Cybersecurity Specialist

Lighthouse Behavioral Health Solutions (LBHS) provides individual, outpatient, intensive outpatient, partial hospitalization, residential, psychiatric services, and medication assisted treatment for mental health and substance abuse treatment needs. We are a treatment facility that prides itself in a welcoming and compassionate approach to substance use and mental health treatment. We believe our clients can achieve recovery and be valued community members through positive engagement and meaningful participation in treatment.

Our Goal:

Our comprehensive approach to addictions treatment provides a continuum of care that begins with asking for help and continues through to ongoing peer support. In addition to our state-of-the-art treatment facilities and peer support centers across Central Ohio, we work to remove barriers and promote access to care through our integrative approach and evidence-based clinical treatment.

Join our exciting and fast-growing company in which you will have an impact on improving people’s lives! Lighthouse Behavioral Health Solutions (LBHS) is looking for quality candidates who are pursuing professional growth in a supportive environment and can thrive in a collaborative team-focused culture.

• 9 Paid Holidays
• Paid Time Off
• Sick Time Off
• Paid continuing education opportunities
• Paid parental leave
• Medical/Dental/Vision
• 401(k)
• Life Insurance

Position: Cybersecurity Specialist

Job Summary: The Cybersecurity Specialist primary function is to secure technology assets, monitor security systems, prevent security breaches, and make changes to improve the enterprise technology assets security. They reduce the risk of the enterprise becoming a victim of accidental data loss, malicious cyber-attacks, or data theft; taking steps to close gaps in the information system’s security to protect data. This position reports to the VP of Information Technology.

Duties and Responsibilities:

Duties include, but are not limited to:

• Write security plans and procedures to routinely strengthen systems to seal off vulnerabilities.
• Install, configure, and maintain security software designed to prevent attacks on the enterprise’s network.
• Conduct Security data analysis to develop and maintain a plan to continuously assess and track vulnerabilities on enterprise assets.
• Monitor systems, servers, and networks for any signs of incursion, any breaches, or vulnerabilities, evaluating the effectiveness of existing recovery plans, and devising plans for further safeguarding as needed.
• Respond to Security alerts, data breaches and malicious malware attacks, conduct the investigation, coordinate the response with other staff, vendors, third parties, and management.
• Establish and maintain a security remediation process and be the liaison with vendors or third parties.
• Employ effective countermeasures to protect the company’s technology assets by running tests and assessments to identify potential security vulnerabilities, developing threat mitigation plans and leading data and systems recovery efforts.
• Serve as a security expert and conduct training to end users on security protocols, when needed.
• Install, configure, and maintain security software, hardware, network devices, appliances, and tools.
• Coordinates, administer, implement, maintain, and evaluate the security program.
• Assess security risks, conduct tests, inspect hardware for vulnerable points of access, and analyze network systems and structures to ensure the most secure approach is being employed.
• Develop security guidelines based on best practices and enforce the enterprise security policies.
• Ensure security updates are current across all systems and security tools are running properly on networks and devices.
• Research emerging threats and the safeguards that can provide protection.
• Present findings, reports, and solutions to upper management.
• Review the software list to verify software support at least quarterly.
• Ensure data encryption at rest and in transit.
• Establish and maintain an overall data classification scheme.
• Inventory PHI, PII, and any other sensitive data.
• Establish and maintain a Secure Configuration Process for End User Devices and Network Infrastructure.
• Establish and maintain comprehensive network monitoring and defense against security threats across the enterprise’s network infrastructure and user base.
• Establish a program to develop and maintain an incident management response capability to prepare, detect, and quickly respond to an attack.
• Test the effectiveness and resiliency of enterprise assets through identifying and exploiting weaknesses in controls (people, processes, and technology).

Required Experience/Certifications:

• Bachelors Degree in computer science, computer engineering, or related field.
• Minimum of 4 years of relevant experience
• Must pass BCI check, all Corporate Compliance checks, and employment drug screen.
• Must have valid drivers license and valid car insurance

Desired Experience/Certifications:

• Security + or Network + certification from CompTIA, or Certified Information Systems Security Professional (CISSP) (ISC), or Certified Ethical Hacker (CEH) certification from an accredited organization; at least one of these certifications.

Lighthouse is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, age, color, religion, sex, national origin, sexual orientation, disability status, genetics, gender identity and/or expression, protected veteran status, or any other characteristic protected by federal, state, or local law.

LBHS adheres to Title VII of the Civil Rights Act as amended, Ohio Civil Rights Act, and all applicable rules and regulations. LBHS is an equal opportunity employer.