SR INFO SECURITY ENGINEER
About The Position
Assesses risk to the Health System's information security architecture through the engineering/installation/management of the Vulnerability Assessment System. Participates in the engineering/implementation of network security architecture to support Hyper Converged Infrastructure computing. Supports/maintains a broad suite of information security infrastructure. Accountable for security/networking infrastructure component availability/integrity. Assesses the Health System's vulnerability to Cybersecurity attacks. Responsible for the inventory of all network devices. Performs forensic investigations requested by HR/Legal/Compliance or the CISO. Participates in planning, engineering, installation, and maintenance of IT security systems. Works with IT staff/business units to assess risks/address security issues. Defines security requirements and reviews systems to determine if they are designed to comply with established standards. Develops strategies to respond to/recover from a security breach. In the event of a breach, leads incident response activities to minimize the impact; leads a technical/forensic investigation into how the breach occurred/extent of damage. Reports findings to CISO. Certified Information Systems Security Professional (CISSP) certification required within 1 year from date of hire.
Requirements
- Bachelor's Degree in Computer, Information Sciences or Business Administration Required or Combination of relevant education and experience may be considered in lieu of degree Required
- 5 years experience in a system administration role supporting multiple platforms and applications. Required
- 7 years experience with anti-virus software, intrusion detection, firewalls, and content filtering Required
- 7 years experience with planning, researching and developing security policies, standards and procedures Required
- 7 years experience with risk assessment tools, technologies, and methods Required
- General Experience with communicating network security issues to peers and management Required
- Certified Information Systems Security Professional (CISSP) certification required within 1 year from date of hire.
Nice To Haves
- Cert Info Sys Security Prof Preferred
- GIAC Cert Incident Handler Preferred
- GIAC Penetration Tester Preferred
- GIAC Cert Forensic Examiner Preferred
Responsibilities
- Assesses risk to the Health System's information security architecture through the engineering/installation/management of the Vulnerability Assessment System.
- Participates in the engineering/implementation of network security architecture to support Hyper Converged Infrastructure computing.
- Supports/maintains a broad suite of information security infrastructure.
- Accountable for security/networking infrastructure component availability/integrity.
- Assesses the Health System's vulnerability to Cybersecurity attacks.
- Responsible for the inventory of all network devices.
- Performs forensic investigations requested by HR/Legal/Compliance or the CISO.
- Participates in planning, engineering, installation, and maintenance of IT security systems.
- Works with IT staff/business units to assess risks/address security issues.
- Defines security requirements and reviews systems to determine if they are designed to comply with established standards.
- Develops strategies to respond to/recover from a security breach.
- In the event of a breach, leads incident response activities to minimize the impact; leads a technical/forensic investigation into how the breach occurred/extent of damage.
- Reports findings to CISO.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
1-10 employees
