WHO WE ARE 

Evergreen Nephrology partners with nephrologists to transform kidney care through a value-based, person-centered, holistic, and comprehensive approach to kidney care. We believe patients living with kidney disease deserve the best care. We are committed to improving patient outcomes and improving quality of life by delaying disease progression, shifting care to the home, and accelerating kidney transplants. 

We help nephrologists focus on the right patients at the right time across the full care spectrum. We do this by providing them with the best-in-class interdisciplinary clinical resources, analytical insight and tools, and services to patients. 

We listen to the needs of our patients, our employees, and our client partners, continually working to push beyond the status quo in which the care system manages patients today. 

 

WHO YOU ARE 

You are devoted, compassionate, and passionate about creating an exceptional employee experience. You’re excited to be part of building a team from the ground up, and love to help set up employees for success by supporting their onboarding, performance management, and engagement. You thrive in innovative and evolving environments with high rates of change. You are driven by process improvements. Does this sound like you? If so, we should talk.

 

YOUR ROLE 

The Senior Cybersecurity Engineer is responsible for functioning as the primary custodian of Evergreen Nephrology's critical assets and information systems. Partnering closely with the Sr. Director of Information Systems, you will support and enhance the Information Security program, overseeing the protection and monitoring of Evergreen’s cloud-based systems, network devices, and endpoints, addressing security incidents and vulnerabilities to mitigate risks. Additionally, you will partner with the Sr. Director of Information Security to develop and implement security strategies, ensuring the confidentiality, integrity, and availability of Evergreen’s cloud infrastructure on Azure and Office 365 platforms.

As a Senior Cybersecurity Engineer at Evergreen Nephrology, you are able to excel in a dynamic environment where priorities shift rapidly, taking full responsibility for your role and deliverables, while also guiding and mentoring junior team members. Exceptional communication skills help you articulate ideas clearly and inclusively, thriving in collaborative settings to solve complex problems.

 

PRIMARY FUNCTIONS FOR THIS ROLE

  • This role may mentor and coach more junior team members while also providing guidance and support in their professional development and daily tasks.
  • Work within our security team to develop, engineer, and maintain comprehensive security solutions for Evergreen’s Azure and Office 365 environments. This includes protecting sensitive data, PII, and PHI in strict compliance with HIPAA and HITRUST regulations.
  • Lead the strategy and ongoing enhancement of the configuration and management of Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions.
  • Develop and harmonize sustainable security strategies that significantly strengthen Evergreen’s overall security posture and ensure compliance with all relevant regulatory and industry requirements leveraging in-depth expertise in the features and functionalities of Microsoft 365 security solutions, including but not limited to Entra, Defender XDR, Defender for Cloud Apps, Purview, Defender for Endpoints, and Information Protection and Governance.
  • Implement and manage a comprehensive suite of technical security controls and tools, including but not limited to Azure monitoring and alerts, endpoint protection, firewalls, routers, switches, Azure AD, group policies, and conditional access policies. Ensure that proper monitoring, logging, and automated notification mechanisms are in place for all critical systems, applications, network devices, and processes.
  • Continuously monitor Evergreen's cloud environments for security threats and vulnerabilities. Promptly respond to and remediate any incidents, minimizing potential impact and ensuring the ongoing security and integrity of Evergreen’s information systems and assets.
  • Collaborate with the Security Team and Sr. Information Security Director to develop incident response playbooks. Ensure that these playbooks provide clear guidance for properly investigating, documenting, and resolving security incidents.
  • Take a proactive role in all phases of security incident response activities, including triage, containment, eradication, and recovery, when necessary.
  • Collaborate closely with the Sr. Director of Information Security and key business units to develop and maintain a comprehensive Data Loss Prevention (DLP) strategy. This strategy must provide robust protection against unauthorized access or exfiltration of PII, ePHI, and other sensitive business information without hindering Evergreen’s ability to conduct day-to-day operations.
  • Develop and implement standardized, secure configurations for all endpoints, network devices, and applications. Ensure that unnecessary ports, services, and features are properly disabled or removed before deployment to production environments.
  • Ensure that all security tools, including but not limited to Zscaler, Sentinel One, SIEM, O365, Abnormal, and Absolute, are properly configured and aligned with the policies and standards outlined in Evergreen's Information Security Policy.
  • Perform periodic vulnerability scans to ensure all endpoints, firewalls, and network devices are running the latest security patches. Prioritize the remediation of high and critical vulnerabilities within acceptable remediation timelines. Confirm that default-deny rules are in place, allowing traffic only for the necessary services and ports that have been explicitly approved. Ensure that all configuration changes are properly documented, reviewed, and approved through Evergreen's formal change control process.
  • Develop well-informed security recommendations and solutions in collaboration with the Sr. Director of Information Security, key stakeholders and business units.
  • Work closely with the Sr. Director of Information Security to pinpoint security loopholes, vulnerabilities, inefficiencies, and areas for enhancement. Integrate advanced security tools, AI, and automation strategies to enhance Evergreen's ability to effectively detect, respond, and recover from security incidents.
  • Collaborate with the Sr. Director of Information Security to make strategic decisions regarding the procurement, consolidation, and implementation of new security tools and technologies. Conduct thorough proof-of-concept evaluations to ensure selected solutions effectively address Evergreen's security requirements and integrate seamlessly with existing infrastructure.
  • Develop, maintain, and regularly update all relevant documentation, including security policies, procedures, standards, and diagrams. Ensure that all documentation is stored in a secure, centralized repository, with proper version control and easy accessibility for authorized team members.
  • Proactively stay informed about the latest security threats, vulnerabilities, and industry trends. Leverage this knowledge to identify, recommend, and implement improvements to Evergreen's security strategy and operations.

