Cybersecurity Engineer III Job at Banner Health in Annapolis

Cybersecurity Engineer III – Banner Health

Join to apply for the Cybersecurity Engineer III role at Banner Health.

Estimated Pay Range: $50.12 - $83.54 / hour, based on location, education, & experience. In accordance with State Pay Transparency Rules.

Department Name: IT Data Protection-Corp
Work Shift: Day
Job Category: Information Technology

Schedule: Monday - Friday 8am - 5pm

The Cybersecurity Network Engineering Team at Banner Health plays a critical role in safeguarding one of the most vital sectors—healthcare. As part of Banner Health’s broader cybersecurity and business strategy, this team is dedicated to detecting, mitigating, and preventing network threats before they can impact patient care or sensitive data. By leveraging advanced technologies and modern security frameworks, the department ensures that the organization’s digital infrastructure remains resilient, compliant, and aligned with the mission of delivering safe, uninterrupted healthcare services. Team members are key contributors to implementing the organization’s Zero Trust Network Access (ZTNA) vision, engineering secure solutions that protect both internal and external access to systems and applications.

A day in the life of a Cybersecurity Network Engineer at Banner Health is dynamic and impactful. You’ll collaborate with cross-functional teams to analyze network traffic, fine-tune security controls, and respond to real-time detections that help prevent potential cyber incidents. Your toolkit will include industry-leading technologies such as Zscaler, Cloud Browser Isolation (CBI), Web Application Firewalls (WAFs), IDS/IPS, and API security platforms, all essential to defending against evolving threats. Beyond operational responsibilities, you’ll design and implement new security architectures, contribute to the development of secure access models, and ensure certificate management and governance are seamlessly executed.

Position Summary

• Lead the designs, develop, configure, implement, tune, and maintain solutions, and resolve technical and business issues related to cybersecurity threat & vulnerability management, identity management, security operations center, forensics, and data protection.
• Work with Cybersecurity Architects to execute strategic cyber initiatives and evaluate security components of the network, applications, and end‑user devices.
• Guide new systems to meet regulatory and technical standards, and lead root‑cause analysis on cyber systems.
• Collaborate with other IT organizations to ensure cyber products are working and integrating with non‑cyber environments.

Core Functions

• Proactively initiates the design and implementation of cybersecurity solutions, upgrades, enhancements, while looking forward three to five years.
• Leads in providing technical expertise and support for cybersecurity solutions, including operational aspects of the software.
• Serves as subject matter expert in the design, implementation, and compliance of secure baseline configurations for applications and infrastructure components.
• Proactively initiates technical assessments of systems and applications to ensure compliance with policy, standards and regulations.
• Authors new cybersecurity standards and procedures, leads revision of existing policies.
• Serves as technical leader for cybersecurity projects, including scoping, budgeting, work breakdown, and operational handoff.
• Identifies threats, develops defense measures, evaluates system changes for security implications, and provides support to resolve difficult cybersecurity issues.
• Manages cybersecurity across multiple departments system-wide, working closely with cross‑functional IT teams.

Minimum Qualifications

• Bachelor’s Degree in Computer Science, Information Security, Information Systems, or related field, or equivalent.
• Seven plus years of experience in enterprise‑scale information security engineering, preferably in healthcare.
• Three plus years’ experience in a healthcare environment or equivalent.
• Experience with IT operations, automation of security processes, coding and scripting languages, documentation and use case development.
• Expertise in regulatory and compliance mandates, including HIPAA, HITECH, PCI, Sarbanes‑Oxley.
• Advanced knowledge of Security Engineering Principles, risk management, resilience, vulnerability management, NIST, MITRE ATT&CK, etc.
• Proven experience with Data Loss Prevention, EDR, AntiVirus, Perimeter services, threat systems, SIEM, CASB, CLOUD Security, etc.
• Strong analytical, communication, and mentoring skills; ability to balance project workloads with customer support and on‑call demands.

Preferred Qualifications

• Certifications: SSCP, HCISPP, CompTIA Security+, CISSP (ISSEP), CEH, SANS GIAC, or CISA.
• Four plus years of System Administration or IT Operations experience, or risk management/GRC experience in healthcare.
• Five plus years’ experience in healthcare or equivalent combination.

Anticipated Closing Window: 2026-02-13

EEO Statement: EEO/Disabled/Veterans. Our organization supports a drug‑free work environment.

Privacy Policy