Senior Information Security Engineer – Cloud Engineer

The University of Chicago Medicine•Chicago, IL

20h•Remote

About The Position

Join a world-class academic healthcare system, UChicago Medicine, as a Senior Information Security Engineer in our Information Security department. This is a remote, work from home opportunity, and you may be based outside of the greater Chicagoland area. This role will be that of a Senior Information Security Engineer. This person will lead our effort in enhancing and maturing our defensible architecture across our network and Cloud solutions. Besides the network related tasks, this role will also assist Incident Response as needed and will require solid written skills to document improvement to processes and procedures. This role will also be primarily responsible for the creation of Standard Operating Procedures for our SOC operations related to all Network Security solutions implemented by you. Under general direction of Information Security leadership, implement and operate security controls to minimize risk to physical and logical assets of the University of Chicago Medical Center and to ensure the confidentiality and integrity of UCMC sensitive information. The Information Security Engineer will assist with the core security activities of UCMC and lead many enhancement projects. This includes but is not limited to design and implementation of enterprise network security systems, security operations, threat analysis, log and event management, and network monitoring.

Requirements

BS or BA degree in Computer Science or other IT related field, or combination of education and work experience
8 years of Information Security experience required, preferably at least 3 years in a Senior or Lead Engineering role
Minimum 5 years’ experience in cloud security engineering, focusing on Microsoft Azure.
5 years’ experience maintaining and designing Defense-in-Depth strategies for complex network architectures
Solid understanding of threat modeling, risk assessment, and Cloud Security best practices
In-depth knowledge of network routing and defensible architectures in Cloud environments, such as Azure, AWS or Google Cloud
In-depth knowledge of computing systems, data network communications, and network architecture
Effective written and verbal communication skills
Good working knowledge of the Plan, Build, Run model within an IT environment
Expert understanding of TCP/IP (OSI Layers 1– 4) and Internet and Intranet technologies required (OSI Layers 5-7)
Good knowledge of Windows and Linux Operating Systems

Nice To Haves

Some scripting or programming skills (PERL, Python, PowerShell, etc.) preferred as needed
Good knowledge of vulnerability management, risk analysis, and forensics preferred
Experience with HIPAA, NIST, FERPA, and SOX preferred

Responsibilities

Design, deploy, and manage security solutions within Cloud environments(Azure experience preferred).
Assist other security engineering and consulting needs as they arise.
Implement cloud security controls and monitor compliance frameworks (Azure Security Center, Azure Policy, etc.).
Collaborate with development, operations, and compliance teams to achieve security goals.
Document security processes and procedures for all Cloud related monitoring and response personnel.
Develop project plans and manage project teams for security related projects.
Provide communications, including status reporting, risk management, escalation of issues, and in general, making sure the project is delivered on budget, on schedule, and within scope.
Other duties as assigned.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume