1+ months

Information Security Engineer - FT - Days - Information Technology - INTEGRIS - 720145

Integris
Oklahoma City, OK 73102
  • Job Code
    720145
!*!

Information Security Engineer - FT - Days - Information Technology - INTEGRIS

Job Code: 1753

Position Summary:

Host Security Engineer: 
* Provides support of the technical controls related to host security (antimalware/antivirus, DLP, encryption, etc)
* Provides guidance for configuring operating system security controls, such as GPO settings and host-based firewall rules
* Researches and seeks out areas of improving process flow, or automating routine tasks related to host security controls.
* Researches and evaluates issues related to medical devices, and develops guidance for further securing them.
* Participate in defining the roadmap, architecture and process standards for the host security program.

Assist in developing and implementing information technology security policies, solutions, and standards. Works with the business units to assist in security control implementations, conduct security assessments, evaluate emerging technology, and coordinate responses to security incidents.

Essential Functions:


* Attends work as scheduled.

* Completes job duties and serves customers efficiently and resourcefully to result in customer satisfaction and cost effectiveness.

* Designs solutions to meet industry standards in security requirements by identifying gaps from practice between requirements.

* Develops and documents system requirements and specification in cooperation with customer department.

* Conducts current and future state analysis of existing business and clinical systems regarding security controls/processes.

* Conducts cost benefit analysis and recommends system improvements to meet corporate objectives and/or to correct business problems.

* Prepares project plans and timetables for employees and vendors to use in systems design and installation.

* Tracks security-based issues and reports outstanding/critical issues to management for resolution.

* Responds to requests for access to network systems and resolves associated problems or issues.

* Develops and manages project budgets and reports budget variances to management.

* Routinely reviews and updates project and implementation plans with the project team.

* Ensures compliance with project deadlines and reports variances to the project team and departmental management for corrective action.

* Acts as liaison to Information Technology and other hospital departments to satisfy data security needs.

* Reviews complete systems functionality and work-flow processes to ensure that procedures, flow, and functions meet specifications and requirements/desired outcomes are achieved.

Accountability:

Reports to the Information Security Manager and is accountable for performing job duties in a manner that will ensure a physical environment free of hazards to self and to others. Responsible for performing job duties that enhance and protect the integrity and security of INTEGRIS Health.

Required Physical Demands (Subject to Reasonable Accommodation):

Keyboarding/Dexterity: Frequently; activity exists from 1/3 to 2/3 of the time
Standing/Walking: Occasionally; activity exists up to 1/3 of the time
Strength (Lift/Carry/Push/Pull): Sedentary (exerting up to 10 pounds of force occasionally)
Talking (Must be able to effectively communicate verbally): Yes
Seeing: Yes
Hearing: Yes
Color Acuity (Must be able to distinguish and identify colors): No



This position may have additional or varied physical demand and/or respiratory fit test requirements. Please consult the Physical Demands Project SharePoint site or contact Risk Management/Employee Health for additional information.

Environmental Conditions:

Normal office environment.

All applicants will receive consideration regardless of membership in any protected status as defined by applicable state or federal law, including protected veteran or disability status.

!*!

Qualifications:


* Masters Degree in Computer Science, Information Systems or related field with 1 year of relevant experience required.

* Bachelors Degree in Computer Science, Information Systems or related field with 3 years of relevant experience required.

* Associates Degree in Computer Science, Information Systems or related field with 5 years of relevant experience required.

* High School Diploma with 7 years of relevant experience required.

*NOTE: relevant experience as required will include years in healthcare or relevant industry involving System Development, Information Technology, or Information Security.

* Must have an intermediate level of information security knowledge and experience based on the most recent Common Body of Knowledge as described by (ISC)2 for security professionals.

* Intermediate understanding of and experience with TCP/IP, DNS, DHCP, Network Address Translation, IP addressing, subnet masking, routing, dynamic routing protocols and WAN technologies.

* Experience designing, installing, configuring or maintaining technology solutions in two or more of the following focus areas:
-Windows server operating systems
-Linux operating systems
-TCP/IP networking
-Host security controls, such as enterprise antivirus, DLP, encryption, or host-based IDS/IPS
- Network security controls, such as firewalls, application gateways, or web filters
- Identity & access management technologies, including two-factor authentication or single sign-on solutions
- Security Information and Event Management Technologies
- Minimum of one intermediate-level security-focused certification (CISM, CEH, MCSE Sec, CCNA Sec, SANS GSEC, etc.). Management may waive the certification requirement in lieu of 2 additional years of concentrated experience in one or more of the focus areas listed above.

*Excellent communication and collaboration skills.

Key Competencies
Network Security Engineer:

* Configures, maintains and troubleshoots network security elements, such as Palo Alto firewalls, Cisco firewalls, IDS/IPS appliances and other supporting components

* Interfaces with network team frequently to make improvements/adjustment to network and controls design.

* Regularly reviews firewall rules for unused or improperly configured rules.

* Researches and seeks out areas of improving process flow, or automating routine tasks related to network security controls.

* Participate in defining the roadmap, architecture and process standards for the network security program

IAM Security Engineer:

* Design, development, and maintenance/support of the Identity and Access Management domain such as Identity Management, Access Management, Directory User Management, Single Sign-On, Federation, and Role Based Access systems.

* Analyzing and resolving complex authentication, integration and automation issues.

* Provide guidance on integrating the identity management authentication and authorization framework into new and existing applications.

* Analyze, develop and implement new identity management solutions based on requirements while ensuring adherence to information security standards, custom development standards and corporate policy.

* Participate in defining the roadmap, architecture and process standards for the identity management platform.

* Continuously seek to improve the time, cost and risk associated with the automation of user management.

CSIRT Security Engineer:

* Provides Tier 2 incident response support

* Conducts ad hoc threat hunting activities using the SIEM technology stack

* Works closely with MSSP partner to investigate threats and respond to alerts

* Conducts forensic analyses as needed using EnCase or related tools

* Provides support for legal holds and other compliance activities

* Researches and seeks out areas of improving process flow, or automating routine tasks related to incident response.

* Participate in defining the roadmap, architecture and process standards for the incident response program.

Host Security Engineer:

* Provides support of the technical controls related to host security (antimalware/antivirus, DLP, encryption, etc)

* Provides guidance for configuring operating system security controls, such as GPO settings and host-based firewall rules

* Researches and seeks out areas of improving process flow, or automating routine tasks related to host security controls.

* Researches and evaluates issues related to medical devices, and develops guidance for further securing them.

* Participate in defining the roadmap, architecture and process standards for the host security program.


Categories

Posted: 2019-11-20 Expires: 2020-02-14

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Information Security Engineer - FT - Days - Information Technology - INTEGRIS - 720145

Integris
Oklahoma City, OK 73102

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast