Senior Operations Engineer Information Security

Threat Hunting Engineer – Information Security

NYP is in need of a highly motivated and technically skilled Threat Hunting Engineer to join our Information Security team. This role will focus on proactively identifying, investigating, and mitigating advanced threats across our enterprise environment. The ideal candidate will bring a strong background in systems engineering, security operations, and offensive/defensive security practices, enabling them to contribute immediately to hunting efforts, detection engineering, and incident response.

Key Responsibilities

• Conduct proactive threat hunting activities across enterprise systems, networks, and cloud environments.
• Develop and refine hunting hypotheses based on threat intelligence, adversary tactics (MITRE ATT&CK), and emerging trends.
• Analyze large-scale log, endpoint, and network data to identify anomalies and indicators of compromise.
• Build and maintain custom detection rules, scripts, and automation to improve hunting efficiency.
• Collaborate with SOC analysts, red team, and incident response teams to validate findings and close detection gaps.
• Engineer improvements in logging, telemetry, and security tooling to strengthen visibility and resilience.
• Contribute to post-hunt reports and knowledge sharing within the security organization.

Required Qualifications

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 5+ years of experience in at least two of the following areas:
  • Security Operations Center (SOC) monitoring and incident response
  • Red or Blue Team operations
  • Pen testing
  • Incident response
• Strong familiarity with attacker TTPs and MITRE ATT&CK framework.
• Strong systems engineering, network engineering, and/or security hardening of Windows, Linux, & cloud platforms
• Experience analyzing logs, packet captures, or endpoint data for evidence of compromise.
• Proficiency with at least one scripting/programming language (e.g., Python, PowerShell, Bash).
• Strong problem-solving and analytical skills with a proactive, investigative mindset.

Preferred Qualifications

• Experience with SIEM, EDR, or threat intelligence platforms.
• Familiarity with cloud security (Azure, AWS, etc).
• Prior experience developing detection logic or threat hunting playbooks.
• Relevant security certifications (e.g., eCTHP, OSCP, CCTHP, GCFA, CISSP).

Join a healthcare system where employee engagement is at an all-time high. Here we foster a culture of respect, belonging, and inclusion. Enjoy comprehensive and competitive benefits that support you and your family in every aspect of life. Start your life-changing journey today.

Please note that all roles require on-site presence (variable by role). Therefore, all employees should live within a commutable distance to NYP.

NYP will not reimburse for travel expenses.

__________________

• 2024 “Great Place To Work Certified”
• 2024 “America’s Best Large Employers” – Forbes
• 2024 “Best Places to Work in IT” – Computerworld
• 2023 “Best Employers for Women” – Forbes
• 2023 “Workplace Well-being Platinum Winner” – Aetna
• 2023 “America’s Best-In-State Employers” – Forbes
• “Silver HCM Excellence Award for Learning & Development” – Brandon Hall Group

NewYork-Presbyterian Hospital is an equal opportunity employer.

Salary Range:

It all begins with you. Our amazing compensation packages start with competitive base pay and include recognition for your experience, education, and licensure. Then we add our amazing benefits, countless opportunities for personal and professional growth and a dynamic environment that embraces every person. Join our team and discover where amazing works.