USA Remote Jobs

Security Engineer – Threat & Vulnerability Management

  1. Home
  2. Remote jobs
  3. Analyst
  • Company Machinify
  • Employment Full-time
  • Location 🇺🇸 United States nationwide
  • Submitted Posted 1 day ago - Updated 14 minutes ago
Apply for this position
<div class="content-intro"><p><span style="color: rgb(0, 0, 0);">Machinify is a leading healthcare intelligence company with expertise across the payment continuum, delivering unmatched value, transparency, and efficiency to health plan clients across the country. Deployed by over 85 health plans, including many of the top 20, and representing more than 270 million lives, Machinify brings together a fully configurable and content-rich, AI-powered platform along with best-in-class expertise. We’re constantly reimagining what’s possible in our industry, creating disruptively simple, powerfully clear ways to maximize financial outcomes and drive down healthcare costs.</span></p></div><div><h2><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">About the Opportunity:</span></h2><p><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">At Machinify, we’re building a robust security program to protect our clients’ sensitive healthcare data and maintain the highest standards of information security. As part of the Security Engineering team, you will help operationalize threat management and vulnerability management across Machinify’s cloud and on-premises environments. This role is central to our security operations capability as we integrate four distinct technology platforms and establish a unified security posture across the organization.</span></p><p><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">As a Security Engineer focused on Threat &amp; Vulnerability Management, you will split your time between vulnerability lifecycle management and supporting the SOC through alert management, SOAR automation, and detection use case development. This is a hands-on engineering role designed for someone with a solid general security foundation who is ready to develop deeper technical skills across both threat and vulnerability disciplines. Prior experience in a SOC or security analyst role is a strong fit for this position.</span></p><p><strong><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">What you’ll do:</span></strong></p><h2><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Vulnerability Management (50% of role):</span></h2><ul><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Run and maintain vulnerability scans across cloud and on-premises environments using enterprise scanning tools</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Track vulnerabilities through the remediation lifecycle: triage, assignment, follow-up, and closure verification</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Help coordinate penetration testing engagements, including scheduling, scoping support, and tracking findings to remediation</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Assist with attack surface management activities including asset inventory maintenance and external exposure monitoring</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Produce vulnerability reports and metrics for security leadership and engineering stakeholders</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Work with infrastructure and cloud engineering teams to communicate and prioritize remediation</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Maintain documentation for exceptions, risk acceptances, and remediation SLA tracking</span></li></ul><h2><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Threat Management &amp; SOC Engineering (50% of role):</span></h2><ul><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Manage and triage CrowdStrike Falcon alerts, driving escalation and response coordination with the SOC</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Support and improve Red Canary SOAR automations, including updating playbooks and alert enrichment workflows</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Develop and tune detection use cases to improve alert fidelity and reduce false positives</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Document runbooks and escalation procedures for detections managed through this role</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Collaborate with SOC analysts to identify detection gaps and translate feedback into platform improvements</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Support threat hunting activities and security incident response as needed</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Help evaluate and onboard new log sources and detection data feeds to expand SOC coverage</span></li></ul><h1><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">What experience you bring (Role Requirements):</span></h1><h2><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Essential Qualifications:</span></h2><ul><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent work experience</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">3+ years of experience in information security in a hands-on role such as SOC analyst, security analyst, or similar</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Familiarity with EDR or endpoint security platforms; experience with CrowdStrike Falcon is a plus but not required</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Exposure to vulnerability scanning concepts and tools, even if not as a primary job function</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Basic understanding of SOAR or security automation concepts; direct platform experience is a plus but not required</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Working knowledge of common attack techniques, the MITRE ATT&amp;CK framework, and alert triage decision-making</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Foundational understanding of cloud environments (AWS or Azure), networking, and operating systems</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Scripting or development aptitude (Python, Bash, or PowerShell) sufficient to support automation and workflow tasks</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Strong analytical and problem-solving skills with the ability to communicate findings clearly across technical and non-technical audiences</span></li></ul><h2><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Preferred Qualifications:</span></h2><ul><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Security certifications such as CompTIA Security+, CySA+, or equivalent</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Experience with a SOAR platform in any capacity, including alert workflow design or playbook development</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Hands-on experience with enterprise vulnerability scanners (Tenable, Qualys, Rapid7, or similar)</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Familiarity with SIEM platforms and basic query writing for alert investigation</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Knowledge of healthcare compliance requirements (HIPAA, HITRUST)</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Experience working across multiple environments or teams in a complex organization</span></li></ul></div><div><strong style="font-family: arial, helvetica, sans-serif; font-size: 12pt;">What We Offer:</strong></div><ul><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Work from anywhere in the US! Machinify is digital-first.</span></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><div><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Top Medical/Dental/Vision offerings</span></div></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><div><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">FSA/HSA</span></div></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><div><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Tuition reimbursement</span></div></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><div><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Competitive salary, 401(k) with company match</span></div></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><div><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Additional health and wellness benefits and perks</span></div></li><li style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Flexible and trusting environment where you’ll feel empowered to do your best work</span></li></ul><div><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">The salary for this position is based on an array of factors unique to each candidate: Such as years and depth of experience, set skills, certifications, etc. &nbsp;We are hiring for different levels, and our Recruiting team will let you know if you qualify for a different role/range.&nbsp;</span></div><div>&nbsp;</div><div><span style="color: rgb(0, 0, 0); font-family: arial, helvetica, sans-serif; font-size: 12pt;">Pay range: $90,000-$120,000</span></div><div>&nbsp;</div><div class="content-conclusion"><div><span style="color: rgb(0, 0, 0);"><strong>Equal Employment Opportunity at Machinify</strong></span></div><div>&nbsp;</div><div><span style="color: rgb(0, 0, 0);">We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace. Machinify is an employment at will employer. We participate in E-Verify as required by applicable law. In accordance with applicable state laws, we do not inquire about salary history during the recruitment process. If you require a reasonable accommodation to complete any part of the application or recruitment process, please let our recruiters know. See our Candidate Privacy Notice at:&nbsp;<u><a id="m_4907613542122963413OWAae7934b9-fa06-3f98-e336-0c5f8a6d5638" style="color: rgb(0, 0, 0);" href="https://www.machinify.com/candidate-privacy-notice/" target="_blank" data-saferedirecturl="https://www.google.com/url?q=https://www.machinify.com/candidate-privacy-notice/&amp;source=gmail&amp;ust=1763168899816000&amp;usg=AOvVaw0FJrzi47RtxTK_RN63lbaj">https://www.machinify.com/candidate-privacy-notice/</a></u></span></div></div>

Loading similar jobs...

USA Remote Jobs

Discover fully remote job opportunities in the United States at USA Remote Jobs. Apply for roles like Software Developer, Customer Service Specialist, Project Manager, and more!

© 2026 Created by USA Remote Jobs. All rights reserved.