 

HOW YOU QUALIFY

  • Demonstrated ability to lead and mentor security team members, fostering continuous improvement and collaboration
  • Highly entrepreneurial spirit with a "make it happen" attitude
  • High degree of emotional intelligence, competence, maturity, adaptability, resilience, integrity, and initiative
  • Exceptional interpersonal skills and the ability to collaborate effectively with executives, managers, and team members across various departments, fostering a positive and productive work environment
  • Ability to communicate a security strategy to both technical and non-technical audiences
  • Bachelor's Degree in Computer Science, Information Security, or a related field
  • A minimum of 7 years of experience in cybersecurity
  • Proven understanding of healthcare privacy and security practices, with knowledge of regulations such as HIPAA, HITECH, HITRUST, NIST, and PCI DSS (ideal)
  • Certification in one or more of the following: CompTIA Sec+, CYSA, CEH, CISSP, CISM, CISA, CCSP, Azure Fundamentals, GCIH, GCFA
  • Strong technical foundation in security technologies and tools, such as DLP, SIEM, Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions, Azure Cloud Security, Intune, Defender, Entra, Conditional Access Policies, and Endpoint Controls, with the ability to design, implement, and manage robust security solutions
  • Demonstrated proficiency in leveraging the security capabilities of Microsoft Azure and Office 365 to protect sensitive data, ensure compliance, and mitigate risks
  • Knowledge of cybersecurity frameworks such as NIST, HITRUST, CIS, HIPAA, PCI
  • Experience creating scripts and automating processes
  • Strong incident response skills, including computer intrusion investigations and digital forensics in enterprise environments
  • Excellent organization, planning, time management, project coordination, and project management skills
  • Strong analytical and problem-solving skills

 

Pay range for this role is $140,000 to $150,000, with exact pay determined based on experience, education, demand for role, and other role-specific criteria.

 

HOW YOU ARE SUPPORTED

You will benefit from Evergreen Nephrology’s exceptional total rewards package, including competitive base pay with bonuses, paid time off starting at four weeks for full-time employees, 12 paid holidays per year, reimbursement for continuing medical education, 401k with match, health, dental, and vision insurance.

We are proud to offer family-friendly policies that support paid parental leave and flexible work arrangements.

We commit to a robust training and development program that starts with onboarding and continues throughout your career with Evergreen Nephrology.

As an inclusive and diverse team, you will collaborate with like-minded healthcare professionals who, like you, understand the importance and value of Evergreen Nephrology’s high-quality, value-based care model.

Evergreen Nephrology is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, Veteran status, or other legally protected characteristics. Learn more about your EEO rights as an applicant (Opens in a new window) .

Evergreen Nephrology will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation or that of other applicants. United States Department of Labor. Learn more (Opens in a new window).

Evergreen Nephrology is committed to working with and providing reasonable accommodations to job applicants with physical or mental disabilities. Applicants with a disability who require a reasonable accommodation for any part of the application or hiring process should email us for assistance. Reasonable accommodations will be determined on a case-by-case basis. 

 

 

 

 

Apply for this Job

* Required
resume chosen  
(File types: pdf, doc, docx, txt, rtf)
cover_letter chosen  
(File types: pdf, doc, docx, txt, rtf)
When autocomplete results are available use up and down arrows to review
+ Add another education


Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Evergreen Nephrology’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Voluntary Self-Identification of Disability

Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.


Enter the verification code sent to to confirm you are not a robot, then submit your application.

This application was flagged as potential bot traffic. To resubmit your application, turn off any VPNs, clear the browser's cache and cookies, or try another browser. If you still can't submit it, contact our support team through the help center.