Network Engineer, Security Analyst - Healthcare Facility

About The Position

Requirements

• Bachelor’s degree in Management Information Systems or a related field.
• Minimum of two years in an information security role with experience in mobile device security, endpoint protection, wireless defense, vulnerability management, and incident response.
• Current CompTIA Security+ Certification or equivalent, with evidence of knowledge and experience to be secured within six months of assuming role.
• Familiarity with NIST, HITRUST, PCI, and HIPAA security guidelines.
• Proven background in system administration, experience across multiple operating systems and applications; capable of articulating complex security issues to both technical and managerial stakeholders.
• Strong critical thinking and problem-solving abilities, with the capacity to perform in-depth research to identify industry-standard solutions for security challenges.
• Ability to develop, manage, and produce quality results on project plans and tasks within stipulated timelines.
• Expertise in implementing and maintaining various security technologies and protocols, including Local Area Networks, Microsoft Active Directory and Group Policy Objects, Data Loss Prevention (DLP), Encryption technologies, Intrusion Detection and Prevention Systems (IDS/IPS), Linux and Windows OS, Multi-factor authentication, Cloud Access Security Broker (CASB), Endpoint Detection and Response (EDR) technologies, and Security Information and Event Management (SIEM) tools.

Responsibilities

• Conduct thorough investigations to ascertain the potential impact of emerging threats and exploits, including comprehensive log analysis and network forensics.
• Assist in the deployment and management of security technologies for scanning, testing, monitoring, and reporting, enhancing overall threat detection and response capabilities.
• Collaborate on security initiatives aimed at bolstering detection and response mechanisms.
• Design alerting frameworks to identify anomalous behaviors effectively.
• Innovate defensive strategies to adapt to evolving adversary tactics.
• Perform extensive network security scans and penetration tests to uncover vulnerabilities that could be exploited by attackers.
• Play an active role in incident management by conducting detailed technical investigations into breaches to evaluate impacts and mitigate damages.
• Engage in implementation analysis and rigorous technical risk assessments of systems to ensure compliance with established security standards and operational requirements.
• Support the maintenance and operation of various information security infrastructures and tools, including web filtering, IDS/IPS systems, SIEM solutions, antivirus and antispam technologies, data loss prevention systems, and firewalls.
• Stay updated with pertinent regulations, industry standards, and security frameworks (e.g., NIST, HITRUST, PCI, HIPAA) to inform the development of robust security controls that align with compliance obligations.
• Participate in ongoing education through workshops, seminars, and professional collaborations to keep abreast of advancements in technology and security.