Senior IT Security Engineer in Spartanburg, SC at Spartanburg Regional Healthcare System

Date Posted: 11/15/2019

Job Snapshot

  • Employee Type:
    Full-Time
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
    11/15/2019

Job Description

Position Summary: 

Focus to include Technical Analysis and Identity Access Management of information systems and business process workflows. The Information Security Engineer is an individual contributor role responsible for supporting a global program to identify, exploit, and communicate application and network layer vulnerabilities. In addition, the Engineer will identify gaps in process and administrative controls and assist in remediation. Core responsibilities include supporting in all Information Security incident response activities.  The Engineer will need to develop strong relationships with business process owners in order to successfully execute security assessments and promote remediation. May be lead on care and feeding of key enterprise software packages. Additional responsibilities include participating in integration efforts within Security and with IT partners, tabletop exercises, and timely management reporting to ensure situational awareness across the security organization. Strong technical and analytical experience is necessary.

Education    

  • B.S., M.S. –Experience may substitute for education

Certification

  • B.S., M.S. –Experience may substitute for education

Core Job Responsibilities: 

  • Maintain technical knowledge within industry and service line and leverage deep subject matter knowledge on engagements
  • Contribute to the development and cultivation of business and vendor relationships
  • Function as technical lead on incident response engagements
  • Expert understanding of security and access frameworks (NIST, ISO, COBIT)
  • Assist in the design of computer security architecture and cyber security designs
  • Must have advance experience troubleshooting Windows, Linux, and Network environments
  • Research and apply SIEM optimizations which increase efficiency and capability
  • Lead analysis, implementation, and support of event feeds into the SIEM
  • Lead security audits, risk analysis, and assessments
  • Develop technical solutions to help mitigate security vulnerabilities and automate repeatable tasks
  • Understand firewall rules and work closely with network team to implement rules, improve processes, and apply industry best practices
  • Identify, document, and report on risks thresholds
  • Creating and maintain documentation of process workflows
  • Perform upgrading, patching, hardening, and routine maintenance of Information Security infrastructure systems
  • Assist in the maintenance of security controls
  • Making recommendations for enhancing data systems security
  • Implement security solutions within hardware and software processes
  • Develop, review, and revise security policies and procedures
  • Analyzing process performance, identifying areas of concern and formulating corrective action plans
  • May be assigned care and feeding of Security core systems
  • Identity Access Management process ownership
  • Monitoring and reporting of changes to key systems
  • Maintain technical knowledge within industry