IT & Security Engineer (Contract) at Parachute Health
New York, NYFull-timeIT & SecurityPosted 8 days ago
Apply with PipelineAbout the Role
<div class="content-intro"><div>Parachute Health is transforming post-acute care through the leading digital ordering platform for medical equipment and supplies. We replace the outdated, error-prone paper and fax process, which negatively impacts over 30 million patients annually, with a system that’s 10 times faster. Our platform connects a vast network of Home Medical Equipment (HME) providers, clinicians, and payors across all 50 states, ensuring millions of patients get the life-saving products they need quickly and efficiently. </div>
<div> </div>
<div>Join our team and make a difference in patient care.</div></div><h1><span style="font-size: 12pt;"><strong>About this Role </strong></span></h1>
<p><span style="font-size: 12pt;">You'll join Parachute Health's IT & Security team as a contractor, working alongside engineers and analysts who keep our healthcare technology environment secure, compliant, and operationally efficient. You'll gain hands-on exposure to identity, endpoint, network, and cloud security, compliance, and incident response in an environment governed by SOC 1, SOC 2, and HITRUST CSF</span></p>
<p><span style="font-size: 12pt;">You won't just sit behind a desk. You'll be a part of a fast-paced environment, work closely with IT and Security professionals on real projects and sit in on incident response and architecture discussions</span></p>
<h2><span style="font-size: 12pt;"><strong>Responsibilities </strong></span></h2>
<p><span style="font-size: 12pt;">IT operations & endpoint</span></p>
<ul>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Support day-to-day IT operations: user onboarding/off-boarding, hardware provisioning, troubleshooting tickets, and end-user support.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Help manage our macOS laptop fleet, MDM enrollment, configuration, software deployment, and compliance baselines.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Troubleshoot connectivity, hardware, software, and authentication issues across Mac, Linux, and Windows environments.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Document fixes, runbooks, and FAQs to help the team scale.</span></li>
</ul>
<p><span style="font-size: 12pt;">Identity & access</span></p>
<ul>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Assist with Okta administration, user lifecycle, group management, SSO/MFA configuration, application assignments, and access reviews.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Help run periodic access reviews and collect audit evidence.</span></li>
</ul>
<p><span style="font-size: 12pt;">Network & security tooling</span></p>
<ul>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Support ZScaler operations, policy review, bypass requests, log analysis, and user troubleshooting.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Help maintain DLP policies and triage alerts for potential data exfiltration.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Assist with WAF rule review, false-positive tuning, and traffic analysis (AWS WAFv2 / Akamai).</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Support SIEM operations in Splunk/Wazuh by querying logs, building dashboards, and tuning alerts.</span></li>
</ul>
<p><span style="font-size: 12pt;">Scripting & automation</span></p>
<ul>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Write and maintain scripts to automate repetitive IT/Security tasks - log analysis, evidence collection, ticket enrichment, account hygiene, and reporting.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Build small tools that make the team faster (no full-stack development required).</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Contribute to and use AI/agentic workflows the team has built (MCP servers, Claude-based runbooks) to accelerate investigations.</span></li>
</ul>
<h2><span style="font-size: 12pt;"><strong>Requirements</strong></span></h2>
<ul>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Bachelors Degree in Cybersecurity, Information Technology, Computer Science, Information Assurance, IT Management, or a related field.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Scripting experience is required. You can write working scripts in at least one of: Bash, Python, or PowerShell. You don't need to be a software developer, but you should be comfortable automating tasks with code.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Working knowledge of the Linux command line, file system navigation, permissions, process management, log inspection (grep, awk, sed, tail, journalctl).</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Comfort with macOS as a daily-driver OS and basic troubleshooting on Mac.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Solid IT troubleshooting fundamentals, networking basics (DNS, DHCP, VPN, TLS), authentication flows (SAML, OAuth, MFA), and hardware/software support.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Comfort using Git, GitHub, and the terminal.</span></li>
<li style="font-size: 12pt;">Actively follows trends in IT, cybersecurity, and AI, with a strong desire to experiment with new tools.</li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Strong written communication; you can document what you did so others can use it.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Must reside in the U.S.</span></li>
</ul>
<h2><span style="font-size: 12pt;"><strong>Nice to have</strong></span></h2>
<ul>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Hands-on exposure to any of: Okta, ZScaler, Jamf/Kandji/Intune, CrowdStrike/SentinelOne, Splunk, Wazuh, AWS, GCP - academic labs, home labs, and personal projects all count.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Familiarity with DLP concepts (data classification, exfiltration channels, false positives).</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Familiarity with WAF concepts (OWASP Top 10, rule tuning, rate limiting).</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Experience with SIEM querying (Splunk SPL, Wazuh rules, Sigma) or log analysis.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Exposure to compliance frameworks (SOC 2, HIPAA, NIST CSF, ISO 27001).</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Experience with LLMs, agents, MCP servers, or prompt engineering through projects, hackathons, or coursework.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">SQL skills for querying data (Postgres, Redshift, BigQuery).</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Participation in CTFs, TryHackMe, HackTheBox, or similar.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">A public GitHub portfolio with scripts, automations, or write-ups.</span></li>
<li style="font-size: 12pt;"><span style="font-size: 12pt;">Interest in healthcare technology or working in a regulated environment.</span></li>
</ul>
<p><span style="font-size: 12pt;"><strong>Contract Details</strong></span></p>
<ul>
<li><span style="font-size: 12pt;">3-6 month contract </span></li>
<li><span style="font-size: 12pt;">Hourly pay is based on experience and level</span></li>
</ul>
<p> </p><div class="content-conclusion"><p style="text-align: left;"><span style="font-size: 12pt;"><em>California job applicants may access the Notice of Collection of Personal Information and Privacy Policy with information and rights required by the California Privacy Rights Act (CPRA) the link <a class="c-link" href="https://www.parachutehealth.com/cpra" target="_blank" data-stringify-link="https://www.parachutehealth.com/cpra" data-sk="tooltip_parent">here</a>.</em></span></p>
<p class="p1" style="text-align: left;"><span style="font-size: 12pt;"><em>We are proud to be an equal opportunity employer that does not discriminate on the basis of actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth related medical conditions and lactation), gender identity or gender expression (including transgender status), sexual orientation, marital status, military service and veteran status, disability, genetic information, or any other characteristic protected by applicable federal, state, or local laws and ordinances.</em></span></p>
<p class="p1" style="text-align: left;"><span style="font-size: 12pt;"><strong><em>This role is not eligible for employer visa sponsorship. Applicants must be legally authorized to work in the United States at the time of application and for the duration of employment. The Company does not sponsor employment authorization for this position.</em></strong></span></p>
<p> </p></div>
Related Roles
Application Engineer
Parachute Health
New York, NYEngineering Manager, Clinical Intelligence
Parachute Health
U.S. (Remote) RemoteStaff Software Engineer
Parachute Health
U.S. (Remote)RemoteMarketing Associate
Parachute Health
New York, NY (Remote) RemoteEngineering Manager, AI Intake
Parachute Health
U.S. (Remote) RemoteSenior Accountant
Parachute Health
New York, NY (Remote)Remote