Lead Information Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Branch Medical Group · 23 hours ago

Lead Information Security Engineer

positionAudubon, PA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff

Globus Medical is dedicated to improving the quality of life for patients with musculoskeletal disorders through innovative solutions. They are seeking a Lead Information Security Engineer to oversee complex security incidents, develop advanced detection capabilities, and lead proactive threat hunting efforts across various environments.

Medical DeviceHealthcareManufacturingHealth CareMedical

Responsibilities

Design, build, and maintain advanced detection logic across SIEM, EDR, cloud telemetry, and identity platforms
Develop high‑fidelity detections mapped to MITRE ATT&CK, focused on attacker behavior—not just IOCs
Engineer automated enrichment pipelines, correlation rules, custom parsers, and analytics to improve detection accuracy
Partner with DevOps, Cloud, and Infrastructure teams to ensure logging, telemetry, and data quality support detection needs
Lead structured and hypothesis‑driven threat hunts across enterprise environments
Build and maintain threat hunting playbooks, procedures, and automation
Research emerging threats, TTPs, vulnerabilities, and campaigns to proactively identify risks
Perform retrospective analysis to uncover previously undetected activity
Serve as the technical escalation point for advanced incidents, intrusions, and complex investigations
Guide analysts and engineers through containment, eradication, and recovery activities
Perform in‑depth forensic analysis using EDR, logs, memory, network captures, and cloud artifacts
Interface with leadership to deliver clear, data‑driven incident reports and recommendations
Develop custom tools, scripts, and integrations (PowerShell, Python, etc.) to automate detection, hunting, and response
Continuously enhance security controls, endpoint hardening, and cloud security configurations
Assist in evaluating, testing, and onboarding new security technologies and capabilities
Define key performance indicators (detection coverage, dwell time, fidelity, false‑positive trends)
Contribute to risk assessments, tabletop exercises, and red/blue/purple team engagements
Mentor junior analysts/engineers and help mature operational and engineering capabilities
Support audit, compliance, and readiness initiatives (ISO 27001, SOC, NIST)
Adheres to the letter and spirit of the company Code of Conduct, the AdvaMed Code, MedTech Code, and all other company policies
Ensures Compliance with applicable governmental laws, rules, and regulations, both in the United States and internationally, by completing introductory and annual training and maintaining knowledge of compliance as it applies to your role
Represents the company in a professional manner and uphold the highest standards of ethical business practices and socially responsible conduct in all interactions with other employees, customers, suppliers, and other third parties

Qualification

SIEMEDR platformsCloud securityScriptingIncident ResponseThreat huntingForensic analysisIdentity securityZero-trust conceptsMITRE ATT&CKAction OrientedComposureLeadershipProblem SolvingContinuous Learning

Required

Bachelor's degree in Computer Science, Information Security, or related field
Expert‑level experience with SIEM (Rapid7 preferred), EDR platforms, and modern threat detection tooling
Strong understanding of cloud security (Azure strongly preferred; AWS/GCP a plus)
Deep familiarity with attacker tradecraft, lateral movement patterns, and malware analysis concepts
Scripting (PowerShell, Python) for detection, automation, and pipelines
Strong grasp of identity security, zero‑trust concepts, log engineering, and telemetry architecture
Hands‑on experience in IR, threat hunting, DFIR, and detection content development
Action Oriented: Bias for execution, strong ownership of outcomes
Problem Solving: Expert analytical ability and structured investigative mindset
Composure: Maintains clarity and calm in high‑pressure investigations
Leadership: Mentors others, influences decisions, and leads complex technical initiatives
Continuous Learning: Self‑driven research into emerging threats, tools, and techniques

Preferred

Advanced certifications preferred (e.g., GCIA, GCFA, GREM, GMON, GDAT, Azure/AWS Security)

Company

Branch Medical Group

twittertwitter
company-logo
Branch Medical Group is manufactures medical implants and graphic cases.
dateFounded in 2005
location
Eagleville, Pennsylvania, USA
people-size11-50 employees
web-link
http://www.branchmedicalgroup.com/

Funding

Current Stage
Early Stage
Total Funding
unknown
2015-02-25Acquired
Company data provided by crunchbase