Mid Level Security Engineer Jobs
Mid level security engineer jobs go to professionals ready to own security initiatives end to end, guide junior teammates, and make architectural decisions with limited oversight. Positions are spread across on-site, hybrid, and remote settings in Technology & Software, Consulting & Professional Services, and Banking & Financial Services, with employers like Amazon, CVS Health, and Google hiring at this level now.
Find JobsOverview
Showing 5 of 1,741+ Mid Level Security Engineer jobs
Cyber Security Engineer
Location: Larkin Bldg @ Exchange Street
Location of Job: US:NY:Buffalo
Work Type: Full-Time
Shift 1
Job Description
The Cyber Security Engineer is responsible for engineering, optimizing, and evolving the organization’s security platform stack across endpoint, email, identity, cloud, and network security controls. This role focuses on building and tuning security tooling, implementing best‑practice configurations, advancing zero trust enforcement, and integrating security capabilities across a multi‑site healthcare enterprise. The engineer works closely with application owners, project managers, infrastructure teams, and vendors to deliver secure, reliable, and compliant solutions.
In addition to platform engineering responsibilities, this role includes day‑to‑day operational and analyst duties such as handling security‑related tickets, investigating alerts and incidents, and participating in on‑call support. As security platforms, automation, and processes mature, the position is expected to shift toward a greater emphasis on engineering, optimization, and strategic initiatives. The engineer supports alignment with HIPAA and NIST CSF 2.0 and contributes to the ongoing maturity of programs such as DLP, endpoint hardening, secure remote access, and firewall and zero‑trust application onboarding.
Education And Credentials
BA/BS in Computer Sciences, Information, Cybersecurity, or a related field, or equivalent practical experience (typically 5-7 plus years of hands-on experience in IT, cybersecurity, or related technical roles.) required. Master's degree in computer science, information technology, cybersecurity, or a related field preferred.
Experience
3 plus years of experience in cybersecurity roles that include a combination of security engineering, security operations, and analyst responsibilities, including experience in several of the following areas required. 3 years of experience in managed firewall and network‑security workflows—including rule creation, application onboarding, access provisioning, and posture enforcement—across Firewall, VPN, proxy, IAM, and NIPS/WIPS platforms while partnering with PMs, application owners, and infrastructure teams to support secure builds and updates required. 3 years of experience in implemented and enforced zero‑trust controls, including NAC, endpoint firewall policies, network segmentation, and secure remote access, with continuous refinement as organizational needs evolved required. . 3 years of experience in engineered and optimized SIEM, EDR, DLP, MDM, and endpoint‑hardening platforms, applying best‑practice configurations to maintain a strong enterprise security posture required. 3 years of experience in developed and tuned detection logic, correlation rules, and alerting to improve signal fidelity and reduce noise across large, modern network environments required. 3 years of experience in built automation using scripting languages and developed SOAR playbooks to streamline response workflows and reduce manual effort required. 3 years of experience in secured Windows and Linux platforms through hardening, monitoring, and alignment with HIPAA, NIST CSF 2.0, and internal compliance requirements required. 3 years of experience in advanced cloud‑security initiatives and evaluated emerging technologies to ensure secure adoption and integration into existing controls required. 3 years of experience in participated in on‑call rotations for security incidents and fulfilled security‑centric service requests including access reviews, secure remote access setup, and network share provisioning required. 3 years of experience in maintained documentation of security controls, configurations, and procedures; identified opportunities to enhance the organization’s overall security posture.
Working Conditions
- Weight Requirement - Light (up to 20 lbs)
Job Details
Department: KH Cyber Security
Standard Hours Bi-Weekly: 75.00
Weekend/Holiday Requirement: Yes
On Call Required: Yes
With Rotation:
Scheduled Work Hours: 8a-5p
Work Arrangement: Hybrid
Union Code: N00 - Non Union KH
Requisition ID#: 21307
Grade: EX216
Pay Frequency: Bi-Weekly
Salary Range: $94,490.57 - $129,926.94
Wage will be determined based on factors such as candidate's experience, qualifications, internal equity, and any applicable collective bargaining agreement.
Kaleida Health’s mission is to advance the health of our community, and we believe our diversity, equity, and inclusion (DEI) strategic work is mission- critical for the good of our workforce and the community who need and depend on our care and services. We understand that racism and health inequities stand firmly in the way of advancing the health of our community, and Kaleida Health envisions DEI as the pursuit of equity and restorative justice for every person. We will exemplify courage and accountability through both the professing and practice of our core values for our friends, colleagues, and community. Kaleida Health is committed to creating a culture of equity and inclusion where diversity is valued and celebrated!
See All 1,741+ Mid Level Security Engineer Jobs
Find roles that match your experience and apply in just a few clicks.
Find JobsMid Level Security Engineer Job Market
Who's Hiring
- Amazon64
- CVS Health47
- Google45
- Booz Allen Hamilton30
- Amazon Web Services23
Top Industries Hiring
- Technology & Software449
- Consulting & Professional Services188
- Banking & Financial Services110
- Healthcare & Medical Services108
- Retail85
Mid Level Security Engineer Jobs: Frequently Asked Questions
How do I get a mid level security engineer job?
Position yourself by leading with ownership: highlight specific projects you drove independently, vulnerabilities you identified and remediated, and tools or processes you built rather than just used. Tailor your resume to show scope, not just tasks. Certifications like Security+, CEH, or CISSP associate strengthen applications, and demonstrating experience with cloud security, SIEM platforms, or penetration testing helps you stand out at this level.
Which companies hire mid level security engineers?
Companies hiring mid level security engineers right now include Amazon, CVS Health, and Google, based on current listings on Migrate Mate as of July 2026. Hiring at this level comes from a wide range of employers, including large enterprises building out security operations centers, technology companies scaling their product security programs, and regulated industries like finance and healthcare that maintain continuous security headcount.
Are there remote mid level security engineer jobs?
Yes, remote and hybrid options are widely available at this level. About 33% of mid level security engineer openings are remote or hybrid as of July 2026, reflecting how security work adapts well to distributed teams. Roles involving cloud security, threat analysis, and security engineering for software products are especially common in remote or flexible arrangements.
How do I move up to a mid level security engineer role?
The path from entry level to mid level security engineer is built through accumulating ownership over time. Focus on progressing from executing tasks to leading them, such as running a penetration test independently or owning a vulnerability management program from detection to closure. Demonstrating measurable impact, like reducing mean time to remediate or implementing a new detection rule set, signals readiness for mid level responsibilities.
Which industries hire the most mid level security engineers?
Mid Level security engineer roles concentrate in Technology & Software, Consulting & Professional Services, and Banking & Financial Services, based on current listings on Migrate Mate as of July 2026. These sectors drive consistent hiring at this level because they handle sensitive data at scale, face active regulatory requirements, and need engineers with enough experience to operate security programs with meaningful autonomy.