Position Summary
As a Data Security Engineer within the Information Security team, you will be instrumental in designing, implementing, and maturing CAQH’s enterprise-wide data protection strategy. You will work across structured and unstructured data environments—on-prem (EH), cloud, and endpoint—to safeguard sensitive information such as PII, PHI, and other critical business data. Your work will directly support regulatory compliance, operational resilience, and the company’s mission to be a trusted utility.

The Data Security Engineer is a full-time, remote, exempt position and reports to the Director, Identity & Access Management.

Specific Responsibilities

• Data Inventory and Classification: Partner with data owners and the Data team to identify and inventory critical data assets across the enterprise.
• Implement automated and programmatic classification of sensitive data using tools such as Wiz, Microsoft Purview, Varonis and other data security solutions.
• Policy Development and Enforcement: Develop and maintain data protection policies aligned with regulatory standards (e.g., HITRUST, HIPAA).
• Apply and tune DLP policies across email, cloud, USB, printing, and endpoint channels.
• Analyze DLP alerts and logs to identify anomalies, reduce false positives, and escalate incidents as needed.
• Monitoring and Threat Detection: Build dashboards, alerts, and metrics for real-time monitoring of data protection events.
• Rights Management and Access Control: Implement and manage data rights enforcement mechanisms to ensure appropriate access and usage of sensitive data.
• Support integration of rights management with automated classification and labeling systems.
• Data Security Posture Management (DSPM): Contribute to the deployment and tuning of DSPM tools such as Wiz, Zscaler, Varonis, Imperva and others to enhance visibility and control.
• Support roadmap initiatives to shift from reactive to proactive risk-based protections.
• Backup and Recovery Integration: Collaborate with infrastructure teams to ensure backup and recovery strategies align with data protection objectives and support immutable backups.
• Process Automation and Integration: Integrate DLP and DSPM tools with SIEM for incident response, ticketing, and compliance reporting.
• Support orchestration of triage, review, and remediation workflows to reduce manual overhead.
• Cross-Functional Collaboration: Work closely with CAQH teams to align protection strategies with business operations.
• Provide training and documentation to business units on data protection best practices.

Skills & Experience

• Strong domain knowledge in data analytics, data science, ETL pipelines, and both relational and NoSQL databases.
• Proven track record in building and enforcing full-stack security guardrails for modern architectures involving APIs, microservices, data storage, ETL, backup & restore and streaming platforms.
• Lead the definition and implementation of enterprise-wide data protection strategies, policies, and frameworks.
• Partner with data architecture, engineering, and science teams to embed security into data platforms, pipelines, and ML workflows.
• Demonstrated success in implementing data protection strategies to prevent data loss and leakage, with deep knowledge of encryption, access control, and secure data handling.

Who We Are

CAQH is the trusted data connector at the core of healthcare. For more than 25 years, we have powered the industry with the largest and most complete healthcare data foundation in the U.S., including more than 4.8 million provider data records sourced directly from providers and member data representing 75% of covered lives supplied by health plans. By improving how essential information flows across the system, CAQH helps healthcare operate more efficiently, accurately, and with greater confidence.

What You Get

At CAQH, you will do meaningful work at the intersection of healthcare, data, and technology, helping solve complex problems that make the healthcare system work better. You will collaborate with experienced professionals who care deeply about accuracy, trust, and meaningful impact in a fully remote environment.

CAQH offers competitive compensation and a comprehensive benefits package for full-time employees, including medical, dental, and vision coverage, a 401(k) with company contributions and matching, paid parental leave, tuition assistance, and generous paid time off. We are committed to investing in our people and supporting professional growth over time.

Equal Opportunity Employer

CAQH is proud to be an equal opportunity employer and is committed to fostering a workplace where all individuals are valued, respected, and empowered.

Employment decisions at CAQH are made without regard to race, color, religion, sex, national origin or ancestry, age, marital status, disability, protected veteran status, personal appearance, sexual orientation, gender identity or expression, familial status, family responsibilities, matriculation, political affiliation, genetic information, source of income, place of residence, or any other characteristic protected by law. CAQH does not tolerate unlawful discrimination or harassment of any kind.

Applicants have rights under the Family and Medical Leave Act (FMLA), Equal Employment Opportunity (EEO), and the Employee Polygraph Protection Act (EPPA). If you need a reasonable accommodation to apply for a posted position, please contact the CAQH People & Culture team at Careers@caqh.org or 202-517-0436.