Providence
Principal Security Engineer IS, Cyber Threat Intelligence
Providence, Portland, Oregon, United States, 97204
Principal Security Engineer IS, Cyber Threat Intelligence
Providence
is seeking a seasoned Principal Security Engineer with deep expertise in Cyber Threat Intelligence. In this pivotal role you’ll be the strategic force behind identifying and neutralizing emerging threats, safeguarding critical systems, and empowering Providence’s Global Security Operations Center. Your insights will directly inform risk strategies and guide executive decision‑making, making you a key player in protecting millions of lives through secure healthcare technology.
Responsibilities
Conduct in‑depth analysis and research on cyber threats, identify threat actors, motivations, tactics, techniques, and procedures (TTPs) and provide insights on their potential impact.
Prepare and deliver well‑researched, impactful analytic findings that combine self‑driven research and team threat hunting efforts to convey cyber threat risk and impact to technical and non‑technical stakeholders, including executives.
Mentor teammates on leveraging advanced analytic toolsets such as Structured Analytic Techniques.
Classify, categorize, and analyze malware and threats; translate findings into actionable detections using frameworks such as MITRE ATT&CK.
Maintain broad and deep knowledge of the healthcare industry threat landscape, including emerging threats and trends that may impact the organization.
Collaborate with internal teams to provide timely and actionable intelligence, aligned with operational needs, supporting CTI, CIRT, Attack Surface Management, and other cybersecurity initiatives.
Develop and maintain threat profiles with tactical intelligence to enhance detection engineering and threat hunting operations.
Perform root cause analysis and recommend proactive measures to prevent cyber intrusions.
Continuously update and refine existing threat intelligence processes and methodologies to keep the organization at the forefront of cyber defense.
Stay informed about the latest trends, tools, and techniques in threat intelligence and incorporate best practices into daily operations.
Monitor and assess emerging technologies, such as AI and machine learning, to augment threat detection, triage, and analysis.
Required Qualifications
Bachelor’s Degree in Computer Engineering, Computer Science, Mathematics, Engineering, or equivalent education/experience.
Upon hire: CISSP, CEH, or an equivalent certification.
8+ years of related experience.
Experience designing security controls and countermeasures for operating systems, databases, applications, web services, user devices, and wireless networks.
Preferred Qualifications
Master’s Degree in a relevant field.
Experience in a healthcare environment.
8+ years of cyber threat intelligence analysis experience.
Experience conducting in‑depth threat analysis, including identifying threat actors’ motivations, intent, and TTPs.
Skilled in correlating intelligence from multiple sources to assess organizational impact.
Familiarity with reverse engineering and categorizing malware.
Strong knowledge of healthcare cybersecurity risks: ransomware, phishing, supply‑chain vulnerabilities.
Demonstrated experience applying frameworks such as MITRE ATT&CK, Cyber Kill Chain, Diamond Model, etc.
Experience working cross‑functionally with CIRT/IR teams, vulnerability management, and SOC operations.
Experience with insider threat teams is a plus.
Capability to develop threat profiles and integrate tactical intelligence into detection rules.
Ability to influence risk‑based decision‑making with clear, concise reporting.
Salary Range by Location
California: Los Angeles and Irvine – Min: $71.23 / hr, Max: $121.29 / hr
Oregon: Portland Service Area – Min: $68.33 / hr, Max: $116.36 / hr
Washington: Seattle, Renton, Redmond – Min: $71.23 / hr, Max: $121.29 / hr
Washington: Vancouver – Min: $68.33 / hr, Max: $116.36 / hr
Benefits Our best‑in‑class benefits are uniquely designed to support you and your family in staying well, growing professionally, and achieving financial security. Providence offers a comprehensive benefits package including a 401(k) with employer match, health, dental, vision care, life and disability insurance, paid parental leave, vacation, holidays, wellness resources, and more. Learn more at
Providence Benefits .
EEO Statement Providence is an equal‑opportunity employer. We are committed to an inclusive workforce free from discrimination and harassment on the basis of race, color, gender, disability, veteran status, religion, age, sexual identity, marital status, or any other basis prohibited by law.
