[Hiring] Senior Security Engineer @RSI

Role Description

RSi is a healthcare revenue cycle management company. We handle PHI and payment data for hospitals and health systems across the country, which means security has to be right. We're looking for a Senior Security Engineer to run the technical side of the program day to day.

This is an individual contributor role reporting to the CIO. You'll have direct access to leadership and real influence over where the program goes. You'll also be accountable for the work — the toolset, the detections, the posture, the incident calls when something goes wrong.

The environment is hybrid cloud — Azure and AWS, a Microsoft-heavy identity stack, Latitude as the core RCM platform, Microsoft 365, and a growing footprint of automation and generative AI in the business. HIPAA, PCI-DSS, and SOC 2 are all in play.

What You'll Do:

• Run NinjaOne for RMM, patching, and endpoint hygiene across the workforce.
• Administer EDR coverage on Windows, macOS, and server workloads.
• Work with Infrastructure on Entra ID security — conditional access, PIM, MFA, Defender for Identity.
• Keep least-privilege honest across on-prem AD, Entra ID, and our federated SaaS.
• Own Rapid7 InsightVM and InsightIDR as our primary vulnerability and SIEM platform.
• Run vulnerability management end to end: scanning, prioritization, SLAs, exceptions, executive reporting.
• Tune detections, triage alerts, and lead investigations.
• Coordinate pen tests and chase the remediation through to close.
• Harden workloads across Azure and AWS — network segmentation, secrets, workload identity.
• Configure Microsoft Defender for Cloud and Sentinel; integrate signal with Rapid7 where it makes sense.
• Administer AWS-native tooling: GuardDuty, Security Hub, IAM Access Analyzer, CloudTrail, Config, KMS.
• Partner with DevOps to pull security into CI/CD and IaC reviews rather than bolt it on after.
• Lead containment, eradication, and recovery when we have a security incident.
• Keep the IR plan current and run tabletops with IT and executive stakeholders.
• Maintain detection coverage mapped to MITRE ATT&CK.
• Handle forensic collection in a way that holds up in a HIPAA environment.
• Evidence controls for HIPAA, PCI-DSS, SOC 2, and client security questionnaires.
• Support our NIST CSF and NIST AI RMF alignment, including the GenAI program.
• Help with third-party risk reviews for vendors, clients, and acquired entities.
• Write the policies and runbooks. Keep them usable.

Qualifications

• 7+ years in security engineering, with at least 3 in a senior or lead role.
• Hands-on NinjaOne experience, or a comparable enterprise RMM platform.
• Real operational time in Rapid7 InsightVM and InsightIDR — tuning, reporting, workflow.
• Solid Azure security skills: Defender for Cloud, Sentinel, Entra ID, Key Vault, Azure Policy.
• Working knowledge of AWS security: GuardDuty, Security Hub, IAM, CloudTrail, KMS.
• Experience securing a Microsoft 365 tenant, including Defender for Office 365.
• PowerShell scripting. Python or KQL is a plus.
• HIPAA or similar regulated-industry background.
• You can write clearly and hold your ground in front of non-technical executives.
• CISSP, CCSP, GCIH, AZ-500, SC-200, or AWS Certified Security – Specialty.
• Healthcare RCM experience, or familiarity with Latitude by Genesis.
• Time spent on GenAI or LLM security — data loss prevention, prompt and output governance.
• M&A IT integration experience.
• SOC 2 or HITRUST audit history.

Benefits

• Competitive pay with ample opportunities for professional growth.
• Fully remote position with a stable Monday–Friday schedule.
• Collaborative, performance-driven environment with expert leadership.
• Mission-driven work supporting essential healthcare services.
• Recognition as a nationally respected leader in healthcare revenue management.

Physical Requirements

• Comfortable working at a computer for extended periods.
• Ability to occasionally lift items weighing up to 15 pounds.

What to Expect When You Apply

Our hiring process is designed to find exceptional candidates. Once your application is received, you'll receive an invitation to complete an initial skills assessment. This step is essential: completing this assessment promptly positions you for an interview and demonstrates your commitment to excellence.

We believe in creating exceptional teams, and this process ensures that every member at RSi has the opportunity to thrive and grow.

Ready to be part of something special? Apply now and join our team!