Cybersecurity Engineer

Laboratory Corporation of America (LCA) is seeking a Cybersecurity Engineer to join the Office of Information Security, reporting to the Director of Security Engineering.  The Cybersecurity Engineer will have particular strengths in Microsoft technologies, but will work across a variety of technical disciplines and partner with various teams to ensure the enterprise security strategy is carried out. 

Responsibilities:

• Lead and participate in technical security reviews of applications and infrastructure:
• Collaborate with other IT teams to understand the design and document any risks.
• Recommend and drive the adoption of technical controls to strengthen security posture.
• Partner with other teams to ensure all relevant security controls are applied to Microsoft 365 services, including:
• Microsoft Entra ID (formerly Azure AD)
• Using Microsoft Purview to identify and protect sensitive data.
• Deploying and/or modifying Microsoft Intune policies to secure mobile, Windows, and macOS endpoints.
• Deploying and/or modifying conditional access policies.
• Perform administration and maintenance duties on security-specific platforms (Phishing Protection, Vulnerability Management, DLP, and related).
• Collaborate with other team members to develop technical security standards and best practices across various security domains; socialize and evangelize to other IT teams.
• Conduct evaluations of vendor security platforms; document results.
• Articulate common practices and tactics used by malicious software and threat actors, along with associated remediation, to other IT teams.
• Provide level 3 support of security incidents as required.
• Assist members of Governance, Risk, and Compliance to answer technical questions from auditors and clients.
• Confirm safe and secure integration of M&A infrastructure and services, especially related to Microsoft technologies and platforms.
• In partnership with the broader Office of Information Security, research and recommend emerging security technologies/tools to address current and future threats.
• Interact and manage vendors, outsourcers, and contractors regarding security products and services.
• Represent the interests of security and risk to other technical staff and business stakeholders.

Qualifications:

Minimum Required:

• Minimum 5 years of experience in cybersecurity.
• Experience in securing common M365 services including Exchange Online, SharePoint Online, Teams, and OneDrive.
• Hands-on experience working with a major public cloud platform such as AWS, Azure, or GCP.
• Familiarity with Azure security services.
• Familiarity with Powershell scripting and use of Power BI.
• Hands-on experience in implementing and supporting various security platforms (firewall, proxy, DLP, SIEM, endpoint, vulnerability scanning, PKI, DoS prevention, MFA, etc.).
• Solid understanding of incident handling best practices.
• Proven project management and organizational skills, specifically managing multiple, concurrent projects.
• Strong interpersonal, written, and oral communication skills.
• Highly self-motivated and directed professional, with keen attention to detail.
• Excellent analytical, problem-solving and decision-making abilities.
• Able to effectively prioritize tasks in a high-pressure environment.
• Strong customer service and solution-focused orientation.

Preferred Skills:

• Bachelor's or Master's Degree in Information Systems, Computer Science or related discipline is highly desired.
• CISSP certification desired.
• Knowledge of firewall and network segmentation concepts.
• Familiarity with scripting - Python, shell scripting.
• Familiarity with threat analysis models such as the cyber kill Chain and the MITRE ATT&CK framework.
• Familiarity with identity-centric zero trust network access (ZTNA) solutions such as Microsoft Entra Private Access.
• Previous experience in securing medical and related instrumentation devices.
• Understanding of industry standards and compliance requirements related to cybersecurity and cloud computing—especially ISO 27001, HIPAA, and PCI DSS. 
• Familiarity with NIST and/or CIS benchmarks. 

Pay Range: 88,700-122,000

Application window: March 1-May 31

Benefits: All job offers will be based on a candidate’s skills and prior relevant experience, applicable degrees/certifications, as well as internal equity and market data. Regular, full-time or part-time employees working 20 or more hours per week are eligible for comprehensive benefits including: Medical, Dental, Vision, Life, STD/LTD, 401(K), ESPP, Paid time off (PTO) or Flexible time off (FTO), Commissions, and Company bonus where applicable.  For more detailed information, please click here.

Labcorp is proud to be an Equal Opportunity Employer:

Labcorp is proud to be an Equal Opportunity Employer:

As an EOE/AA employer, Labcorp strives for diversity and inclusion in the workforce and does not tolerate harassment or discrimination of any kind. We make employment decisions based on the needs of our business and the qualifications of the individual and do not discriminate based upon race, religion, color, national origin, gender (including pregnancy or other medical conditions/needs), family or parental status, marital, civil union or domestic partnership status, sexual orientation, gender identity, gender expression, personal appearance, age, veteran status, disability, genetic information, or any other legally protected characteristic. We encourage all to apply.

For more information about how we collect and store your personal data, please see our Privacy Statement.