Security Engineer III
$150kAspirion
Job Type
Full-time
For more than two decades, Aspirion has been a market leader in revenue cycle services, specializing in some of the most complex and high impact areas of reimbursement. From challenging denials and zero balance reviews to aged accounts receivable, motor vehicle accident claims, workers' compensation, Veterans Affairs, and out of state Medicaid, we take on the work that others cannot solve and deliver real results for our clients. At the heart of that success is our team. Our teammates are the foundation of everything we do. With more than 1,400 individuals across the organization, we are united by a shared commitment to delivering exceptional outcomes and creating meaningful impact for the hospitals and health systems we serve.
We are building a results driven environment where high performance, collaboration, and continuous growth are expected and supported. The people who thrive here bring a growth mindset, stay open to new technology, and collaborate across teams to solve problems. You will have the opportunity to work alongside a talented and driven team, engage with innovative technology, and play a direct role in solving complex challenges that matter.
Joining Aspirion means more than taking a job. It means being part of a team that is shaping the future of healthcare operations while making a measurable difference for providers and patients alike.
SUMMARY
The Security Engineer III is a senior, hands-on engineer responsible for designing, implementing, and operating security controls in our AWS cloud and Kubernetes/containerized environments. This role operates independently with minimal oversight, translating governance, risk, and compliance requirements (including HIPAA and HITRUST MyCSF) into practical guardrails, engineering standards, and automated enforcement. The Security Engineer III partners closely with Infrastructure and application teams to strengthen secure SDLC practices (code and dependency scanning, secrets detection, CI/CD policy gates), improve cloud security posture, and ensure controls are measurable, auditable, and sustainable in production.
DUTIES AND RESPONSIBILIITES
- Own cloud security engineering for AWS by defining guardrails and configuration baselines (e.g., IAM least privilege, network segmentation, encryption, logging), partnering on implementation, and driving remediation of cloud posture findings to closure.
- Engineer security controls and governance for Kubernetes and containerized workloads (e.g., EKS): define and enforce admission policies, Pod Security standards, network policies, image governance, runtime protections, and secrets management patterns; partner with platform teams on implementation within clusters and supporting IAM.
- Drive secure SDLC controls and engineering governance: integrate and operate scanning and policy gates for application code (SAST), dependencies (SCA), secrets, containers/images, and Infrastructure as Code (IaC); define practical remediation SLAs and exception/waiver workflows aligned to risk.
- Define security policies, standards, and best practices for cloud and containerized environments, and translate them into implementable guardrails and reference patterns (policy-as-code, reference configurations, and developer guidance), including encryption/key management (e.g., KMS), secrets storage, and secure workload access patterns; validate adoption and baseline compliance in partnership with Infrastructure/Platform teams.
- Partner with Compliance to align technical controls to HIPAA requirements and produce audit-ready evidence (configurations, screenshots/exports, control narratives, and remediation tracking) for cloud and container platforms.
- Improve security visibility and detection in AWS and Kubernetes: define requirements, ensure high-quality logging, and create actionable detections/alerts in partnership with the SOC/SIEM owners.
- Run vulnerability management across the stack for cloud and containerized applications: triage and prioritize findings for application code, Infrastructure as Code, container images, third-party dependencies, and OS packages; coordinate fixes with engineering/platform teams, validate remediation, and track risk-based exceptions.
- Support incident response for cloud and container security events: perform technical triage, containment support, root cause analysis, and deliver preventative engineering changes.
- Develop and maintain security-as-code standards and reusable guardrails (e.g., Terraform modules/policies) and automated checks/policy gates to enforce baseline compliance across AWS accounts and Kubernetes clusters; partner with Infrastructure/Platform teams to roll out and operationalize these controls at scale.
- Independently manage security engineering deliverables from intake through delivery: clarify requirements, design solutions, document decisions/runbooks, and communicate status/risks to stakeholders.
- Translate HITRUST MyCSF/HIPAA and internal security policies into measurable cloud and SDLC control requirements; validate control effectiveness through testing and evidence collection.
