Cybersecurity Officer

We are looking for a skilled and curious Cybersecurity Officer with a passion for identifying vulnerabilities and a drive to continuously improve the security of complex systems. In this role, you will go beyond maintaining complianceactively seek out vulnerabilities, challenge assumptions, and help design creative, forward-thinking security solutions that keep us a step ahead of potential threats. This position is central to protecting healthcare and patient data and is ideal for someone who thrives in environments that value autonomy, initiative, and deep technical curiosity. Key Responsibilities Proactive Security Independently identify and exploit vulnerabilities in our systems through ethical hacking and offensive security testing. Simulate real-world attack scenarios to discover blind spots and improve incident response preparedness. Develop and implement innovative, proactive defenses and hardening techniques. Collaborate closely with development and IT teams to design secure architectures and embed security into CI/CD pipelines. Stay ahead of emerging threats, vulnerabilities, and security technologies; bring fresh ideas to the table. Security Infrastructure & Innovation Continuously evaluate and enhance cybersecurity tools, policies, and procedures. Lead efforts to design and scale secure infrastructure, with a focus on automation and resilience Implement threat detection and prevention strategies that reduce both risk and operational friction. Qualifications Required: Proven experience in cybersecurity with a strong focus on penetration testing, vulnerability discovery, and system hardening Strong understanding of security frameworks (HIPAA, ISO 27001, SOC 2) and compliance requirements Hands-on experience identifying, assessing, and remediating security issues in cloud and hybrid environments Deep technical knowledge in areas such as network security, cloud infrastructure (AWS, Azure, GCP), scripting, and access control Preferred: Certifications like OSCP, CISSP, CEH, CISM, or HCISPP Experience with GRC platforms, SIEM systems, and vulnerability scanning tools Familiarity with secure DevOps practices and automating security workflows Self-motivated with a hacker mindsetalways questioning and exploring Strong written and verbal communication skills, especially when translating complex findings to non-technical audiences High attention to detail and a strong sense of responsibility Comfortable working both independently and collaboratively with cross-functional teams