate in technical security reviews of applications and infrastructure:
• Collaborate with other IT teams to understand the design and document any risks.
• Recommend and drive the adoption of technical controls to strengthen security posture.
• Partner with other teams to ensure all relevant security controls are applied to Microsoft 365 services, including:
• Microsoft Entra ID (formerly Azure AD)
• Using Microsoft Purview to identify and protect sensitive data.
• Deploying and/or modifying Microsoft Intune policies to secure mobile, Windows, and macOS endpoints.
• Deploying and/or modifying conditional access policies.
• Perform administration and maintenance duties on security-specific platforms (Phishing Protection, Vulnerability Management, DLP, and related).
• Collaborate with other team members to develop technical security standards and best practices across various security domains; socialize and evangelize to other IT teams.
• Conduct evaluations of vendor security platforms; document results.
• Articulate common practices and tactics used by malicious software and threat actors, along with associated remediation, to other IT teams.
• Provide level 3 support of security incidents as required.
• Assist members of Governance, Risk, and Compliance to answer technical questions from auditors and clients.
• Confirm safe and secure integration of M&A infrastructure and services, especially related to Microsoft technologies and platforms.
• In partnership with the broader Office of Information Security, research and recommend emerging security technologies/tools to address current and future threats.
• Interact and manage vendors, outsourcers, and contractors regarding security products and services.
• Represent the interests of security and risk to other technical staff and business stakeholders.

• Minimum 5 years of experience in cybersecurity.
• Experience in securing common M365 services including Exchange Online, SharePoint Online, Teams, and OneDrive.
• Hands-on experience working with a major public cloud platform such as AWS, Azure, or GCP.
• Familiarity with Azure security services.
• Familiarity with Powershell scripting and use of Power BI.
• Hands-on experience in implementing and supporting various security platforms (firewall, proxy, DLP, SIEM, endpoint, vulnerability scanning, PKI, DoS prevention, MFA, etc.).
• Solid understanding of incident handling best practices.
• Proven project management and organizational skills, specifically managing multiple, concurrent projects.
• Strong interpersonal, written, and oral communication skills.
• Highly self-motivated and directed professional, with keen attention to detail.
• Excellent analytical, problem-solving and decision-making abilities.
• Able to effectively prioritize tasks in a high-pressure environment.
• Strong customer service and solution-focused orientation.

• Bachelor's or Master's Degree in Information Systems, Computer Science or related discipline is highly desired.
• CISSP certification desired.
• Knowledge of firewall and network segmentation concepts.
• Familiarity with scripting - Python, shell scripting.
• Familiarity with threat analysis models such as the cyber kill Chain and the MITRE ATT&CK framework.
• Familiarity with identity-centric zero trust network access (ZTNA) solutions such as Microsoft Entra Private Access.
• Previous experience in securing medical and related instrumentation devices.
• Understanding of industry standards and compliance requirements related to cybersecurity and cloud computing-especially ISO 27001, HIPAA, and PCI DSS.
• Familiarity with NIST and/or CIS benchmarks.