- Contribute to security tool administration and continuous improvement (e.g., cloud posture management, vulnerability scanning, CI/CD scanning tools) by tuning rules, reducing false positives, and improving developer usability.
- Participate in on-call/escalation processes as needed; maintain runbooks and support post-incident reviews and corrective actions.
- Serve as a technical resource for peers through code/config reviews, pairing, and clear documentation; help raise the security bar through pragmatic standards and guidance.
- Perform other duties as assigned.
- Hands-on AWS security engineering: strong working knowledge of IAM, networking, encryption, logging/monitoring, and common AWS services in production environments.
- Kubernetes/container security expertise: ability to secure clusters and workloads (RBAC, network policies, pod security standards, image scanning/signing, secrets, and runtime considerations).
- Cloud governance mindset: ability to translate policy and risk into guardrails, standards, and automated enforcement (policy-as-code, baseline configurations, continuous compliance).
- Secure SDLC execution: experience operating SAST/SCA and secrets scanning in CI/CD, tuning results, and driving remediation workflows with engineering teams.
- Application and IaC security: ability to review patterns and code changes for secure configuration, identify common IaC misconfigurations, and partner with engineering teams to remediate issues.
- Full-stack vulnerability fundamentals: understands container image composition (base images, OS packages), dependency risk, and remediation approaches (patching, version pinning, rebuilds) in CI/CD and runtime contexts.
- Independent operator: can take ambiguous problems from concept to implementation with minimal oversight, documenting decisions and communicating progress, risks, and tradeoffs.
- Operational security fundamentals: ability to improve logging quality, support investigations, and implement preventative fixes based on root cause analysis.
- Collaboration and influence: works effectively with DevOps and developers to drive adoption of security standards without blocking delivery.
- Regulated environment awareness: understands what "audit-ready" looks like and can implement and evidence controls in HIPAA-regulated environments.
- Clear written communication: produces runbooks, implementation notes, and control evidence that is understandable to engineering, security, and compliance stakeholders.
- Comfort operating in ambiguity with high ownership, prioritizing effectively, and delivering measurable outcomes.
- 5+ years in security engineering, cloud infrastructure, DevOps, or related technical roles, with significant hands-on responsibility securing production AWS environments.
- Demonstrated experience implementing and improving cloud security posture (guardrails, standards, continuous compliance, vulnerability management) with measurable remediation outcomes.
- Strong AWS IAM skills (roles/policies, least privilege design, identity federation, service roles) and experience implementing secure access patterns for humans and workloads.
- Hands-on Kubernetes/container security experience, including implementing secure cluster/workload configuration and image governance in a production containerized environment.
- Experience implementing and evidencing security controls in regulated environments (HIPAA required), including encryption/key management, logging retention, and change/audit trails.
- Experience supporting incident response for cloud/workload security events, including investigation support, containment actions, and post-incident remediation.
- Automation and IaC experience (e.g., Python/Bash; Terraform) and familiarity with implementing policy-as-code and continuous compliance checks.
- Experience assessing and improving security for application code and IaC (e.g., Terraform/CloudFormation/Kubernetes manifests), including code review support, scanning, and remediation guidance.
- Experience managing container security vulnerabilities end-to-end, including image scanning, base image/OS package patching strategies, rebuild processes, and validation of remediations in deployment pipelines.
- Demonstrated experience implementing secure SDLC controls in CI/CD (e.g., GitHub Actions/Jenkins/GitLab), including SAST/SCA, container image scanning, secrets scanning, pipeline gates, and actionable remediation workflows.
- Experience operating in regulated environments (HIPAA required); familiarity with NIST and/or HITRUST is strongly preferred.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field preferred (or equivalent practical experience).
- Security and cloud certifications preferred: AWS Certified Security - Specialty or AWS Solutions Architect, Certified Kubernetes Security Specialist (CKS) or equivalent, and/or CISSP/CCSP (or ability to obtain within an agreed timeframe).
