1

Security Engineer Jobs in Arizona (NOW HIRING)

Position Summary The Security Engineer is responsible for designing, implementing, and managing the organization's cybersecurity program, with a primary focus on software supply chain security ...

Information Security Engineer IDEALFORCE has multiple contract positions available immediately for Information Security Engineer to join our customer in Phoenix AZ. This is an ONSITE position. Please ...

Network Security Engineer

Scottsdale, AZ · On-site

$105K - $144K/yr

Seeking a Network Security Engineer for a 6-month contract to hire with a well-established client in the Scottsdale, AZ area Position Description: The position will be responsible for network and ...

The Security Engineer 2 at One Step Data, Inc., designs, implements, and maintains security solutions to protect organizational and client assets. This role involves leading projects, managing ...

Application Security Engineer

Scottsdale, AZ · Hybrid

$59.25 - $79/hr

In this role, you will embed application security expertise directly into the engineering organization. Approximately half of your focus will be on application security, identifying vulnerabilities ...

Application Security Engineer

Phoenix, AZ · On-site

$58.25 - $78/hr

Application Security Engineer Phoenix, Arizona SmartRent (NYSE: SMRT) is revolutionizing how people live and work with the industry's only end-to-end platform designed for the rental housing industry.

Information Security Engineer 4 Duration: 24+ Month(s) Location: Charlotte, NC / Minneapolis, MN / Dallas, TX / Chandler, AZ Hiring Manager Notes: I'm looking for 5+ years of experience with ...

next page

Showing results 1-20

Security Engineer information

See Arizona salary details

$57.3K

$142.4K

$191.5K

How much do security engineer jobs pay per year?

As of Jul 6, 2026, the average yearly pay for security engineer in Arizona is $142,367.00, according to ZipRecruiter salary data. Most workers in this role earn between $133,300.00 and $147,700.00 per year, depending on experience, location, and employer.

How does a Security Engineer typically collaborate with other IT teams within an organization?

Security Engineers work closely with various IT teams such as network administrators, software developers, and system administrators to ensure security protocols are integrated at every level. This collaboration often involves conducting security assessments, reviewing code for vulnerabilities, and assisting with incident response. Regular meetings and cross-functional projects are common, as Security Engineers provide guidance on best practices and help teams understand potential threats. Effective communication and teamwork are key, as security is a shared responsibility across the organization.

What Is a Security Engineer?

A service provider is responsible for delivering professional quality services on behalf of a business or organization. The types of services vary depending on the businesses they work with. Many companies partner with experts in the local community to perform functions on their behalf rather than developing the expertise in-house. A service provider performs the services based on a written legal agreement and charges fees for their work.

What are Security Engineers?

Security Engineers are professionals responsible for designing, implementing, and maintaining systems and protocols to protect an organization’s computer networks and data. They analyze security measures, identify vulnerabilities, respond to incidents, and ensure compliance with security standards. Their work helps prevent unauthorized access, data breaches, and cyber attacks, making them essential to an organization's overall IT security. Security Engineers often collaborate with IT teams, management, and other stakeholders to build a robust security infrastructure.

What are the key skills and qualifications needed to thrive as a Security Engineer, and why are they important?

To thrive as a Security Engineer, you need expertise in information security principles, network architecture, vulnerability assessment, and commonly a degree in computer science or a related field. Familiarity with tools like SIEM systems, firewalls, intrusion detection/prevention systems, and certifications such as CISSP or CEH are typically required. Strong problem-solving skills, attention to detail, and effective communication set outstanding Security Engineers apart. These competencies are essential to proactively protect organizations from cyber threats, ensure compliance, and minimize security risks.

What is the difference between Security Engineer vs Network Security Specialist?

AspectSecurity EngineerNetwork Security Specialist
Required CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, Cisco CCNA Security, CISSP
Work EnvironmentDesigning, implementing, and maintaining security systems across IT infrastructureMonitoring, analyzing, and securing network traffic and infrastructure
Employer & Industry UsageTech companies, finance, government agenciesTelecommunications, enterprise networks, cybersecurity firms

Security Engineers focus on developing and deploying security solutions across IT systems, while Network Security Specialists concentrate on protecting network infrastructure and traffic. Both roles require similar certifications and often work together to ensure comprehensive security.

