Cybersecurity Engineer II

About The Position

Requirements

• In depth knowledge of industry standard security technologies, protocols, and best practices
• Experience in developing and maintaining working relationships both within an organization and with external partners
• Demonstrated conceptual, analytical, and innovative problem-solving and evaluative skills, demonstrated ability to understand and apply security controls broadly, including for system, application, and network resources
• Strong knowledge and work experience with logical access controls to ensure confidentiality, integrity, and assurance of proprietary information
• Excellent interpersonal skills: including the ability to work effectively in a team environment as a participant as well as team leader
• Capacity to work independently along with a willingness to follow and/or seek advice/assistance as needed
• Excellent time management, organizational and motivational skills
• Advanced knowledge of data loss prevention (DLP) tools and practices
• Experience in Zero-trust networking concepts and practices
• Vulnerability management and network vulnerability scanning and remediation
• Knowledge and experience with Cyber incident response from both a theoretical and “hands on” technical perspective
• Cloud Security (AWS, GCP, Azure)
• Security Incident Handling/Response
• Strong DLP competencies, from both a theoretical and engineering perspective
• Security Information and Event Management (SIEM)
• Security Architecture and Design – Development and Review
• Data Protection solutions and technologies
• Computer, Network, and Policy Auditing
• Network Security
• Experience with Endpoint Security and Endpoint Detection and Response (EDR) Tools
• Bachelor’s degree in computer information systems, Computer Science, MIS, Engineering, or related technical discipline desired
• Minimum 3 years of direct cyber or information security experience preferred
• Will be able to illustrate a consistent and logical pattern of strategic career investments and professional development that have helped them develop the skills and experience required to be an effective Information Security leader. This can include advanced education, industry certifications, professional development, industry thought leadership, and other external interests and pursuits. (I.e., community involvement, philanthropy, etc.)

Nice To Haves

• Knowledge and understanding of business processes and information systems of a healthcare institution a plus
• Active Industry certifications (SANS, ISACA, ISC2) preferred
• Expertise in either AWS or GCP
• Active Cyber Security Certifications will be considered in lieu of a formal degree
• Experience in a healthcare organization a plus but not required

Responsibilities

• leading efforts in security research
• technical analysis
• recommendations
• configuration
• administration of systems
• ensuring security design
• consultation
• technology governance oversight is provided for various projects and initiatives
• assisting system users relative to information security matters
• undertaking complex projects requiring additional specialized technical knowledge
• acting as information security liaison to various business units and other corporate entities as well as the Information Services & Support department
• Maintain a working relationship with a 24×7 external cyber security operations center monitoring service (MSSP)
• Assist in responding to and managing security events
• Lead efforts to implement and manage solutions in the areas of virtualization, cloud technologies, data protection, threat protection, and security event monitoring