Risevoic
CYBERSECURITY ENGNR
Company : Covenant Health
Location : Knoxville, TN, 37922
Job Type : Full Time
Date Posted : 5 January 2026
Overview
Cybersecurity Engineer, IT Cybersecurity
Full Time, 80 Hours Per Pay Period, Day Shift
Covenant Health Overview:
Covenant Health is the region’s top-performing healthcare network with 10 hospitals, outpatient and specialty services, and Covenant Medical Group, our area’s fastest-growing physician practice division. Headquartered in Knoxville, Covenant Health is a community-owned integrated healthcare delivery system and the area’s largest employer. Our more than 11,000 employees, volunteers, and 1,500 affiliated physicians are dedicated to improving the quality of life for the more than two million patients and families we serve every year. Covenant Health is the only healthcare system in East Tennessee to be named a Forbes “Best Employer” seven times.
Position Summary:
The Cybersecurity Engineer is responsible for the technical implementation and management of cybersecurity measures within Covenant Health. This role involves extensive hands-on work with security technologies, developing and maintaining security protocols, and ensuring the protection of sensitive data. The Cybersecurity Engineer collaborates within the various IT teams of Covenant Health to integrate security solutions into business projects and solutions, while supporting overall compliance with HIPAA regulations.
Recruiter: Suzie McGuinn || apply@covhlth.com
Responsibilities
Technical Implementation
- Design, implement, and manage advanced security solutions, including firewalls, intrusion detection systems, encryption, and vulnerability management tools.
- Implement and manage security measures for network infrastructure, including routers, switches, and wireless access points.
- Configure and manage security settings for Active Directory (AD) and Azure AD environments.
- Deploy and manage endpoint protection solutions and security information and event management (SIEM) systems.
- Implement and manage M365 security features, including conditional access policies, data loss prevention (DLP), and advanced threat protection (ATP).
- Research, prototype, and recommend new security tools, processes, or capabilities that will enhance Covenant’s controls.
Security Operations
- Monitor, detect, and respond to security incidents, ensuring timely resolution and documentation.
- Conduct regular risk assessments and vulnerability scans to identify and mitigate potential threats.
- Lead the technical response to security breaches, coordinating with the incident response team to resolve
- Manage and monitor identity and access management (IAM) systems to ensure secure access to resources.
- Perform vulnerability scanning and threat detection to identify areas to improve.
- Perform digital forensics and incident response when necessary.
Compliance
- Ensure compliance with HIPAA and other relevant regulations and standards.
- Develop and implement technical security controls to protect sensitive data and support organizational goals.
Collaboration
- Work closely with other IT teams to ensure security measures are integrated into systems and applications.
- Provide training and support to staff on cybersecurity best practices and emerging threats.
Documentation
- Maintain detailed documentation of security protocols, configurations, and incident reports.
- Stay current with the latest cybersecurity trends and technologies, recommending improvements to existing security measures.
Security Audits
- Conduct both routine and irregular security audits to ensure compliance with security policies and standards.
Security Standards and Policies
- Draft and update security standards and policies to ensure they meet the latest industry’s best practices and regulatory requirements.
Security Infrastructure Maintenance and Monitoring
- Configure, troubleshoot, and maintain security infrastructure software and hardware.
- Install and manage software that monitors systems and networks for security breaches and intrusions.
Security Strategy Development
- Assist with the planning, development, implementation, and updating of the organization’s information security strategy
- Follows policies, procedures, and safety standards. Completes required education assignments annually. Works toward achieving goals and objectives, and participates in quality improvement initiatives as requested.
- Performs other duties as assigned.
Qualifications
Minimum Education:
Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, or a related field is required.
Minimum Experience:
Ten (10 years of experience in IT/Technology, with a minimum of 5 years proven experience in cybersecurity (with a proven track record in designing, engineering, and implementing security solutions within an enterprise environment).
Licensure Requirement:
Industry certifications, such as CISSP, CISM, CISA, CCSP, CEH, Microsoft Azure Engineer, or the equivalent are required.
Related Jobs
Hyannis, MA
Frequently asked questions
At Covenant Health, a Cybersecurity Engnr focuses on hands-on security technology management, implementing protocols, and collaborating with IT teams to safeguard patient data. The role balances monitoring for threats, conducting audits, and maintaining compliance with HIPAA, all within an integrated healthcare environment in Knoxville.
In Knoxville, especially within healthcare, certifications like CISSP, CISM, CISA, and Microsoft Azure Engineer are highly regarded. These credentials align with industry standards and HIPAA compliance, boosting a Cybersecurity Engnr’s credibility and effectiveness in protecting sensitive medical data.
Cybersecurity Engineers in healthcare can advance into roles such as Security Architects, Compliance Managers, or IT Security Directors. Gaining expertise in healthcare regulations like HIPAA and mastering advanced security technologies often propels career progression within integrated health systems like Covenant Health.
Covenant Health’s integrated system requires managing diverse medical devices and patient records, demanding robust endpoint and network security. The Cybersecurity Engnr must adeptly handle HIPAA compliance and rapidly respond to incidents within a complex healthcare infrastructure, ensuring minimal disruption.
Knoxville’s healthcare sector is increasingly investing in cybersecurity, with a rising demand for engineers skilled in HIPAA compliance and advanced security tools. Covenant Health’s status as a top regional employer reflects this trend, creating competitive opportunities for seasoned cybersecurity professionals.
In Knoxville, competition centers around practical experience with enterprise security solutions and relevant certifications. Candidates demonstrating a proven track record in healthcare cybersecurity, particularly with hands-on skills in SIEM, endpoint protection, and identity management, gain a decisive edge.
Covenant Health provides a supportive, community-driven work culture with opportunities to impact regional healthcare positively. Their recognition as a Forbes 'Best Employer' underscores a commitment to employee development and work-life balance, attractive factors for cybersecurity professionals.
Cybersecurity engineers at Covenant Health collaborate closely with IT and compliance departments to embed security measures across systems. This integration ensures alignment with HIPAA mandates and facilitates proactive threat management through joint audits, trainings, and strategic planning.
In Knoxville, Cybersecurity Engineers in healthcare typically earn between $95,000 and $130,000 annually, depending on experience and certifications. Covenant Health’s role, requiring extensive hands-on expertise and compliance knowledge, aligns with the upper-middle of this range.