Cybersecurity Engineer II

• 1. Proactively initiates the design and implementation of cybersecurity solutions upgrades enhancements while looking forward three to five years.
• 2. Leads in providing technical expertise and support for cybersecurity solutions including operational aspects of the software.
• 3. Serves as subject matter expert in the design implementation and compliance of secure baseline configurations for applications and infrastructure components.
• 4. Proactively initiates technical assessments of systems and applications to ensure compliance with policy standards and regulations.
• 5. Authors new cybersecurity standards and procedures. Leads the revision of existing cybersecurity policies standards and procedures as needed.
• 6. Serves as technical leader for cybersecurity projects including the development of project scope requirements budgeting work breakdown and operational handoff.
• 7. Identify threats and develop suitable defense measures evaluate system changes for security implications and recommend enhancements research and draft cybersecurity white papers and provide firstclass support to the cybersecurity operations staff for resolving difficult cybersecurity issues.
• 8. Under limited direction self starter this position is responsible for cybersecurity across multiple departments systemwide and requires interaction at all levels of staff and management. Work closely on cross functional IT Teams. Leads work through indirect leadership across other cyber resources. Articulate complex Security functions into simple business ease.

• Must possess strong knowledge of business information security and/or computer science as normally obtained through the completion of a bachelors degree. Bachelor s Degree in Computer Science Information Security Information Systems or related field or equivalent.
• Experience normally obtained through seven plus years of experience of enterprisescale information security engineering preferably in healthcare. Must also possess three plus years experience in a healthcare environment or an equivalent combination of relevant education technical business and healthcare experience.
• Experience with IT operations automation of security processes coding and scripting languages ability to document security processes as well as use case development.
• Experience with the assessing cyber products including vendor selection define requirements contractual documentation development.
• Experienced assessing and reaching out to vendors for needed features via enhancement requests.
• Expert understanding of regulatory and compliance mandates including but not limited to HIPAA HITECH PCI SarbanesOxley.
• Experienced in planning designing and implementing cybersecurity solutions operating maintaining and managing the lifecycle of cybersecurity solutions.
• Advanced knowledge of Security Engineering Principles including risk management resilience vulnerability management Information Security NIST MITRE etc.
• Advanced expertise in Cyber products supporting Data Loss Prevention EDR AntiVirus Perimeter services threat systems cyber platform analytics SIEM CASB CLOUD Security ETC. Proven Cloud Security experience.
• Requires independent judgment critical decision making excellent analytical skills with excellent verbal and written communications. Ability to think quickly under difficult or complex conditions and clearly communicate to appropriate staff; ability to balance project workloads with customer support and oncall demands.
• Must demonstrate deep knowledge of information technology and information security principles and practices.
• Requires communication and presentation skills to engage technical and nontechnical audiences.
• Requires ability to communicate and interact across facilities and at various levels. Incumbent will have skills to mentor less experienced team members.
• As is typical in this industry variable shifts and hours and responding to afterhours notifications may be required.

• Certification in two or more of the following areas: Systems Security Certified Practitioner (SSCP) HealthCare Information Security & Privacy Practitioner (HCISPP) CompTIA Security Certified Information Systems Security Professional (CISSP) Engineering (ISSEP) Certified Ethical Hacker (CEH) SANS GIAC or Certified Information Systems Auditor (CISA).
• Four plus years as a System Administrator or in IT Operations. Or four plus years in risk management or GRC experience in the healthcare/medical environment.
• Five plus years experience in a healthcare environment or an equivalent combination of relevant education technical business and healthcare experience.
• Additional related education and/or experience preferred.

We are GTN The Go To Network