Banner Health is hiring: Cybersecurity Engineer III in Saint Paul

2 days ago Be among the first 25 applicants

Estimated Pay Range: $50.12 - $83.54 / hour, based on location, education, & experience.

Department Name: IT Data Protection-Corp

Work Shift: Day

Job Category: Information Technology

In accordance with State Pay Transparency Rules. Banner Health was named to Fortune’s Most Innovative Companies in America 2025 list for the third consecutive year and named to Newsweek's list of Most Trustworthy Companies in America for the second year in a row. We’re proud to be recognized for our commitment to the latest health care advancements and excellent patient care.

Team Overview

The Cybersecurity Network Engineering Team at Banner Health plays a critical role in safeguarding one of the most vital sectors—healthcare. As part of Banner Health’s broader cybersecurity and business strategy, this team is dedicated to detecting, mitigating, and preventing network threats before they can impact patient care or sensitive data. By leveraging advanced technologies and modern security frameworks, the department ensures that the organization’s digital infrastructure remains resilient, compliant, and aligned with the mission of delivering safe, uninterrupted healthcare services. Team members are key contributors to implementing the organization’s Zero Trust Network Access (ZTNA) vision, engineering secure solutions that protect both internal and external access to systems and applications.

A Day in the Life

You’ll collaborate with cross‑functional teams to analyze network traffic, fine‑tune security controls, and respond to real‑time detections that help prevent potential cyber incidents. Your toolkit will include industry‑leading technologies such as Zscaler, Cloud Browser Isolation (CBI), Web Application Firewalls (WAFs), IDS/IPS, and API security platforms, all essential to defending against evolving threats. Beyond operational responsibilities, you’ll design and implement new security architectures, contribute to the development of secure access models, and ensure certificate management and governance are seamlessly executed. Each day presents the opportunity to enhance both your technical expertise and Banner Health’s cybersecurity maturity—protecting what matters most: patient trust and safety.

Schedule: Monday - Friday 8am - 5pm

Position Summary: This position leads the design, development, configuration, implementation, tuning, and maintenance of solutions, resolving technical and business issues related to cybersecurity threat & vulnerability management, identity management, security operations center, forensics, and data protection. Cybersecurity Engineers work with Cybersecurity Architects to execute strategic cyber initiatives, evaluate security components of networks, applications, and end‑user devices, and provide guidance to ensure new systems meet regulatory and technical standards. Cybersecurity Engineers lead root‑cause analysis on cyber systems to identify improvement opportunities when failures occur. They work closely with other IT organizations to ensure cyber products are working and integrating with non‑cyber environments.

Core Functions

• Proactively initiates the design and implementation of cybersecurity solutions, upgrades, and enhancements, looking forward three to five years.
• Leads in providing technical expertise and support for cybersecurity solutions, including operational aspects of the software.
• Serves as subject matter expert in the design, implementation, and compliance of secure baseline configurations for applications and infrastructure components.
• Proactively initiates technical assessments of systems and applications to ensure compliance with policy, standards, and regulations.
• Authors new cybersecurity standards and procedures and leads the revision of existing cybersecurity policies, standards, and procedures as needed.
• Serves as technical leader for cybersecurity projects, including the development of project scope requirements, budgeting, work breakdown, and operational handoff.
• Identifies threats and develops suitable defense measures, evaluates system changes for security implications, and recommends enhancements, research, and drafting cybersecurity white papers, while providing first‑class support to the cybersecurity operations staff for resolving difficult issues.
• Under limited direction, responsible for cybersecurity across multiple departments system‑wide, requiring interaction at all levels of staff and management. Works closely on cross‑functional IT teams and leads indirect leadership across other cyber resources, articulating complex security functions into simple business solutions.

Minimum Qualifications

• Strong knowledge of business, information security, and/or computer science, obtained through a bachelor’s degree in Computer Science, Information Security, Information Systems, or related field.
• Seven plus years of enterprise‑scale information security engineering experience, preferably in healthcare.
• Three plus years of experience in a healthcare environment or an equivalent combination of education, technical, business, and healthcare experience.
• Experience with IT operations, automation of security processes, coding and scripting languages, documentation of security processes, and use case development.
• Experience assessing cyber products, vendor selection, defining requirements, and contractual documentation development.
• Expert understanding of regulatory and compliance mandates such as HIPAA, HITECH, PCI, and Sarbanes‑Oxley.
• Experience planning, designing, implementing, operating, maintaining, and managing the lifecycle of cybersecurity solutions.
• Advanced knowledge of Security Engineering Principles, risk management, resilience, vulnerability management, information security, NIST, and MITRE ATT&CK.
• Advanced expertise in cyber products supporting data loss prevention, EDR, antivirus, perimeter services, threat systems, cyber platform analytics, SIEM, CASB, cloud security.
• Proven cloud security experience.
• Excellent verbal and written communication skills, ability to think quickly under difficult conditions, critical decision making, and analytical skills.
• Mentoring skills and independent judgment.

Preferred Qualifications

• Certifications in two or more of the following: SSCP, HCISPP, CompTIA Security+, CISSP – Engineering (ISSEP), CEH, SANS GIAC, or CISA.
• Four plus years as a system administrator or IT operations professional, or four plus years in risk management or GRC experience in healthcare.
• Five plus years’ experience in a healthcare environment or an equivalent combination.

Anticipated Closing Window: 2026-02-13

EEO Statement: EEO/Disabled/Veterans

Our organization supports a drug‑free work environment.

Privacy Policy: Privacy Policy

Referrals increase your chances of interviewing at Banner Health by 2x.

Get notified about new Cyber Security Engineer jobs in St Paul, MN.

Seniority level

• Mid‑Senior level

Employment type

• Full‑time

Job function

• Information Technology

Industries

• Hospitals and Health Care