Providence Health & Services
Principal Cyber Threat Intelligence Engineer IS *Hybrid*
Providence Health & Services, Vancouver, Washington, United States, 98662
Principal Cyber Threat Intelligence Engineer IS *Hybrid*
Providence Health & Services – Enterprise Information Services
Description Providence is seeking a seasoned Principal Security Engineer with deep expertise in Cyber Threat Intelligence to lead threat identification and neutralization, safeguard critical systems, and empower the Global Security Operations Center. The role informs risk strategies and guides executive decision-making to protect millions of lives through secure healthcare technology.
Hybrid Work
Washington: Seattle, Redmond, Renton, Vancouver
California: Los Angeles, Irvine
Oregon: Portland
Important Details
This is a hybrid role with a combination of in‑office and remote work each week.
The manager will determine the weekly hybrid schedule based on departmental needs.
Essential Functions
Conduct in‑depth analysis and research on cyber threats, including threat actors, motivations, tactics, techniques, and procedures (TTPs).
Prepare and deliver impactful analytic findings tailored to technical and non‑technical stakeholders, including executives.
Mentor teammates in advanced analytic toolsets such as Structured Analytic Techniques.
Classify, categorize, and analyze malware and threats, translating findings into actionable detections using frameworks such as MITRE ATT&CK.
Maintain knowledge of the healthcare industry threat landscape, including emerging threats and trends.
Collaborate with internal teams to provide timely, actionable intelligence for CTI, CIRT, Attack Surface Management, and other initiatives.
Develop and maintain threat profiles to enhance detection engineering and threat hunting operations.
Perform root cause analysis and recommend proactive measures to prevent intrusions.
Continuously refine threat intelligence processes and methodologies.
Stay informed about trends, tools, and techniques in threat intelligence, incorporating best practices into daily operations.
Monitor emerging technologies, such as AI and machine learning, to augment threat detection, triage, and analysis.
Required Qualifications
Bachelor's Degree in Computer Engineering, Computer Science, Mathematics, Engineering, or equivalent experience.
Upon hire: CISSP, CEH, or an equivalent certification.
8 or more years of related experience.
Experience designing security controls and countermeasures for operating systems, databases, applications, web services, user devices, and wireless networks.
Preferred Qualifications
Master's Degree in Computer Engineering, Computer Science, Mathematics, Engineering.
Experience in a healthcare environment.
8 or more years of cyber threat intelligence analysis experience.
Experience conducting in‑depth threat analysis, including motivation, intent, and TTPs.
Skilled in correlating intelligence from multiple sources.
Familiarity with reverse engineering and malware categorization.
Strong knowledge of healthcare cybersecurity risks, including ransomware, phishing, and supply‑chain vulnerabilities.
Demonstrated experience applying frameworks such as MITRE ATT&CK, Cyber Kill Chain, Diamond Model of Intrusion Analysis.
Experience working cross‑functionally with CIRT/IR teams, vulnerability management, and SOC operations.
Experience with insider threat teams (plus).
Capability to develop threat profiles and integrate tactical intelligence into detection rules.
Ability to influence risk‑based decision‑making with clear, concise reporting.
Salary Range by Location
California: Los Angeles, Irvine – Min: $71,230, Max: $121,290
Oregon: Portland – Min: $68,330, Max: $116,360
Washington: Seattle, Renton, Redmond – Min: $71,230, Max: $121,290
Washington: Vancouver – Min: $68,330, Max: $116,360
Why Join Providence? Providence offers a comprehensive benefits package, including retirement savings, health care, insurance, and time‑off. Our inclusive culture values diversity and supports career growth.
Equal Opportunity Providence is a proud Equal Opportunity Employer. We are committed to fostering a workforce free from unlawful discrimination, based on race, color, national origin, gender, veteran, disability, sexual orientation, and other protected categories.
#J-18808-Ljbffr
Providence Health & Services – Enterprise Information Services
Description Providence is seeking a seasoned Principal Security Engineer with deep expertise in Cyber Threat Intelligence to lead threat identification and neutralization, safeguard critical systems, and empower the Global Security Operations Center. The role informs risk strategies and guides executive decision-making to protect millions of lives through secure healthcare technology.
Hybrid Work
Washington: Seattle, Redmond, Renton, Vancouver
California: Los Angeles, Irvine
Oregon: Portland
Important Details
This is a hybrid role with a combination of in‑office and remote work each week.
The manager will determine the weekly hybrid schedule based on departmental needs.
Essential Functions
Conduct in‑depth analysis and research on cyber threats, including threat actors, motivations, tactics, techniques, and procedures (TTPs).
Prepare and deliver impactful analytic findings tailored to technical and non‑technical stakeholders, including executives.
Mentor teammates in advanced analytic toolsets such as Structured Analytic Techniques.
Classify, categorize, and analyze malware and threats, translating findings into actionable detections using frameworks such as MITRE ATT&CK.
Maintain knowledge of the healthcare industry threat landscape, including emerging threats and trends.
Collaborate with internal teams to provide timely, actionable intelligence for CTI, CIRT, Attack Surface Management, and other initiatives.
Develop and maintain threat profiles to enhance detection engineering and threat hunting operations.
Perform root cause analysis and recommend proactive measures to prevent intrusions.
Continuously refine threat intelligence processes and methodologies.
Stay informed about trends, tools, and techniques in threat intelligence, incorporating best practices into daily operations.
Monitor emerging technologies, such as AI and machine learning, to augment threat detection, triage, and analysis.
Required Qualifications
Bachelor's Degree in Computer Engineering, Computer Science, Mathematics, Engineering, or equivalent experience.
Upon hire: CISSP, CEH, or an equivalent certification.
8 or more years of related experience.
Experience designing security controls and countermeasures for operating systems, databases, applications, web services, user devices, and wireless networks.
Preferred Qualifications
Master's Degree in Computer Engineering, Computer Science, Mathematics, Engineering.
Experience in a healthcare environment.
8 or more years of cyber threat intelligence analysis experience.
Experience conducting in‑depth threat analysis, including motivation, intent, and TTPs.
Skilled in correlating intelligence from multiple sources.
Familiarity with reverse engineering and malware categorization.
Strong knowledge of healthcare cybersecurity risks, including ransomware, phishing, and supply‑chain vulnerabilities.
Demonstrated experience applying frameworks such as MITRE ATT&CK, Cyber Kill Chain, Diamond Model of Intrusion Analysis.
Experience working cross‑functionally with CIRT/IR teams, vulnerability management, and SOC operations.
Experience with insider threat teams (plus).
Capability to develop threat profiles and integrate tactical intelligence into detection rules.
Ability to influence risk‑based decision‑making with clear, concise reporting.
Salary Range by Location
California: Los Angeles, Irvine – Min: $71,230, Max: $121,290
Oregon: Portland – Min: $68,330, Max: $116,360
Washington: Seattle, Renton, Redmond – Min: $71,230, Max: $121,290
Washington: Vancouver – Min: $68,330, Max: $116,360
Why Join Providence? Providence offers a comprehensive benefits package, including retirement savings, health care, insurance, and time‑off. Our inclusive culture values diversity and supports career growth.
Equal Opportunity Providence is a proud Equal Opportunity Employer. We are committed to fostering a workforce free from unlawful discrimination, based on race, color, national origin, gender, veteran, disability, sexual orientation, and other protected categories.
#J-18808-Ljbffr