Information Security Engineer
Cambridge, MA

Job Description

Job Description

The mission of the Broad Institute is to transform medicine by dramatically accelerating the understanding and treatment of disease. The Broad creates a vibrant research environment with close links to top academic institutions including Harvard, MIT and the Harvard hospitals.

We are looking for an information security engineer to be part of a team focused on implementing and improving information security best practices in support of Broad's transformative research initiatives. You will be considered an authority within your security domain and collaborate with scientists and researchers to identify and mitigate risk. Does this sound like something you are interested in?

What You Will Be Doing

* Implementing security solutions in a complex, dynamic environment


* Protecting Broad systems, networks and users from vulnerabilities and responding when threats are detected


* Implementing a vulnerability assessment and remediation program for VM, container & cloud assets, defensive instrumentation and intrusion detection (WAF, RASP, Endpoints)


* Partnering with multi disciplinary teams in support of the Broad's mission



What You Bring Along

* Hands on experience with systems hardening, containerization, cloud security controls and network segmentation


* Experience implementing enterprise security tools - SIEM, endpoint protection, vulnerability (application and OS) scanning


* Expertise in a scripting language of choice


* Experience operating within a compliance framework (FISMA, GDPR, HIPAA, ISO 27k, NIST SP 800 series, PCI DSS, SOC-2)



Bonus Points

* You've built and or maintained tools to get the job done


* You have significant experience implementing open-source tools that might not have support


* You love to learn new things and strive to continuously learn and challenge yourself and others


* Exposure to other areas of such as application security, governance, risk & compliance, and development


* Professional certifications in infosec, networking, infrastructure, etc. are a plus but not required


* Experience within the medical, pharmaceutical or higher-ed sectors



The Broad Institute will not offer visa sponsorship for this opportunity

EOE / Minorities / Females / Protected Veterans / Disabilities

EEO is The Law - click here for more information

Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled