Full-Time Sr. Cyber Security Engineer Position with our Healthcare Client.
Hybrid / No visa sponsorship / No agency candidates / Seeking local candidates
Senior Cybersecurity Engineer will be responsible for hunting for Cybersecurity threats/vulnerabilities and assisting with their remediation, maintaining/operating our portfolio of security tools, creating/maintaining runbooks, and performing troubleshooting.
Job Essentials: The ideal candidate will meet the following requirements and competencies.
- Designs, develops, and implements security improvements by assessing the current situation, evaluating trends, and anticipating requirements.
- Develops and monitors a plan to safeguard information system assets by identifying and solving potential and actual security problems.
- Designs and implements system access program by defining access privileges, control structures, and resources.
- Proactively monitors and identifies problems, abnormalities, and reporting violations.
- Mentors, develops, and coaches the Cyber Security team on best practices for monitoring, prevention, and remediation of Cyber Risks to the EH environment.
- In-depth knowledge of cloud computing environments, system and network security, authentication and security protocols, and cryptography.
- Technical expertise in system security, malware operation and indicators, network and web-related protocols (e.g. TCP/IP, IPSEC, HTTP, TLS, DNS).
- Strong critical thinking and problem-solving skills.
- Detects and monitors security events.
- Performs compliance testing, and create security training programs.
- Works with teams within the organization to implement sound security practices.
- Reports monthly KPI to the CIO/CISO.
- Scans logs for irregularities.
- Safeguards information system assets by identifying and solving potential and actual security problems.
- Protects the system by defining access privileges, control structures, and resources.
- Recognizes problems by identifying abnormalities, and reporting violations.
- Implements security improvements by assessing current situation, evaluating trends, and anticipating requirements.
- Determines security violations and inefficiencies by conducting periodic audits.
- Keeps users informed by preparing performance reports, and communicating system status.
- Responds to all system and/or network security breaches.
- Strong understanding on digital forensic methodologies.
- Provides assigned on-site support during go-lives and system upgrades.
- Provides on-call support on a rotating basis.
- Practices excellent customer support skills and interacts collaboratively with users.
- Troubleshoots problems, addresses questions from users, and aids and supports others in troubleshooting and problem resolution.
- Performs warm handoffs between support teams and communicates timely updates to end-users.
- Develop and maintain comprehensive security runbooks.
- Develops Policies and Procedures.
- Evaluates and assigns risk score to applications and vendors
Education Requirements:
- Bachelor’s degree in Computer Science, Information Security, or a related field required.
- Master’s degree preferred.
- Minimum of 4-5 years of past experience in information security, especially in an analyst role on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC), or a Security Operations Center (SOC).
- Experience with any of the following systems/products is also a plus: scripting, enterprise antivirus management, data loss prevention, malware detection, intrusion detection/prevention, penetration testing/vulnerability scanning, web application firewall.
- With assistance and oversight, adapts communications to meet the needs of the audience. Provides the appropriate amount of technical information to share knowledge and workflows, or to obtain decisions.
- Manages project stakeholder expectations effectively.
- Communicate effectively across all teams and stakeholders associated with task assignments.
- Excellent interpersonal relationship skills.
- Excellent written and verbal communication skills and effective problem-solving skills required.
Licensure, Registration, and Certifications:
- Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification.