The Froedtert & the Medical College of Wisconsin regional health network is a partnership between Froedtert Health and the Medical College of Wisconsin supporting a shared mission of patient care, innovation, medical research and education. Our health network operates eastern Wisconsin's only academic medical center and adult Level I Trauma center engaged in thousands of clinical trials and studies. The Froedtert & MCW health network, which includes ten hospitals, nearly 2,000 physicians and more than 45 health centers and clinics draw patients from throughout the Midwest and the nation.
SUPERVISOR EPIC SECURITY
Location
United States
Posted
1 day ago
Salary
$41 - $71 / hour
Seniority
Mid Level
Job Description
SUPERVISOR EPIC SECURITY
Froedtert
Role Description As a frontline leader in the Cybersecurity Department, the Supervisor of Epic Security is responsible for overseeing access control, auditing, and risk mitigation efforts within Froedtert ThedaCare’s Epic environment. This role ensures that Epic security practices align with clinical workflows, regulatory requirements, and organizational cybersecurity standards. The Supervisor leads a team of Epic Security Analysts, coordinates with operational and IT stakeholders, and supports secure, efficient, and compliant access to electronic health records (EHR). This position plays a pivotal role in identity and role governance, audit response, and continuous improvement in Epic access and configuration practices. Qualifications - At least five (5) years of experience as a Senior Epic Security Administrator required. - Seven (7) or more years of senior-level experience in Epic Security preferred. - Knowledge of computer principles at a level normally acquired through completion of a Bachelor’s Degree in a relevant technology field or acquired through a combination of education and experience is required. Requirements - Emerging Leader abilities. - Demonstrated interpersonal skills in communications with all levels of hospital personnel, vendors, IT personnel, and leadership. - Analytical and problem-solving skills. - Ability to manage multiple tasks. - Highly motivated and ability to operate under limited management. - Ability to prioritize and execute in high-pressure situations. - Ability to communicate clearly and effectively, both written and verbal. - Current Epic Security Certification with Provider and Data Courier badges preferred. Benefits - Pay is expected to be between: (expressed as hourly) $41.37- $70.76. Final compensation is based on experience and will be discussed with you by the recruiter during the interview process. - Paid time off. - Growth opportunity - Career Pathways & Career Tuition Assistance, CEU opportunities. - Academic Partnership with the Medical College of Wisconsin. - Referral bonuses. - Retirement plan - 403b. - Medical, Dental, Vision, Life Insurance, Short & Long Term Disability, Free Workplace Clinics. - Employee Assistance Programs, Adoption Assistance, Healthy Contributions, Care@Work, Moving Assistance, Discounts on gym memberships, travel and other work-life benefits available.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Adjunct Faculty, Artificial Intelligence – Cybersecurity
UMGC VenturesA new model in higher education funding from a leader in education innovation, UMGC.
• Actively engage students though frequent interaction that motivates them to succeed, and conveys a genuine energy and enthusiasm for their learning. • Guide students in active collaboration and the application of their learning in problem- and project-based learning demonstrations. • Provide rich and regular constructive feedback, utilizing rubrics effectively for the assessment of student work, and acknowledging student accomplishments. • Demonstrate relevant and current subject-matter expertise, and help students connect concepts across their academic program. • Provide feedback to your program chair on possible curricular improvements.
Application Security Engineer - Financial Sector
DevsuDevsu is a technology agency that provides software development services, IT augmentation and staffing.
