CYBER SECURITY ENGINEER

Date: Jun 4, 2022

Location: Indianapolis, IN, US, 46205

Organization: HHC

Health and Hospital Corporation is an organization that celebrates diversity, and seeks to employ a diverse workforce. We actively encourage all individuals to apply for employment and to seek advancement opportunities. Health and Hospital Corporation also provides reasonable accommodations to qualified individuals with disabilities as required by law. For additional questions please contact us at: hrmail@hhcorp.org.

Job Role Summary

Design, implement and maintain information security compliance and monitoring procedures for all divisions of the Health and Hospital Corporation (HHC).  Make recommendations and implement security controls to ensure compliance with HIPAA and other laws and regulations. Provide input into information security policies, procedures, and standards.   Design and implement security logging and the application of security scanning tools in adherence to industry best practices.  Works to design and develop monitoring tasks and SSPs to aid in maintaining system security.  Will be asked to participate in sensitive investigations related to security and privacy matters.  Performs technical security evaluations and participates in technical infrastructure/system design and deployment.  Remains abreast of new security tools best practices and methodologies. 

The Cyber Security Engineer is a results-oriented position that has day-to-day hands-on experience with all levels of access; application, interface, network and data.  This position needs to have extensive design and implementation experience with systems and putting them in place. The position needs to have a strong sense of the business and security processes and can quickly determine when things have gone past the normal parameters and then provide the appropriate action plan up to and including designing appropriate response controls.  This position will also have a primary area of expertise to include; Cisco security suite (Secure Endpoint, FirePower, Stealthwatch, Umbrella), Cisco Duo, and an understanding of Microsoft Server/OS and Microsoft 365 tools strongly preferred.
 

Essential Duties

  • Management of Cisco suite security configuration and enhancements
  • Troubleshooting security and network problems.
  • Responding to all system and/or network security breaches.
  • Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.
  • Participating in the change management process.
  • Testing and identifying network and system vulnerabilities.
  • Lead formal annual risk assessments and audits
  • Assist with developing and responsible for the tactical execution and implementation of a roadmap for cyber security initiatives
  • Work with multiple sectors of the organization to develop and maintain detailed security documentation and processes.
  • Monitor security applications for alerts.  Respond to and take appropriate actions to notify and remediate threats and infections.
  • Research, test, develop and implement technical security solutions to support critical security systems, applications and control facilities.
  • Analyze the existing security infrastructure, software controls and transactional processes utilized throughout the organization and provide thorough GAP analysis reports identifying weaknesses and areas of improvement.
  • Develop and define both tactical and strategic security architecture and technical requirements necessary to address information security needs for the organization. 
  • Conducts research, monitors new product developments and makes recommendations regarding technologies which may benefit Information Security based on risk.
  • Develop detailed system security documentation, process flows and administration manuals for computer security systems, servers, applications and utilities. 
  • Oversee security product and vendor assessments and evaluations, make recommendations and coordinate product implementations. 
  • Develop security acceptance test plans and conduct security acceptance testing. 
  • Develop and maintain schedule for penetration and other vulnerability testing and remediation. 
  • Work with server and application owners to maintain patching policies and compliance for all corporate devices.
  • Assists with efforts to maintain HIPAA and HITECH compliance throughout the organization.
     

Qualifications

  • Bachelor’s Degree in Computer Science or related field
  • HCISPP, CISSP, GIAC, CISA and/or other technical certifications strongly preferred.
  • Healthcare, HIPAA and HITECH experience essential.
     

Knowledge, Skills & Abilities

  • A degree in Computer Science, IT, Systems Engineering or a related qualification.
  • 3-5 years of experience with designing and implementing security programs, incident detection, incident response and forensics.
  • Experience with Firewalls (functionality and maintenance), Office 365 Security, VSX and Endpoint Security.
  • Ability to work under pressure in a fast-paced environment.
  • Strong attention to detail with an analytical mind and outstanding problem-solving skills.
  • Great awareness of cybersecurity trends and hacking techniques.
  • Technical proficiency in system design, database structure, network best practices.
  • Proven documentation designer and implementer for policies, processes and guidelines.
  • Strong Understanding of best practices and security principals within the industry.
  • Project management and cross team leadership experience.
     

Working Enviornment

  • HHC Corporation Offices
  • Marion County Public Health Department locations
  • Eskenazi Health locations
  • Standing or walking 20%
  • Steady use of hands or fingers 60%

 

#HHC


 

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.


Nearest Major Market: Indianapolis