Information Security Engineer- Hybrid- Nashville TN

About Lucent Health

Lucent Health combines top-tier claims management with a compassionate, human-focused, data-driven care management solution. This approach helps self-insured employers provide care management that enables health plan participants to make smarter, cost-saving healthcare decisions. Continuous data analytics offer ongoing insights, ensuring participants receive the right care, at the right cost, at the right time. Join us as we build a company that aims to be a better health benefits partner for self-insured employers.

Company Culture

We believe that the success of Lucent Health relies on having employees who are honest, ethical and hardworking. These values are the foundation of Lucent Health.

Honest

• Transparent Communication: be open and clear in all interactions without withholding crucial information
• Integrity: ensure accuracy in reporting, work outputs and any tasks assigned
• Truthfulness: provide honest feedback and report any issues or challenges as they arise
• Trustworthiness: build andmaintaintrust by consistentlydemonstratingreliable behavior

Ethical

• Fair Decision Making: ensure all actions and decisions respect company policies and values
• Accountability: own up to mistakes and take responsibility for rectifying them
• Respect: treat colleagues, clients and partners with fairness and dignity
• Confidentiality: safeguard sensitive information and avoid conflicts of interest

Hardworking

• Consistency: meet or exceed deadlines,maintaininghighproductivitylevels
• Proactiveness: take initiative to tackle challenges without waiting to be asked
• Willingness: voluntarily offer toassistinadditionalprojects or tasks when needed
• Adaptability: work efficiently under pressure or in changing environments

Summary

We are seeking a hands-on Information Security Engineer to design, implement, and operate enterprise security controls across on-premises and cloud environments. This role is responsible for protecting endpoints, identities, networks, and data while supporting regulatory compliance and audit readiness. The ideal candidate brings strong operational experience with modern security tools and can balance day-to-day security operations with continuous improvement of the security program.

Responsibilities

• Design, implement, andmaintainsecurity controls acrossendpoint, email, network, and cloud environments
• Administer andoptimizeEDR/XDR platforms (e.g., CrowdStrike) for threat detection and response
• Manage and tune email security platforms (e.g., Proofpoint) including phishing protection and DLP controls
• Operate,monitor, and continuously improve SIEM (e.g., Sumo Logic) for detection, alerting, and log analysis
• Configure and manage enterprisefirewalltechnologies (e.g., Cisco, Fortinet, Meraki)
• Support incident detection, investigation, and response activities in coordination with internal and MSSP partners
• Administer Microsoft security stack including Entra ID, M365 Defender, Conditional Access, and MFA
• Implement and enforce least-privilege access and identity protection controls
• Monitor identity-related threats and support response actions
• Secure Azure and/or AWS environments across IaaS, PaaS, and SaaS services
• Implement baseline configurations and cloud security controls aligned to best practices
• Monitor cloud workloads and integrate logs into SIEM for centralized visibility
• Support secure architecture design, including identity, network segmentation, and data protection
• Support regulatory frameworks including SOC 2, HIPAA, ISO 27001, and HITRUST
• Assist with internal and external audits, including evidence collection and remediation tracking
• Maintain and improve security policies, standards, and procedures
• Partner with cross-functional teams to ensure control effectiveness and audit readiness

Qualifications

Required

• 3–7 years of experience in information security, security engineering, or security operations
• EDR (CrowdStrike preferred)
• Email security platforms (Proofpoint preferred)
• SIEM platforms (Sumo Logic or similar)
• Strong understanding of network security and firewall technologies
• Experience with Microsoft security stack (Entra ID, Defender, Conditional Access, MFA)
• Experience securing Azure and/or AWS environments
• Solid understanding of security principles:
  • Identity & access management
  • Network segmentation
  • Threat detection and response
  • Logging and monitoring

Preferred

• Experience supporting SOC 2, HIPAA, HITRUST, or ISO 27001 audits
• Experience working with MDR/MSSP providers
• Familiarity with vulnerability management and remediation processes
• Relevant certifications (one or more preferred): CISSP, CCSP, Security+, AZ-500, AWS Security

Equal Employment Opportunity Policy Statement

Lucent Health is an Equal Opportunity Employer that does not discriminate based on actual or perceived race, color, creed, religion, alienage or national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and related medical conditions), gender identity, gender expression, transgender status, sexual orientation, marital status, military service and veteran status.