IT Security Engineer

ClearView Healthcare Partners is a premier life sciences strategy consulting firm headquartered in Boston, with offices in San Francisco, New York City, London and Gurgaon. Serving clients in the biopharmaceutical, medical device, and diagnostic spaces, we provide world-class strategic decision-making support across a diverse range of business issues. Our goal is to inform actionable recommendations that allow companies to achieve their business objectives.

ClearView is looking for an Information Security Professional to join our Information Technology team. This role will be responsible for three main areas: Supporting our Policy Review/Creation, User Awareness Training, and Monitoring/Testing to ensure compliance.  This position requires the ability to work with minimal direction, flexibility to changing demands and having an eye for process improvement.  This position will work in our India office but will be responsible for ClearView’s Information Security globally. 

Responsibilities 

Security monitoring and incident support 

• Monitor security tools and dashboards (e.g., SIEM, endpoint security, email security) for alerts and suspicious activity and help triage and escalate as needed. 

• Tune SIEM rules, correlation searches, and alert thresholds to reduce noise and improve detection quality under the guidance of senior staff. 

• Build and maintain SIEM dashboards and reports that give IT and leadership visibility into security events and trends. 

• Assist in initial investigation of security incidents (log collection, basic analysis, documentation) and support remediation steps defined by senior engineers. 

• Follow established runbooks and procedures for incident response and request enhancements when gaps are identified. 

Cloud and infrastructure security 

• Help configure and monitor security controls in Azure and AWS (e.g., security center, logging, IAM, security groups, baseline configurations). 

• Work with IT teams to ensure logging, alerting, and basic hardening are in place for servers, applications, and network devices. 

• Assist with periodic reviews of access controls, MFA configurations, and conditional access policies across cloud and onprem environments. 

• Support vulnerability management activities by collecting scan results, tracking remediation status, and validating fixes with relevant teams. 

Endpoint and identity security 

• Help manage endpoint security tools (EDR/AV, disk encryption, device posture checks) and respond to endpoint alerts following documented procedures. 

• Assist with implementation and maintenance of identity and access controls (e.g., rolebased access, privilege reviews, account lifecycle processes). 

• Contribute to standard build/hardening checklists for laptops, servers, and cloud resources, and verify that new systems are deployed according to these baselines. 

Operational processes and documentation 

• Maintain up to date technical documentation for security tools, dashboards, playbooks, and standard operating procedures. 

• Support periodic security reviews and audits by gathering evidence, screenshots, and exportable reports from security tools. 

• Help implement and track security metrics (e.g., number of alerts, mean time to acknowledge, patch/vulnerability closure rates) and suggest improvements. 

• Assist with user onboarding/offboarding tasks related to security access, device setup, and security tooling enrollment. 

Collaboration and learning 

• Partner with the IT teams to ensure changes to infrastructure or applications include appropriate logging and security controls. 

• Stay current on security tooling and best practices relevant to SIEM, cloud security, and endpoint protection, and share useful findings with the team.  

Job Qualifications 

• Bachelor’s degree in technical, information security, or related discipline, or equivalent practical experience. 

• 2-6 years of relevant security experience. 

• Strong technical aptitude with interest in security operations, cloud security, and endpoint protection. 

• Comfortable working with logs, dashboards, and basic scripting or automation tools to troubleshoot and analyze issues. 

• Security+, CySA+, AWS Associate Certifications, AZ 500 or other information security certifications. 

• Demonstrates strong problem solving, analytical, interpersonal, and ownership skills. 

• Possesses excellent collaboration skills for work with various internal team members. 

Additional Skills/Experience 

• An understanding of security concepts, encryption, system hardening, defense-in-depth designs, advanced persistent threats, anomaly detection and next-generation technologies. 

• Working knowledge and experience with any of the following technologies: VA, SIEM, DLP, IPS/IDS, AV, MFA, VPN, FW, AD, Wireless, ACL’s, & Port Scanning. 

• Experience with Rapid7 SIEM is a plus, experience with any log analysis or SIEM platform is a must. 

• Working knowledge of Windows endpoints; familiarity with macOS or basic networking concepts is a plus. 

• Awareness of security frameworks or standards (e.g., ISO 27001, NIST CSF) and interest in learning how they apply in practice. 

• Knowledge of a variety of security tools.

What We Value

We recognize that not every candidate will meet every qualification listed. If you’re excited about this role and believe you have relevant experience or transferable skills, we encourage you to apply. We value curiosity, a growth mindset, and a commitment to collaboration.

Equal Opportunity Employer

ClearView Healthcare Partners ("CV") is an Equal Opportunity employer.  All qualified applicants will be considered for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by applicable law.