Cybersecurity Specialist

Fair Haven Community Health Care

For over 54 years FHCHC has been an innovative and vibrant community health center catering to multiple generations with over 165000 office visits across 21 locations. Guided by a Board of Directors most of whom are patients themselves we take pride in being a healthcare leader dedicated to delivering high-quality affordable medical and dental care to everyone regardless of their insurance status or ability to pay. Our extensive range of primary and specialty care services along with evidence-based programs empowers patients to make informed choices about their health. As we expand our reach to underserved areas our commitment to prioritizing patient needs remains unwavering. FHCHCs mission is to enhance the health and social well-being of the communities we serve through equitable high-quality and culturally responsive patient-centered care.

Job purpose

The Cybersecurity Specialist supports and advances Fair Haven Community Health Centers (FHCHC) cybersecurity program including email security vulnerability management incident response data loss prevention and the implementation of enterprise security initiatives. This role ensures the confidentiality integrity and availability of FHCHC systems networks and data

Duties and responsibilities

Reporting to the Assistant Director of IT the Cybersecurity Specialist will monitor analyze and detect cyber events and incises within information systems and networks. Typical duties include but are not limited to:

Security Monitoring & Incident Response

• Monitor networks systems applications and infrastructure for threats using SIEM IDS/IPS EDR and related tools.
• Investigate and respond to security incidents breaches and malware infections ensuring timely remediation and reporting.
• Provide after-hours incident response as part of an on-call rotation.

• Perform vulnerability scanning assessment remediation and penetration testing (e.g. Nessus Wazuh).
• Conduct risk assessments and recommend mitigation strategies to reduce exposure to cyber threats.
• Patch update and harden systems to address vulnerabilities and operational risks.

• Implement and maintain security technologies including firewalls access controls IDS/IPS endpoint protection and DLP.
• Manage IAM functions including Active Directory authentication authorization and account security.
• Support CI/CD security processes including analysis testing and deployment.

• Configure deploy migrate and troubleshoot VMware and Microsoft HyperV environments including load balancing NIC teaming and failover.
• Maintain network equipment and core IT infrastructure to ensure secure reliable operations.
• Automate operational and security tasks using PowerShell and other scripting tools.

• Develop maintain and enforce cybersecurity policies standards and procedures.
• Provide operational and security reporting to senior leadership including risk assessments and incident impact analysis.
• Deliver cybersecurity awareness programs training and workshops to promote a security-first culture.
• Offer technical guidance and training to IT staff to support secure operational practices

• Work with internal teams and external vendors to implement security best practices and evaluate new technologies.
• Identify system or workflow deficiencies and recommend improvements.
• Contribute to planning development and deployment of major IT and cybersecurity projects.
• Provide expertise in workflow design system architecture testing and implementation.

• Bachelors degree in Cybersecurity Computer Science IT or related field required a Masters Degree preferred.
• Industry certifications preferred (e.g. security cloud security or infrastructure-focused).

• A minimum of 4 years of progressive experience in cybersecurity or IT operations.
• Healthcare environment experience preferred including familiarity with HIPAA/PHI requirements.
• Hands-on experience with security monitoring incident response and threat mitigation.

• Proficient with Microsoft Windows 11 Windows Server and Microsoft 365/Office 365 security tools.
• Strong understanding of OS security IAM Active Directory authentication and access control.
• Solid networking knowledge: TCP/IP DNS VPNs firewalls routers switches and cabling.
• Experience managing and supporting cybersecurity technologies (EDR SIEM IDS/IPS DLP firewalls).
• Familiarity with common attack vectors (malware phishing social engineering) and encryption methods.
• Ability to configure monitor and maintain security systems to detect and mitigate threats.

• Strong analytical thinking problem-solving and attention to detail.
• Demonstrated curiosity initiative and a proactive approach to identifying risks and improvements.
• Effective written and verbal communication skills including documentation and translating technical concepts for non-technical audiences.
• Ability to work independently and collaboratively in a team-oriented environment.

• None

American with Disabilities Requirements:

External and internal applicants as well as position incumbents who become disabled must be able to perform the essential job specific functions (listed within each job specific responsibility) either unaided or with the assistance of a reasonable accommodation to be determined by the organization on a case by case basis.

Fair Haven Community Health Care is an Equal Opportunity Employer. FHCHC does not discriminate on the basis of race religion color sex age non-disqualifying physical or mental disability national origin veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications merit and business need.