Job Summary
Medpace is expanding its Information Security team and seeking a skilled Information Security Engineer. In this critical role, you will design, implement, and enhance the company’s cybersecurity architecture, safeguarding our infrastructure, cloud environments, edge devices, and data from unauthorized access, modification, exfiltration, or damage. This role demands a proactive individual with strong technical skills, a commitment to continuous learning, and the ability to manage projects independently.
Responsibilities
- Security Solutions Engineering: Design and implement security solutions with minimal oversight while collaborating with various departments.
- System Analysis and Improvement: Continuously analyze and enhance security systems.
- Vulnerability Management: Research vulnerabilities, conduct vulnerability scanning, and address potential threats.
- Policy Development: Develop and enforce security best practices and policies for the organization.
- Process Documentation: Document new processes, cross-train team members, and support employees on security-related issues.
- Security Awareness: Conduct security awareness training and tests to ensure compliance with security protocols.
- Continuous Learning: Stay updated with the latest cybersecurity knowledge through educational opportunities, professional publications, and industry organizations.
- Incident Response: Manage cybersecurity incidents and perform remediation activities.
- Access Reviews: Facilitate access reviews and adjust permissions to maintain least privilege access.
Qualifications
- Education: Bachelor's degree in Information Technology or a related field.
- Experience: Minimum of 2 years implementing Information Security solutions.
- Technical Expertise: Proficient in managing, configuring, and deploying enterprise-grade security solutions such as:
- SIEM
- Privileged Access Management/Identity Access Management/Multifactor Authentication
- Endpoint Detection & Response
- Network Access Control
- Cloud-based architecture (Azure/AWS)
- Active Directory
- Soft Skills: Excellent communication, critical thinking, and problem-solving skills with the ability to prioritize tasks effectively.
- Scripting Skills: Basic scripting knowledge, including PowerShell and Python.
Nice to Have
- Vulnerability Assessment Tools: Experience with Nessus and Tenable.
- Web Security: Familiarity with enterprise web proxy solutions, web filters, and VPNs.
- Email Security: Experience with email security solutions.
- Network Security: Knowledge of firewall and network architecture.
- Windows Administration: Experience with Windows environments, including GPO and server administration.
- Regulated Industries: Previous experience in regulated industries such as healthcare, financial services, or defense, and familiarity with standards such as ISO, NIST, HIPAA, GDPR, SOC Type 2.
- Auditing and Policy Writing: Experience in auditing and policy development.
Medpace Overview
Medpace is a leading full-service clinical research organization (CRO) providing Phase I-IV clinical development services to the biotechnology, pharmaceutical, and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through a scientific and disciplined approach. Headquartered in Cincinnati, Ohio, we employ over 5,000 people across nearly 40 countries, leveraging local expertise across various therapeutic areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, and anti-viral and anti-infective diseases.
Why Medpace?
People. Purpose. Passion. Join us and make a difference. Our work over the past 30+ years has had a profound impact on the lives of patients and families. The contributions we make today will continue to improve lives and advance healthcare.
Medpace Perks
- Hybrid Work Options: Available based on position and level.
- Competitive PTO: Generous paid time off.
- Employee Appreciation: Company-sponsored events.
- Health and Wellness: Initiatives to support well-being.
- Flexible Schedule: Options to accommodate work-life balance.
- Competitive Compensation: Comprehensive package with growth opportunities.
Awards
- Forbes Recognition: Named one of America's Most Successful Midsize Companies in 2021, 2022, 2023, and 2024.
- CRO Leadership Awards: Consistently honored with CRO Leadership Awards from Life Science Leader magazine for expertise, quality, capabilities, reliability, and compatibility.
<