AppSec Jobs
← Back to all jobs

Memorial Sloan Kettering Cancer Center

Cyber Security Engineer I

New York, NYWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Memorial Sloan Kettering Cancer Center

Memorial Sloan Kettering Cancer Center (MSK) is a prominent comprehensive cancer center focused on patient care, research, and education. Established in 1980 through the merger of Memorial Hospital and the Sloan-Kettering Institute for Cancer Research, MSK has a rich history dating back to 1884. It has been at the forefront of cancer treatment innovations, including early developments in immunotherapy and chemotherapy. MSK offers a wide range of oncology services, specializing in various cancers such as breast, prostate, and pediatric cancers. The center features dedicated diagnostic centers, outpatient facilities, and inpatient care, ensuring comprehensive support for patients. It integrates clinical care with research, allowing for the advancement of new therapies while treating patients. MSK also provides psycho-oncology programs to support the mental health of cancer patients. With main campuses in Manhattan and additional locations in New Jersey and India, MSK is a hub for cancer research and treatment. Its research institute drives significant advancements in cancer therapies, emphasizing both basic science and translational innovations.

Industry

hospital & health care

Employees

NaN

491 engineers

Revenue

$NaNK

Website

Visit →

Security at Memorial Sloan Kettering Cancer Center

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • MSK's Information Security Office mission is to PROTECT patients, workforce, and organization while ENABLING MSK operations.
  • The team aims to partner with stakeholders to reduce friction and introduce efficiencies through self-service and automation.
  • Security risk assessments are required whenever technology is introduced or modified.
  • The CISO prioritizes promoting security by design and building a comprehensive enterprise security program.

Security Team

  • The security function is led by the CISO Michael Czumak, with specialized engineering roles reporting through directors.
  • Reporting structure includes roles reporting to the Associate Director of Identity & Access Management.
  • The team emphasizes identity governance, SIEM, and access management capabilities.
  • Active AppSec job postings focus on Identity Governance and Access Management roles.

Key Initiatives

  • MSK accepts vulnerability reports from all sources and acknowledges receipt of each report.
  • Security risk assessments are required for technology introduction or modification as part of the Secure SDLC process.
  • The organization emphasizes a "shift left" approach by promoting security by design.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.