Security Operations Engineer

We are united in our mission to make a positive impact on healthcare. Join Us! 

• South Florida Business Journal, Best Places to Work 2024
• Inc. 5000 Fastest-Growing Private Companies in America 2024
• 2024 Black Book Awards, ranked #1 EHR in 11 Specialties
• 2024 Spring Digital Health Awards, “Web-based Digital Health” category for EMA Health Records (Gold)
• 2024 Stevie American Business Award (Silver), New Product and Service: Health Technology Solution (Klara)

Who we are:

We Are Modernizing Medicine (WAMM)! We’re a team of bright, passionate, and positive problem-solvers on a mission to place doctors and patients at the center of care through an intelligent, specialty-specific cloud platform. Our vision is a world where the software we build increases medical practice success and improves patient outcomes. Founded in 2010 by Daniel Cane and Dr. Michael Sherling, we have grown to over 3400 combined direct and contingent team members serving eleven specialties, and we are just getting started! ModMed's global headquarters is based in Boca Raton, FL, with a growing office in Hyderabad, India, and a robust remote workforce across the US, Chile, and Germany.

ModMed is hiring a driven Security Operations Engineer to join our growing Security Operations team. This role is ideal for an engineer with a strong foundation in infrastructure, systems, or network engineering who has developed a focus on security and wants to apply those skills directly to Security Operations.

The Security Operations Engineer will be responsible for leading enterprise vulnerability management activities, performing in-depth security event analysis, and supporting incident response investigations. The role combines technical engineering fundamentals with security expertise to identify and remediate vulnerabilities, investigate complex incidents, and continuously improve operational security processes.

This position works closely with the Senior Manager of Security Operations and cross-functional partners across IT, Engineering, and Compliance to reduce organizational risk, ensure regulatory compliance, and strengthen the company’s overall security posture.

Your Role:

• Perform vulnerability scanning and assessments across enterprise systems, applications, and networks.
• Analyze and prioritize vulnerabilities based on risk and exploitability; coordinate remediation with system owners and engineering teams.
• Track remediation progress and produce vulnerability management metrics for leadership and compliance reporting.
• Investigate and analyze security events by correlating logs, network traffic, and system telemetry.
• Support incident response activities, including containment, forensic data collection, root cause analysis, and lessons learned reviews.
• Research emerging vulnerabilities, threats, and attack techniques to inform detection, response, and risk management.
• Collaborate with the Security Operations Analysts to integrate vulnerability intelligence and technical findings into threat detection and response workflows.
• Develop and maintain operational playbooks, procedures, and technical documentation to support audits, compliance, and continuous improvement.

Skills & Requirements:

• Bachelor’s degree in Information Security, Cybersecurity, Information Technology, Computer Science, or equivalent experience (in lieu of degree, minimum 7 years related technical experience).
• 7+ years of experience in systems administration, network engineering, or infrastructure engineering with a security focus.
• Strong understanding of enterprise networking, operating systems, and IT infrastructure.
• Experience conducting vulnerability assessments and coordinating remediation.
• Familiarity with incident response processes (investigation, containment, recovery).
• Ability to analyze logs, network traffic, and system telemetry to identify threats.
• Experience working in regulated environments or with compliance frameworks (HIPAA, NIST, ISO).
• Strong written and verbal communication skills with the ability to present findings to both technical and executive audiences.

Preferred Qualifications

• 9+ years of combined infrastructure engineering and security experience.
• Experience in healthcare or other highly regulated industries.
• Scripting, IaC, or automation experience (e.g., Python, Bash, Terraform).
• Exposure to advanced security monitoring, detection engineering, or threat analysis. (SIEM/SOAR)
• Relevant security certifications such as Security+, CySA+, GCIH, or CISSP.
• Experience collaborating across IT, Engineering, and Compliance teams to drive remediation actions and risk reduction.

#LI-DV1

ModMed Benefits Highlight:  At ModMed, we believe it’s important to offer a competitive benefits package designed to meet the diverse needs of our growing workforce. Eligible Modernizers can enroll in a wide range of benefits:

India

• Meals & Snacks: Enjoy complimentary office lunches & dinners on select days and healthy snacks delivered to your desk,
• Insurance Coverage: Comprehensive health, accidental, and life insurance plans, including coverage for family members, all at no cost to employees,
• Allowances: Annual wellness allowance to support your well-being and productivity,
• Earned, casual, and sick leaves to maintain a healthy work-life balance,
• Bereavement leave for difficult times and extended medical leave options,
• Paid parental leaves, including maternity, paternity, adoption, surrogacy, and abortion leave,
• Celebration leave to make your special day even more memorable, and company-paid holidays to recharge and unwind.

United States

• Comprehensive medical, dental, and vision benefits, including a company Health Savings Account contribution,
• 401(k):  ModMed provides a matching contribution each payday of 50% of your contribution deferred on up to 6% of your compensation. After one year of employment with ModMed, 100% of any matching contribution you receive is yours to keep.
• Generous Paid Time Off and Paid Parental Leave programs,
• Company paid Life and Disability benefits, Flexible Spending Account, and Employee Assistance Programs,
• Company-sponsored Business Resource & Special Interest Groups that provide engaged and supportive communities within ModMed,
• Professional development opportunities, including tuition reimbursement programs and unlimited access to LinkedIn Learning,
• Global presence and in-person collaboration opportunities; dog-friendly HQ (US), Hybrid office-based roles and remote availability for some roles,
• Weekly catered breakfast and lunch, treadmill workstations, Zen, and wellness rooms within our BRIC headquarters.

PHISHING SCAM WARNING: ModMed is among several companies recently made aware of a phishing scam involving imposters posing as hiring managers recruiting via email, text and social media. The imposters are creating misleading email accounts, conducting remote "interviews," and making fake job offers in order to collect personal and financial information from unsuspecting individuals. Please be aware that no job offers will be made from ModMed without a formal interview process, and valid communications from our hiring team will come from our employees with a ModMed email address (first.lastname@modmed.com). Please check senders’ email addresses carefully.  Additionally, ModMed will not ask you to purchase equipment or supplies as part of your onboarding process. If you are receiving communications as described above, please report them to the FTC website.