Salary Description
$150,000 a yr
Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Security Engineer III in Durham, NC vacancy
- LWC, Inc. is seeking an IT Security Specialist in Durham, North Carolina, responsible for troubleshooting L2 incidents, firewall configuration, and vendor coordination. The role includes managing Symantec End Point protection and analyzing logs using the Symantec SOC portal...Suggested
- ...Occupational Summary The Mechanical Engineer III provides leadership in the planning, design, and continuous improvement of heating, ventilation... ..., it is essential that all members of the community feel secure and welcome, that the contributions of all individuals are...SuggestedWork at office
$98.7k - $183.3k
...Job Description Summary Step into a pivotal engineering role where your expertise directly shapes advanced manufacturing operations. As a Process Engineer III, you will support the design, validation, maintenance, and lifecycle management of manufacturing equipment, facilities...SuggestedRelocation package$98.7k - $183.3k
...Please do not contact the recruiter directly. Summary Step into a pivotal engineering role where your expertise directly shapes the future of advanced manufacturing. As a Process Engineer III, you will provide engineering, validation, and maintenance support for...SuggestedRelocation package$113k - $173k
...IT Security Engineer Addison, TX (Hybrid); Bellevue, WA (Hybrid); Durham, NC (Hybrid); Emeryville, CA (Hybrid) The Security Engineer will collaborate with Security, IT, and Engineering teams to defend and strengthen our security operations posture. You will be an...SuggestedFull timeLive inWorldwideFlexible hours- ...Network Security Engineer Procom is a leading provider of professional IT services and staffing to businesses and governments in Canada. With revenues over $500 million, the Branham Group has recognized Procom as the 3rd largest professional services firm in Canada...Permanent employmentContract workFor contractorsH1b
$98.7k - $183k
...will play a critical role in keeping our manufacturing campus running safely, reliably, and ready for what’s next. As a Utility Engineer III, your expertise ensures that vital utility, HVAC, and electrical systems perform at their best—supporting the delivery of life-changing...Work experience placementRelocation package- An IT staffing and services firm is seeking a Network Security Engineer for a contract opportunity in Durham, NC. The role involves designing and implementing network security solutions, delivering projects on time, and maintaining security protocols. Candidates should...Contract workImmediate start
- ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on... ...that matter at a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations by monitoring...Minimum wageFull timeContract workTemporary workWork experience placementRemote work
- ...Canadian-Owned” IT staffing/consulting company. Procom’s areas of staffing expertise include: Job Description Sr. Network Security/Firewall Engineer Job Details The Security Engineer will be the primary individual responsible for working on client networks in a...Remote work
$98.7k - $183.3k
...a role where your expertise directly enables life‑changing therapies to reach patients safely and efficiently. As a Validation Engineer III, you will play a critical role in bringing manufacturing systems to life—leading validation efforts that ensure compliance, quality...Relocation package- ...ensuring application performance through automated testing. If you're passionate about leveraging cutting-edge technology and enhancing security practices, this is the perfect opportunity to make a significant impact in a forward-thinking organization. #J-18808-Ljbffr...
