Senior Information Security Engineer
Editas Medicine · Cambridge, MA · 3 wk ago
HybridInformation Technology$16k–$173k/yrFull-time
Decoding The Role
The Senior Information Security Engineer will enable Editas Medicine to operate with confidence by engineering a resilient, scalable, and proactive security posture that protects sensitive scientific, clinical, and corporate data.
- Lead the design and implementation of enterprise-grade security controls, including network security, cloud security, endpoint protection, and identity platforms.
- Evaluate and integrate advanced security tools, automation frameworks, and detection technologies.
- Oversee security monitoring, threat hunting, and incident response activities.
- Conduct deep-dive investigations into complex security events and coordinate cross-functional response efforts.
- Develop and refine detection logic, playbooks, and response workflows.
- Perform and lead risk assessments, threat modeling, and security reviews for applications, systems, and vendors.
- Contribute to the development and enforcement of security policies, standards, and best practices aligned with frameworks like NIST, ISO 27001, and CIS.
- Drive continuous improvement of security processes, tooling, and operational efficiency.
- Manage and oversee security engineers at our MSP and serve as a subject-matter expert across the organization.
- Foster collaboration between IT and business functions (e.g., Genomics & Bioinformatics, Finance, HR, etc.) to establish a culture of security.
- Communicate complex security issues to technical and non-technical stakeholders, including leadership.
Characterizing Your Impact
- Security Architecture Maturity: Deliver and operationalize a unified security architecture across cloud, network, and endpoint environments.
- Threat Detection & Response Improvement: Reduce mean time to detect (MTTD) and mean time to respond (MTTR) to security incidents, supported by improved detection logic, playbooks, and automation.
- Vulnerability Management Predictability: Establish a risk-based vulnerability management program where critical vulnerabilities are remediated and reporting is consistent and transparent.
- Identity & Access Hardening: Implement strengthened IAM controls including MFA, SSO, and least-privilege baselines resulting in full MFA coverage and measurable reductions in excessive permissions.
- Cloud Security Enhancements: Deploy and validate cloud security guardrails (AWS/Azure) that achieve full compliance with defined cloud security baselines and reduce misconfigurations.
- Incident Response Readiness: Lead at least two cross-functional tabletop exercises and implement resulting improvements to IR processes, tooling, and communication workflows.
- Governance & Compliance Alignment: Complete annual risk assessments, policy updates, and audit support activities with no major findings attributable to security engineering gaps and ensuring stakeholders feel confident in the company's ability to protect sensitive data and systems.
- Cross-Functional Security Adoption: Build strong partnerships within IT and with business teams that make security a shared responsibility and resulting in consistent integration of security reviews into new technology and vendor decisions.
Requirements
- Strategic Thinking, Influence & Collaboration, Communication Excellence, Problem Solving & Decision Making, Ownership & Accountability, Continuous Improvement Mindset, Team Leadership.
Qualifications
- 8-10+ years of experience in information security, security engineering, or related technical fields.
- Deep knowledge of network security, cloud security (AWS, Azure), and identity security (IAM, SSO, MFA, Zero Trust).
- Hands-on experience with SIEM, EDR/XDR, firewalls, vulnerability scanners, email security, and cloud native security tools.
- Strong understanding of threat detection, incident response, and forensics fundamentals.
- Proficiency in scripting/automation (Python, PowerShell).
- Familiarity with secure development practices and common vulnerabilities (OWASP Top 10, SANS Top 25).
- Excellent communication and leadership skills.
Preferred Qualifications
- Experience with security architecture frameworks and enterprise-scale design.
- Background in threat intelligence, malware analysis, or red/blue team operations/tabletop exercises.
- Familiarity with compliance frameworks such as SOC 2, PCI-DSS, HIPAA, or GDPR.
Benefits
- Blue Cross Blue Shield PPO Medical Plan
- Company-funded Health Savings Account
- Dental and Vision Insurance
- Life and Disability Insurance
- Dependent Care Account
- Tuition Reimbursement
- 401(k) plan with company match
- Employee Assistance Plan
- Wellness Programs
- Flexible Paid Time Off policy.
Salary Range
- $160,00 - $173,000
Pay Transparency
- Editas Medicine is committed to transparency and accuracy in our hiring practices. The anticipated salary range for each position is posted within the role. The final salary offer will be determined based on a comprehensive assessment of the candidate's qualifications, including education, training, and relevant experience. Additional factors such as external market conditions, the role's criticality, and internal equity will also be considered. Editas Medicine's compensation philosophy ensures fair and equitable pay practices.