Staff Security Engineer, Forensic Engineer

Summary

Join Aledade as a Staff Security Engineer - Forensic Engineer and play a critical role in protecting sensitive healthcare data. Lead complex digital forensic investigations, support incident response, and enhance forensic readiness in a cloud-native environment. This high-impact role safeguards patient privacy and clinical data while maintaining operational integrity. You will partner with Legal, Privacy, and Compliance teams on HIPAA-related investigations and e-discovery. Produce detailed investigation reports for various stakeholders. Aledade offers a collaborative, inclusive, and remote-first culture.

Requirements

• BS/BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 10 years security domain experience without degree
• 8+ years of experience in digital forensics, incident response, or security engineering, preferably in SaaS or healthcare

Responsibilities

• Lead investigations into security incidents involving PHI/PII across endpoints, networks, SaaS platforms, and cloud infrastructure
• Perform forensic analysis to determine the scope, impact, and root cause of security breaches or data loss events
• Develop and maintain investigation procedures, forensic toolkits, and evidence handling practices aligned with industry and regulatory standards
• Partner with Legal, Privacy, and Compliance teams on HIPAA-related investigations and e-discovery matters
• Produce detailed investigation reports for internal stakeholders, regulators, and executive leadership

Preferred Qualifications

• Domain Specific Experience: Digital Forensics
• Strong expertise in cloud forensic investigations (AWS, Azure, or GCP), including container environments (e.g., Kubernetes)
• Hands-on experience with tools such as EnCase, Velociraptor, X-Ways, Volatility, or similar
• Understanding of HIPAA, HITECH, and other relevant healthcare security and privacy standards
• Solid knowledge of operating systems, file systems, memory structures, and log analysis
• Proficiency in scripting and automation (e.g., Python, PowerShell, Bash) to streamline investigations
• Strong written and verbal communication skills; able to present complex findings to diverse audiences
• Relevant certifications preferred: GCFA, GCFE, EnCE, CHFI, or similar
• Knowledge of HITRUST, SOC 2, or ISO 27001 control frameworks
• Background in threat hunting or malware analysis

Benefits

• Flexible work schedules and the ability to work remotely are available for many roles
• Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
• Robust time-off plan (21 days of PTO in your first year)
• Two paid volunteer days and 11 paid holidays
• 12 weeks paid parental leave for all new parents
• Six weeks paid sabbatical after six years of service
• Educational Assistant Program and Clinical Employee Reimbursement Program
• 401(k) with up to 4% match
• Stock options