What are the most commonly searched types of Security Engineer jobs in Arizona? The most popular types of Security Engineer jobs in Arizona are:
What job categories do people searching Security Engineer jobs in Arizona look for? The top searched job categories for Security Engineer jobs in Arizona are:
What cities in Arizona are hiring for Security Engineer jobs? Cities in Arizona with the most Security Engineer job openings:
Security Engineer

Security Engineer

Birdi

Paradise Valley, AZ • On-site

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 25 days ago


Job description

Why Join Birdi?
At Birdi, we are transforming the pharmacy experience through innovation, collaboration, and a relentless focus on patient care. We offer team members the opportunity to make a meaningful impact while working alongside talented professionals in a collaborative and entrepreneurial environment where ideas are valued and continuous improvement is encouraged.
Position Summary
The Security Engineer is responsible for designing, implementing, and managing the organization's cybersecurity program, with a primary focus on software supply chain security, Identity and Access Management (IAM), permissions governance, cloud security, and compliance readiness within a healthcare environment. This role serves as a key cybersecurity leader responsible for protecting systems, applications, infrastructure, and sensitive data while supporting compliance with SOC 2 Type II, HIPAA, and industry security standards.
Working closely with IT, Development, DevOps, Operations, and business stakeholders, the Security Engineer develops and maintains security controls, monitoring capabilities, policies, procedures, and awareness programs that support enterprise-wide risk management and security maturity. This role is ideal for a self-directed security professional who enjoys building programs from the ground up, improving organizational security posture, and partnering across teams to create a culture of security and compliance.
Why You'll Love Working Here
  • Opportunity to build and shape the organization's cybersecurity program and security roadmap.
  • Exposure to cloud security, DevSecOps, compliance, risk management, and healthcare cybersecurity initiatives.
  • Ability to make a meaningful impact by protecting critical systems, applications, and sensitive healthcare data.
  • Collaborative environment that values innovation, continuous improvement, and operational excellence.
  • Partnership opportunities with Development, DevOps, Operations, and leadership teams to drive security initiatives.
  • Remote flexibility within a growing healthcare organization.
  • Professional development opportunities and support for ongoing certification and career growth.
Essential Duties / Responsibilities
Cybersecurity Program Management & Compliance
  • Research, develop, implement, and maintain comprehensive cybersecurity policies, standards, procedures, and controls.
  • Lead cybersecurity efforts supporting SOC 2 Type II compliance and ongoing certification activities.
  • Coordinate security control documentation, evidence collection, audit preparation, and remediation activities.
  • Support HIPAA Security Rule compliance by implementing administrative, technical, and physical safeguards.
  • Conduct regular reviews of security controls and identify opportunities for continuous improvement.
  • Partner with internal stakeholders and external auditors to ensure compliance requirements are met.
Risk Management & Security Operations
  • Conduct security risk assessments, vulnerability reviews, and threat analyses to identify potential risks and vulnerabilities.
  • Develop and implement mitigation strategies aligned with regulatory requirements and industry best practices.
  • Monitor security alerts, events, and threats across enterprise environments.
  • Design and maintain security monitoring, threat detection, and alerting capabilities.
  • Lead incident response activities, including investigation, containment, remediation, recovery, and post-incident review.
  • Maintain breach response and notification processes in accordance with HIPAA and organizational requirements.
  • Participate in an on-call rotation supporting critical security incidents and operational security events.
Identity & Access Management (IAM)
  • Design, implement, and manage enterprise Identity and Access Management strategies.
  • Develop and maintain role-based access control (RBAC) models and least-privilege access frameworks.
  • Manage and support multi-factor authentication (MFA), single sign-on (SSO), privileged access management, and identity governance initiatives.
  • Conduct periodic access reviews and user entitlement audits to ensure appropriate authorization levels.
  • Develop permissions governance standards that support regulatory compliance and data protection requirements.
  • Monitor and improve identity security controls across business and technology platforms.
Software Supply Chain Security & DevSecOps
  • Establish and maintain software supply chain security programs and controls.
  • Implement Software Bill of Materials (SBOM) management practices and dependency monitoring processes.
  • Manage application dependency scanning, vulnerability assessments, and remediation activities.
  • Collaborate with Development and DevOps teams to integrate security throughout the Software Development Life Cycle (SDLC).
  • Support secure coding standards, application security testing, code review processes, and CI/CD security controls.
  • Evaluate and implement tools that improve application security, container security, and software integrity.
Cloud Security & Infrastructure Protection
  • Design and implement security controls supporting cloud-based environments, particularly AWS.
  • Assess cloud infrastructure configurations and implement security best practices.
  • Support endpoint protection technologies, network security controls, firewall management, and threat prevention solutions.
  • Monitor cloud and infrastructure environments for security risks and compliance concerns.
  • Partner with technical teams to strengthen overall infrastructure security and resilience.
Security Awareness & Training
  • Develop, implement, and maintain a company-wide Security Awareness Training Program.
  • Deliver cybersecurity education focused on phishing awareness, social engineering defense, HIPAA requirements, and secure handling of sensitive information.
  • Track employee training completion and maintain records for compliance and audit purposes.
