Providence Health & Services
Principal Cyber Threat Intelligence Security Engineer IS *Hybrid*
Providence Health & Services, Irvine, California, United States, 92713
Providence is looking for a seasoned Principal Security Engineer with deep expertise in Cyber Threat Intelligence. In this pivotal role, you will lead the identification and neutralization of emerging threats, safeguard critical systems, and guide executive risk strategies to protect millions of lives through secure healthcare technology.
Hybrid Work Options Hybrid role: in-office and remote work weekly, determined by manager. Acceptable commuting distance up to 65 miles from primary office locations.
Washington: Seattle, Redmond, Renton, Vancouver
California: Los Angeles, Irvine
Oregon: Portland
Responsibilities
Conduct in-depth analysis and research on cyber threats, identifying threat actors, motivations, tactics, techniques, and procedures (TTPs).
Prepare and deliver well-researched analytic findings to technical and non-technical stakeholders, including executives.
Serve as a mentor for advanced analytic toolsets such as Structured Analytic Techniques.
Classify, categorize, and analyze malware and threats, translating into actionable detections via MITRE ATT&CK.
Maintain comprehensive knowledge of the healthcare threat landscape.
Collaborate with internal teams to provide timely intelligence supporting CTI, CIRT, Attack Surface Management, and other initiatives.
Develop and maintain threat profiles with tactical intelligence to enhance detection engineering and hunting.
Perform root cause analysis and recommend proactive measures to prevent intrusions.
Continuously refine threat intelligence processes and methodologies.
Monitor emerging technologies such as AI and machine learning for threat detection augmentation.
Required Qualifications
Bachelor's Degree in Computer Engineering, Computer Science, Mathematics, Engineering – or equivalent experience.
Upon hire: CISSP, CEH, or equivalent certification.
8+ years of relevant experience.
Experience designing security controls and countermeasures for operating systems, databases, applications, web services, user devices, and wireless networks.
Preferred Qualifications
Master's Degree in Computer Engineering, Computer Science, Mathematics, Engineering.
Experience in a healthcare environment.
8+ years of cyber threat intelligence analysis experience.
Experience conducting in-depth threat research, including TTP analysis.
Skilled in correlating intelligence from multiple sources.
Familiarity with reverse engineering and malware categorization.
Strong knowledge of healthcare cybersecurity risks: ransomware, phishing, supply chain vulnerabilities.
Experience applying frameworks such as MITRE ATT&CK, Cyber Kill Chain, Diamond Model, etc.
Experience working cross-functionally with CIRT/IR, vulnerability management, SOC operations.
Experience with insider threat teams a plus.
Capability to develop threat profiles and integrate tactical intelligence into detection rules.
Ability to influence risk-based decision-making with clear, concise reporting.
Salary Range by Location
California: Los Angeles and Irvine – Min $71.23k, Max $121.29k
Oregon: Portland – Min $68.33k, Max $116.36k
Washington: Seattle, Renton, Redmond – Min $71.23k, Max $121.29k
Washington: Vancouver – Min $68.33k, Max $116.36k
Benefits Providence offers a comprehensive benefits package including a retirement 401(k) plan with employer matching, medical, dental, vision, life and disability insurance, paid parental leave, vacation, holidays, additional voluntary benefits, and wellness resources.
Equal Opportunity Statement Providence is a proud Equal Opportunity Employer. We are committed to providing a workplace free from discrimination and harassment on the basis of race, color, gender, disability, veteran status, religion, age, creed, national origin, sexual orientation, marital status, genetic information, or any other protected category under federal, state, and local law.
Application Information Job Category: Information Security | Job Function: Information Technology | Job Schedule: Full time | Job Shift: Day | Career Track: Business Professional | Pay Range: Base pay as posted.
#J-18808-Ljbffr
Hybrid Work Options Hybrid role: in-office and remote work weekly, determined by manager. Acceptable commuting distance up to 65 miles from primary office locations.
Washington: Seattle, Redmond, Renton, Vancouver
California: Los Angeles, Irvine
Oregon: Portland
Responsibilities
Conduct in-depth analysis and research on cyber threats, identifying threat actors, motivations, tactics, techniques, and procedures (TTPs).
Prepare and deliver well-researched analytic findings to technical and non-technical stakeholders, including executives.
Serve as a mentor for advanced analytic toolsets such as Structured Analytic Techniques.
Classify, categorize, and analyze malware and threats, translating into actionable detections via MITRE ATT&CK.
Maintain comprehensive knowledge of the healthcare threat landscape.
Collaborate with internal teams to provide timely intelligence supporting CTI, CIRT, Attack Surface Management, and other initiatives.
Develop and maintain threat profiles with tactical intelligence to enhance detection engineering and hunting.
Perform root cause analysis and recommend proactive measures to prevent intrusions.
Continuously refine threat intelligence processes and methodologies.
Monitor emerging technologies such as AI and machine learning for threat detection augmentation.
Required Qualifications
Bachelor's Degree in Computer Engineering, Computer Science, Mathematics, Engineering – or equivalent experience.
Upon hire: CISSP, CEH, or equivalent certification.
8+ years of relevant experience.
Experience designing security controls and countermeasures for operating systems, databases, applications, web services, user devices, and wireless networks.
Preferred Qualifications
Master's Degree in Computer Engineering, Computer Science, Mathematics, Engineering.
Experience in a healthcare environment.
8+ years of cyber threat intelligence analysis experience.
Experience conducting in-depth threat research, including TTP analysis.
Skilled in correlating intelligence from multiple sources.
Familiarity with reverse engineering and malware categorization.
Strong knowledge of healthcare cybersecurity risks: ransomware, phishing, supply chain vulnerabilities.
Experience applying frameworks such as MITRE ATT&CK, Cyber Kill Chain, Diamond Model, etc.
Experience working cross-functionally with CIRT/IR, vulnerability management, SOC operations.
Experience with insider threat teams a plus.
Capability to develop threat profiles and integrate tactical intelligence into detection rules.
Ability to influence risk-based decision-making with clear, concise reporting.
Salary Range by Location
California: Los Angeles and Irvine – Min $71.23k, Max $121.29k
Oregon: Portland – Min $68.33k, Max $116.36k
Washington: Seattle, Renton, Redmond – Min $71.23k, Max $121.29k
Washington: Vancouver – Min $68.33k, Max $116.36k
Benefits Providence offers a comprehensive benefits package including a retirement 401(k) plan with employer matching, medical, dental, vision, life and disability insurance, paid parental leave, vacation, holidays, additional voluntary benefits, and wellness resources.
Equal Opportunity Statement Providence is a proud Equal Opportunity Employer. We are committed to providing a workplace free from discrimination and harassment on the basis of race, color, gender, disability, veteran status, religion, age, creed, national origin, sexual orientation, marital status, genetic information, or any other protected category under federal, state, and local law.
Application Information Job Category: Information Security | Job Function: Information Technology | Job Schedule: Full time | Job Shift: Day | Career Track: Business Professional | Pay Range: Base pay as posted.
#J-18808-Ljbffr