- ...Labcorp is seeking a Lead Network Security Engineer Palo Alto to join our team at our Durham, NC location! Location : Durham, NC. Applicants who live within 35 miles of Durham, NC location will follow a hybrid schedule. This schedule includes a minimum of three...Full timeTemporary workCasual workInternshipWork at officeRemote workMonday to FridayFlexible hoursDay shift3 days per week
$90k - $100k
...Position Summary Tetra Tech is adding a Mid-level Civil Engineer to our High Performance Building Group that focuses on facilities and infrastructure in the U.S. Work includes federal, commercial, manufacturing, renewable energy, data centers, microgrids and public health...Work at officeLocal areaRemote workMonday to FridayFlexible hours- ...Software Test Engineer Microservices & REST API Location: Raleigh, NC or Dallas, TX (4 days onsite) Duration: 12 months+ Responsibilities: # Review business requirements, software designs, functional specifications, user scenarios, and existing test coverage...Local area
$128.4k - $172.3k
...AI powered experiences across Cisco. Our mission is to build secure, scalable AI platforms that empower teams to safely develop, deploy... ...AI, cloud infrastructure and security -partnering across engineering, security, compliance, and product teams to bring trusted AI to...Full timeTemporary workLocal areaFlexible hours$77k - $100k
About This Role The Facilities Engineer is responsible for support of both GMP and non‑GMP utility systems at a dynamic and diverse biologics manufacturing site with great opportunities for personal and career growth. This position is responsible for utility equipment...Temporary workFor contractorsLocal areaRotating shift$150.3k - $195.2k
...research that advances the field of AI, as it relates to networking, security, programming, human-computer interaction, or other strategic... ...to relevant teams. Serves as research strategy liaison to engineers and product managers and works collaboratively with product...Full timeTemporary workLocal areaFlexible hours- * 5–8+ years in Application Security, Product Security, or Secure Software Development.* Hands-on experience securing CI/CD pipelines... ...communication and the ability to influence developers, DevOps engineers, and leadership.* Strong problem-solving skills with an automation...Local area
- ...not have the ability to be located remotely. The BioProcess Engineer downstream/Fill-Finish is responsible for executing the manufacturing... ...to patients who need them most? As a BioProcess Engineer III at Novartis, you will play a critical role in manufacturing advanced...Local areaRemote workWorldwideRelocation packageDay shift
$90k - $100k
Position Summary Tetra Tech is adding a Mid-level Civil Engineer to our High Performance Building Group that focuses on facilities and infrastructure in the U.S. Work includes federal, commercial, manufacturing, renewable energy, data centers, microgrids and public health...Work at officeLocal areaRemote workMonday to FridayFlexible hours- ...Services bring a dedicated team of expert mechatronic service engineers completely covering North America and backed by our Integrated... ...best service in the industry. Position Title IT Network Engineer Security Operations Applicants must be legally authorized to work in...Work at officeLocal areaRemote work
$60 - $70 per hour
...Our client, a leading organization in the technology and cybersecurity sector, is seeking a Senior Cyber Security Engineer to join their team. As a Senior Cyber Security Engineer, you will be part of the Security Engineering & Architecture team supporting critical cybersecurity...$102.17k
...clients across the country. Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst, where you will operate... ...resilient against evolving threats. You will work closely with engineering and development teams to safeguard systems that communities...H1b- ...Trinnex is seeking a Senior Cyber Security Analyst to join their Security Team in Durham, NC. In this role, you will protect critical... ...incident response, vulnerability assessments, and collaboration with engineering teams to enhance security practices. Ideal candidates will...
$90k - $100k
Tetra Tech, Inc. is seeking a Mid-level Civil Engineer to join their High Performance Building Group in Durham, North Carolina. This role involves leading civil design projects and mentoring staff, focusing on infrastructure related to federal, commercial, and renewable...Remote job- A leading organization in technology and cybersecurity is seeking a Senior Cyber Security Engineer in North Carolina. You will enhance security architectures, evaluate controls, and collaborate on compliance initiatives. The ideal candidate will have strong technical fluency...
- Vulcan Elements in Durham, North Carolina is seeking a Network Engineer to design, deploy, and maintain network infrastructure across its... ...like NIST and CMMC. This role is crucial for ensuring secure and high-performance connectivity in both IT and operational technology...
- ...introduced into source code, and to identify vulnerabilities already present. You will learn and drive adoption of key principles of secure software development and security tooling operations within a DevSecOps environment. The Expertise and Skills You Bring...Temporary workWorldwide
- ...Cloud Security Architect Location: Durham, NC, Westlake, TX Hybrid from SEP Duration: 12+ months Job Description: ~ Expert knowledge of AWS Cloud Architecture and experience with AWS Managed Services, Cloud Security, Docker and Kubernetes ecosystem, Cloud...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Engineer III. Be the first to apply!
Related searches
- information technology security engineer Durham, NC
- security engineer Durham, NC
- sr information security engineer Durham, NC
- senior application security engineer Durham, NC
- aws cloud security engineer Durham, NC
- IT security engineer Durham, NC
- network security engineer Durham, NC
- senior cloud security engineer Durham, NC
- senior security operations engineer Durham, NC
- security engineer intern