  • Conduct ongoing awareness campaigns and educational initiatives to strengthen organizational security culture.
  • Ensure training content remains current with evolving cybersecurity threats and industry trends.
Vendor Security & Third-Party Risk Management
  • Evaluate third-party vendors, business associates, and service providers for cybersecurity and compliance risks.
  • Conduct security reviews and assessments of vendors handling sensitive information.
  • Ensure vendor security practices align with HIPAA requirements and organizational standards.
  • Support risk remediation efforts and ongoing vendor monitoring activities.
  • Assist with contract reviews and security-related due diligence activities.
Required Skills / Abilities
Cybersecurity & Compliance Expertise
  • Proven experience in Information Security, Cybersecurity Engineering, or related disciplines.
  • Strong knowledge of SOC 2, HIPAA Security Rule, NIST Cybersecurity Framework, CIS Controls, and related compliance standards.
  • Experience implementing and managing cybersecurity programs and governance frameworks.
  • Demonstrated experience preparing organizations for compliance reviews, audits, and assessments.
Identity & Access Management
  • Deep expertise in Identity and Access Management technologies and practices.
  • Experience implementing role-based access controls (RBAC), MFA, SSO, and privileged access management solutions.
  • Strong understanding of authorization, authentication, access governance, and permissions management.
  • Experience conducting access reviews and access control audits.
Application & Cloud Security
  • Experience with software supply chain security concepts and technologies.
  • Knowledge of SBOM management, dependency scanning tools, vulnerability management platforms, and secure software development practices.
  • Experience supporting cloud security initiatives, particularly within AWS environments.
  • Familiarity with endpoint protection platforms, firewalls, and security monitoring tools.
  • Strong understanding of secure SDLC and DevSecOps practices.
Communication & Collaboration
  • Excellent verbal, written, and presentation communication skills.
  • Ability to translate complex technical security concepts into understandable business language.
  • Strong relationship-building skills with the ability to collaborate effectively across technical and business teams.
  • Ability to influence security best practices without direct authority.
Problem Solving & Execution
  • Strong analytical, investigative, and troubleshooting abilities.
  • Ability to independently identify risks and implement effective solutions.
  • Excellent attention to detail and organizational skills.
  • Demonstrated ability to manage multiple priorities and deadlines.
  • Self-directed with the ability to work independently and take ownership of initiatives.
Tools & Systems
  • Identity and Access Management (IAM) platforms
  • Multi-Factor Authentication (MFA) and Single Sign-On (SSO) solutions
  • Security monitoring and threat detection platforms
  • Endpoint Detection and Response (EDR) technologies
  • Vulnerability assessment and dependency scanning tools
  • AWS cloud services and security controls
  • Security awareness training and phishing simulation platforms
  • Microsoft Office Suite, including Word, Excel, Outlook, and PowerPoint
  • DevSecOps, CI/CD, and application security technologies
Education / Experience
  • Bachelor's degree in Information Security, Computer Science, Information Technology, or a related field; equivalent combinations of education and experience may be considered.
  • Minimum three (3) to five (5) years of experience in cybersecurity, information security, or security engineering roles.
  • Demonstrated experience implementing security compliance programs including SOC 2, HIPAA, ISO 27001, or comparable frameworks.
  • Experience conducting risk assessments and developing cybersecurity policies and procedures.
  • Experience supporting security operations, incident response, and security governance initiatives.
Preferred Skills / Abilities
  • Experience working within healthcare environments and supporting HIPAA compliance requirements.
  • Professional cybersecurity certifications such as:
    • CISSP
    • CISM
    • Security+
    • CCSP
    • AWS Security Specialty
    • HCISPP
  • Experience designing and implementing Zero Trust security architectures.
  • Familiarity with healthcare data standards, including HL7 and FHIR.
  • Experience working with Electronic Health Record (EHR) systems and healthcare technology platforms.
  • Knowledge of policy-as-code solutions such as Open Policy Agent (OPA) and Checkov.
  • Experience with infrastructure-as-code security scanning and cloud governance tools.
  • Scripting and automation experience using Python, PowerShell, Bash, or similar technologies.
  • Experience with container security, Kubernetes security, and DevSecOps methodologies.
  • Experience managing Security Awareness Training platforms such as KnowBe4, Proofpoint, or similar solutions.
  • Familiarity with phishing simulation programs and security culture initiatives.
Work Environment
  • Full-time remote work environment.
  • Minimal exposure to excessive noise or adverse working conditions.
  • Ability to sit for extended periods of time while working with computers and other office equipment.
  • Ability to participate in on-call responsibilities and respond to security incidents as required.
  • Ability to work flexible schedules when necessary to support security operations, incident response activities, audits, and project deadlines.
Benefits
BirdiRx offers a comprehensive benefits package designed to support the diverse needs of our employees, including:
  • Competitive medical, dental, and vision coverage
  • Paid time off and company holidays
  • Retirement savings opportunities
  • Employee wellness and support programs
  • Professional development and career growth opportunities
  • Employee-focused culture committed to work-life balance and success
Equal Opportunity Employer
BirdiRx is an Equal Opportunity Employer. We value diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable law.
Pre-Employment Requirements
As a condition of employment, BirdiRx requires the successful completion of a pre-employment criminal background check and drug screening. A criminal conviction does not automatically disqualify an applicant. Each case will be reviewed individually, considering the nature of the offense, its relevance to the position, and the time elapsed since the conviction.
Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.