Information Security Engineer

Job Summary

The Information Security team defends the company’s digital infrastructure by designing, implementing, and improving the company’s cybersecurity architecture. This is a critical role responsible for protecting infrastructure, cloud, edge devices, and data against unauthorized use, modification, exfiltration, or damage. This role identifies threats, manages projects and engineers solutions that impact the entire company. An ideal candidate for this role is technical, dedicated to learning new things, security-minded, strong initiative, and able to manage projects autonomously.

Responsibilities

Engineer security solutions without oversight and collaborate with multiple departments;

Analyze security systems and seek improvements on a continuous basis;

Research vulnerabilities, perform vulnerability scanning, and mitigate threats;

Develop security best practices and policies for the organization;

Document new processes, cross-train coworkers, and assist employees on security-related matters;

Provide security awareness training and testing for employees to verify proper security protocols are being followed;

Staying current with cybersecurity knowledge by participating in educational opportunities, reading professional publications, and participating in professional organizations;

Performing cyber security incident response, and remediation activities; and

Facilitate access reviews of company data and revoke inappropriate/overprovisioned access in order to drive least privilege access.

Qualifications

Require at least a bachelor’s degree preferably in Information Technology;

Require a minimum of at least 2 years of experience in implementing Information Security solutions;

Understanding of security best practices and how to implement them at a business-wide level;

Experience with managing, configuring, and deploying enterprise-grade security solutions in some of the following:

SIEM

Privileged Access Management/Identity Access Management/Multifactor Authentication

Endpoint Detection & Response

Network Access Control

Cloud based architecture such as Azure/AWS

Active Directory

Soft skills including excellent communication skills, critical thinking skills with the ability to solve problems as they arise, and ability to prioritize projects; and

Basic scripting skills, such as PowerShell/Python scripting.

Nice to have:

Experience with vulnerability assessment tools such as Nessus and Tenable;

Experience with enterprise web proxy solutions, web filters, and VPN;

Experience with email security solutions;

Experience with firewall and network architecture;

Experience with administrating Windows environment including GPO and servers;

Previous employment or experience in a highly regulated industry such as healthcare, financial, or defense experience with standards such as ISO, NIST, HIPAA, GDPR, SOC Type 2, etc; and

Auditing and policy-writing experience.

Medpace Overview

Medpace is a full-service clinical research organization (CRO). We provide Phase I-IV clinical development services to the biotechnology, pharmaceutical and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through its scientific and disciplined approach. We leverage local regulatory and therapeutic expertise across all major areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, anti-viral and anti-infective. Headquartered in Cincinnati, Ohio, employing more than 5,000 people across 40+ countries.

Why Medpace?

People. Purpose. Passion. Make a Difference Tomorrow. Join Us Today.

The work we’ve done over the past 30+ years has positively impacted the lives of countless patients and families who face hundreds of diseases across all key therapeutic areas. The work we do today will improve the lives of people living with illness and disease in the future.

Medpace Perks

Hybrid work-from-home options (dependent upon position and level)

Competitive PTO packages

Company-sponsored employee appreciation events

Employee health and wellness initiatives

Flexible work schedule

Competitive compensation and benefits package

Structured career paths with opportunities for professional growth

Awards

Recognized by Forbes as one of America's Most Successful Midsize Companies in 2021, 2022, 2023 and 2024

Continually recognized with CRO Leadership Awards from Life Science Leader magazine based on expertise, quality, capabilities, reliability, and compatibility

What to Expect Next

A Medpace team member will review your qualifications and, if interested, you will be contacted with details for next steps.

EO/AA Employer M/F/Disability/Vets

Full-Time