Role Description En Devsu buscamos un/a profesional senior en Ciberseguridad Aplicativa que lidere la ejecución de pruebas de seguridad, validación de requerimientos no funcionales y certificación de software en entornos bancarios y financieros. La posición es Remota para candidatos de LATAM y presencial para en Quito, Ecuador, estarás asignado/a a uno de nuestros clientes más importantes del sector financiero y bancario de Latinoamérica. - Ejecutar pruebas de seguridad en aplicaciones (Front-end, Back-end, APIs, bases de datos, integraciones, infraestructura, cloud, móviles, AI/LLM, plugins y componentes adicionales). - Validar el cumplimiento de requerimientos no funcionales de seguridad definidos por Arquitectura. - Acompañar y dar soporte al Secure Software Development Life Cycle (SSDLC). - Definir y documentar casos de prueba de seguridad previos a la ejecución, alineados a los estándares establecidos. - Clasificar vulnerabilidades utilizando la metodología CVSS 4.0. - Generar informes técnicos detallados con hallazgos, evidencias y recomendaciones de remediación. - Elaborar reportes ejecutivos y métricas de cumplimiento para stakeholders técnicos y de negocio. - Entregar habilitantes para la gestión y cierre efectivo de vulnerabilidades. - Realizar seguimiento a la efectividad de remediaciones implementadas. - Brindar soporte en incidentes de seguridad, eventos de Bug Bounty y actividades de threat hunting. - Verificar matrices de riesgo con enfoque en factor ciberseguridad. - Incluir lineamientos de seguridad en iniciativas de Tribus, COEs y proyectos estratégicos. - Implementar mecanismos de monitoreo y alertas para identificar desvíos o incumplimientos. - Promover mejora continua, innovación y agilidad operativa desde la perspectiva de Seguridad Aplicativa. - Apoyar la ejecución de estrategias definidas por el área de Seguridad Aplicativa. Qualifications - Título universitario en Ingeniería de Sistemas, Informática o Ciberseguridad. - Postgrado en Ciberseguridad o Tecnologías de la Información. - Certificaciones en seguridad ofensiva o aseguramiento de aplicaciones (HTB CWES, HTB CPTS, eWPTX, CSSLP, CPENT, OSCP, OSWE, LPT, CEH Master, BSCP). Requirements - Experiencia comprobable en Secure Software Development Life Cycle (SSDLC). - Experiencia validando requerimientos no funcionales de seguridad. - Experiencia ejecutando pruebas de seguridad en: - Aplicaciones Front-end y Back-end - APIs e integraciones - Bases de datos - Infraestructura y entornos Cloud - Aplicaciones móviles - AI / LLM - Plugins y componentes adicionales - Manejo de la calculadora CVSS 4.0 para clasificación de vulnerabilidades. - Experiencia generando informes técnicos y ejecutivos con recomendaciones de remediación. - Experiencia en gestión y seguimiento de vulnerabilidades. - Documentación estructurada de casos de prueba y validación de efectividad. - Experiencia trabajando bajo metodologías ágiles. - Experiencia en plataformas y sistemas bancarios. - Experiencia brindando soporte en incidentes de seguridad y programas Bug Bounty. - Conocimiento en matrices de riesgo con enfoque en ciberseguridad. - Capacidad para generar métricas, indicadores y reportes ejecutivos. - Experiencia implementando mecanismos de monitoreo y alertas de cumplimiento. - Experiencia colaborando con Tribus, COEs y áreas de negocio desde Seguridad Aplicativa. Benefits - Contrato estable a largo plazo, con amplias oportunidades de crecimiento profesional. - Seguro médico privado para tu tranquilidad y la de tu familia. - Programas continuos de capacitación, mentoría y aprendizaje, para mantenerte actualizado/a en las últimas tecnologías y metodologías. - Acceso gratuito a recursos de formación en inteligencia artificial y herramientas de IA de última generación para potenciar tu trabajo diario. - Política flexible de tiempo libre remunerado (PTO), además de los días festivos pagos. - Participación en proyectos de software desafiantes y de clase mundial para clientes en Estados Unidos y Latinoamérica. - Colaboración con algunos de los ingenieros de software más talentosos de la región, en un entorno diverso, inclusivo y colaborativo.
Application & Cloud Security Specialist
KeyBankWe'll meet you in the "am I making the most on my savings?" moment. Bank, borrow, invest—we have it all. Member FDIC.
• Perform manual application security testing and penetration testing of web applications, APIs, and services. • Review and validate findings from SAST, SCA, and DAST tools, including triage and false positive reduction. • Conduct API security and dynamic testing to identify vulnerabilities and misconfigurations. • Assess open-source dependencies and third-party libraries for vulnerabilities and supply chain risk. • Evaluate cloud environments (GCP, Azure, AWS) for misconfigurations, excessive permissions, and exposure risks in support of the CSPM program. • Implement and maintain CI/CD security integrations, including scanning tools and automation workflows. • Develop scripts and CLI-based tooling to support scalable security testing and validation activities. • Partner with development teams to remediate vulnerabilities and improve secure coding practices. • Participate in architecture and design reviews, providing actionable security recommendations. • Utilize AI tools and coding assistants to enhance productivity, automate analysis, and improve testing efficiency while maintaining secure and responsible usage practices. • Track and report vulnerabilities, remediation progress, and security metrics.
• Design and implement robust application security solutions including use of AI and threat modeling. • Ensure that application security measures are integrated into all aspects of the organization's application infrastructure. • Deliver Data flow documentation for applications. • Advises IT and Security leaders in evolving TD SYNNEX’s application security strategies, technologies and processes. • Work closely with cross-functional teams, application developers, and business units, to ensure the security of applications, AI applications and API architectures. • Perform risk assessments of internal applications and API services, drive remediation and improvements. • Develop application security policies, standards and procedures.



