Information Security Engineer

The Information Security team defends the company's digital infrastructure by designing, implementing, and improving the company's cybersecurity architecture. This is a critical role responsible for protecting infrastructure, cloud, edge devices, and data against unauthorized use, modification, exfiltration, or damage. This role identifies threats, manages projects and engineers solutions that impact the entire company. An ideal candidate for this role is technical, dedicated to learning new things, security-minded, strong initiative, and able to manage projects autonomously.

• Become proficient in security tools in a wide variety of disciplines including network, cloud, email, threat detection and response, compliance, etc
• Analyze, follow up, and directly remediate ticket queue of suspicious/malicious events (SIEM, email security tools, network security tools, etc)
• Follow up on ticket queue of internal IT requests/approvals
• Follow up on security-related communications from users, vendors, sponsors (topics: Threats reported by users, vendor breaches, verification of the safety of files/emails, etc)
• Maintain informational assets database and coordinate the review process to assure the appropriate permission levels to those assets
• Perform security audits to assure policies and procedures are being followed
• Research and perform write-ups for complex technical topics, vendor proposals, company policy recommendations, etc
• Assist Information Security Engineers on enterprise-wide projects including deploying security technologies, cooperating with compliance requests, and supporting other IT teams

• Minimum of bachelor's degree, preferably in Information Technology;

• Prior Internship/co-op experience within Information Security or other security-related jobs

• Experience with using and maintaining some of the following:

  • SIEM
  • Endpoint Detection & Response
  • Cloud based architecture such as Azure
  • Privileged Access Management/Identity Access
  • Active Directory
• Soft skills including exceptional communication skills, working well in small groups, and analytical thinking with the ability to solve complications
• The ability to prioritize projects
• Fundamental scripting skills, such as PowerShell/Python

Nice to have:

• Experience with vulnerability assessment tools such as Nessus and Tenable;
• Experience with enterprise web proxy solutions, web filters, and VPN;
• Experience with email security solutions;
• Experience with firewall and network architecture;
• Experience with administrating Windows environment including GPO and servers;
• Previous employment or experience in a highly regulated industry such as healthcare, financial, or defense experience with standards such as ISO, NIST, HIPAA, GDPR, SOC Type 2, etc; and
• Auditing and policy-writing experience. 

Medpace is a full-service clinical research organization (CRO). We provide Phase I-IV clinical development services to the biotechnology, pharmaceutical and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through its scientific and disciplined approach. We leverage local regulatory and therapeutic expertise across all major areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, anti-viral and anti-infective. Headquartered in Cincinnati, Ohio, employing more than 5,000 people across 40+ countries.

People. Purpose. Passion. Make a Difference Tomorrow. Join Us Today.

The work we've done over the past 30+ years has positively impacted the lives of countless patients and families who face hundreds of diseases across all key therapeutic areas. The work we do today will improve the lives of people living with illness and disease in the future.

Medpace Perks

• Flexible work environment 
• Competitive compensation and benefits package
• Competitive PTO packages
• Structured career paths with opportunities for professional growth
• Company-sponsored employee appreciation events
• Employee health and wellness initiatives

Awards

• Recognized by Forbes as one of America's Most Successful Midsize Companies in 2021, 2022, 2023 and 2024
• Continually recognized with CRO Leadership Awards from Life Science Leader magazine based on expertise, quality, capabilities, reliability, and compatibility

What to Expect Next

A Medpace team member will review your qualifications and, if interested, you will be contacted with details for next steps.