Job Details
Requisition ID: 401760
Job Category: Information Security
Job Function: Information Technology
Job Schedule: Full time
Job Shift: Day
Career Track: Business Professional
Department: 4011 CYBERSECURITY
Address: CA Irvine 15480 Laguna Canyon Rd
Work Location: Providence System Offices Discovery Park‑Irvine
Workplace Type: Hybrid
Pay Range: $See Job Posting – $See Job Posting
#J-18808-Ljbffr
is seeking a seasoned Principal Security Engineer with deep expertise in Cyber Threat Intelligence. In this pivotal role you’ll be the strategic force behind identifying and neutralizing emerging threats, safeguarding critical systems, and empowering Providence’s Global Security Operations Center. Your insights will directly inform risk strategies and guide executive decision‑making, making you a key player in protecting millions of lives through secure healthcare technology.
Responsibilities
Conduct in‑depth analysis and research on cyber threats, identify threat actors, motivations, tactics, techniques, and procedures (TTPs) and provide insights on their potential impact.
Prepare and deliver well‑researched, impactful analytic findings that combine self‑driven research and team threat hunting efforts to convey cyber threat risk and impact to technical and non‑technical stakeholders, including executives.
Mentor teammates on leveraging advanced analytic toolsets such as Structured Analytic Techniques.
Classify, categorize, and analyze malware and threats; translate findings into actionable detections using frameworks such as MITRE ATT&CK.
Maintain broad and deep knowledge of the healthcare industry threat landscape, including emerging threats and trends that may impact the organization.
Collaborate with internal teams to provide timely and actionable intelligence, aligned with operational needs, supporting CTI, CIRT, Attack Surface Management, and other cybersecurity initiatives.
Develop and maintain threat profiles with tactical intelligence to enhance detection engineering and threat hunting operations.
Perform root cause analysis and recommend proactive measures to prevent cyber intrusions.
Continuously update and refine existing threat intelligence processes and methodologies to keep the organization at the forefront of cyber defense.
Stay informed about the latest trends, tools, and techniques in threat intelligence and incorporate best practices into daily operations.
Monitor and assess emerging technologies, such as AI and machine learning, to augment threat detection, triage, and analysis.
Required Qualifications
Bachelor’s Degree in Computer Engineering, Computer Science, Mathematics, Engineering, or equivalent education/experience.
Upon hire: CISSP, CEH, or an equivalent certification.
8+ years of related experience.
Experience designing security controls and countermeasures for operating systems, databases, applications, web services, user devices, and wireless networks.
Preferred Qualifications
Master’s Degree in a relevant field.
Experience in a healthcare environment.
8+ years of cyber threat intelligence analysis experience.
Experience conducting in‑depth threat analysis, including identifying threat actors’ motivations, intent, and TTPs.
Skilled in correlating intelligence from multiple sources to assess organizational impact.
Familiarity with reverse engineering and categorizing malware.
Strong knowledge of healthcare cybersecurity risks: ransomware, phishing, supply‑chain vulnerabilities.
Demonstrated experience applying frameworks such as MITRE ATT&CK, Cyber Kill Chain, Diamond Model, etc.
Experience working cross‑functionally with CIRT/IR teams, vulnerability management, and SOC operations.
Experience with insider threat teams is a plus.
Capability to develop threat profiles and integrate tactical intelligence into detection rules.
Ability to influence risk‑based decision‑making with clear, concise reporting.
Salary Range by Location
California: Los Angeles and Irvine – Min: $71.23 / hr, Max: $121.29 / hr
Oregon: Portland Service Area – Min: $68.33 / hr, Max: $116.36 / hr
Washington: Seattle, Renton, Redmond – Min: $71.23 / hr, Max: $121.29 / hr
Washington: Vancouver – Min: $68.33 / hr, Max: $116.36 / hr
Benefits Our best‑in‑class benefits are uniquely designed to support you and your family in staying well, growing professionally, and achieving financial security. Providence offers a comprehensive benefits package including a 401(k) with employer match, health, dental, vision care, life and disability insurance, paid parental leave, vacation, holidays, wellness resources, and more. Learn more at
Providence Benefits .
EEO Statement Providence is an equal‑opportunity employer. We are committed to an inclusive workforce free from discrimination and harassment on the basis of race, color, gender, disability, veteran status, religion, age, sexual identity, marital status, or any other basis prohibited by law.
Job Details
Requisition ID: 401760
Job Category: Information Security
Job Function: Information Technology
Job Schedule: Full time
Job Shift: Day
Career Track: Business Professional
Department: 4011 CYBERSECURITY
Address: CA Irvine 15480 Laguna Canyon Rd
Work Location: Providence System Offices Discovery Park‑Irvine
Workplace Type: Hybrid
Pay Range: $See Job Posting – $See Job Posting
#J-18808-Ljbffr