Senior Cybersecurity Engineer

The Intermountain Cybersecurity Program is broken into four distinct functions: Governance Risk and Compliance, Cyber Solutions, Cyber Advisory and the Cyber Fusion Center. Cyber Caregivers within Intermountain will specialize in their specific area and function. The Cybersecurity-Senior is responsible for designing, engineering, analyzing and/or assessing key elements of Intermountain’s cybersecurity program. Caregivers within this job code will support one of the following aspects of the cyber program: governance, risk and compliance activities, identity and access management, data, endpoint and application security, infrastructure and network security, cyber architecture and standards, reporting and analytics, project management and business liaising. Senior-level professionals are experienced in all aspects of cybersecurity and/or IT systems. Typically designs and develops approaches that are implemented by others. Functions independently with minimal oversight and direction. May instruct and guide lower level technical professionals. Please note that a video interview through Microsoft Teams will be required as well as potential onsite interviews and meetings. We are committed to offering flexible work options where approved and stated in the job posting. However, we are currently not considering candidates who reside or plan to reside in the following states: California, Connecticut, Hawaii, Illinois, New York, Pennsylvania, Rhode Island, Vermont, and Washington. Essential Functions Experienced in cyber specific functions that could entail any one of the following: Technical configuration, engineering, management and monitoring Risk analysis, corrective action planning, policy development Cyber threat monitoring, prevention, remediation and incident response Policy, procedure and guidance development Architectural design, standards and documentation Server administration and scripting Data compiling, analytics and reporting Cloud operations, cloud security and DevSecOps Automation principles and how they can be applied in IT environments Serves as experienced resource on incident and task management work for the delivery of cybersecurity services Serves as a subject matter expert and primary member for project delivery tasks Experienced in Cybersecurity industry practices Experienced in high level IT principles and processes, such as networking, service management, ITIL and applications Receives and responds to incoming calls, pages and/or e-mails. Schedules and performs improvements, upgrades and repairs as assigned. Operational and Incident Response teams participate in 24/7 on-call rotation or work in a swing/night shift rotation Ability to effectively prioritize/execute tasks in a high-pressure environment Skills This role is for a Vulnerability Engineer, we are looking for these skills: Vulnerability Lifecycle Management CVSS/CVE Scoring MITRE ATT&CK Asset Prioritization and Scoping Remediation Coordination Experience with Vulnerability Scanning Tools i.e. Qualys, Tenable, Rapid7, Microsoft Vulnerability Cloud Vulnerability Management Metrics/Reporting Scripting/Automation Linux/Unix System Administration