IS Security Engineer Sr
The IS Security Engineer Sr. provides hands-on technical solutions to complex and detailed information security problems. This employee provides technical assistance, design, installation, operation, service, and maintenance of a variety of information security systems. The IS Security Engineer ensures and assists with the proper deployment and management of solutions that support information security including virus detection, malware detection, intrusion detection and prevention systems, firewalls, data loss prevention systems, and a wide range of other security solutions. Conducts or oversees vendors in the technical aspects of conducting vulnerability and penetration assessments. Provides technical leadership in security incident response and forensic technical analysis.
Provide hands-on technical information security solutions and guidance.
Provide technical guidance and solutions to protect TMC information assets from intentional or inadvertent modification, disclosure or destruction, and provide technical support for applicable legal and regulatory requirements.
Install, configure and maintain multiple security systems including IDS/IPS, DLP, Firewalls, Web Filtration, VPN appliances, SIEM solutions, etc.
Conduct internal vulnerability and penetration assessments and develop technical guidance to assist in remediation. Work closely with external vulnerability and penetration assessment providers to ensure TMC is getting the most valid security posture assessments.
Participates as a key member of the various information security work groups and is responsible for recommending and assisting in the development and implementation of appropriate information security technical solutions required to safeguard information resources.
Serve as an active member providing technical insight and analysis to the Computer Emergency Response Team. Participate in Security Incident efforts providing in-depth knowledge of common security exploits, vulnerabilities and countermeasures.
Actively monitor security solutions and reports to identify security incidents and vulnerabilities.
Act as a technical resource to enhance or develop security training solutions.
Demonstrates ongoing dedication to expanding technical and business expertise through reading technical journals, white papers, position papers, etc. and attending appropriate security conferences, seminars and classes. Maintains current industry and information security knowledge and awareness of trends. Applies new skills and knowledge to TMC situations to maintain and improve information security in the organization.
Collaborates, consults and communicates with a variety of TMC staff in a positive manner.
Adheres to and supports team members in exhibiting TMCH values of integrity, community, compassion, and dedication.
Adheres to TMC organizational and department-specific safety, confidentiality, values, policies and standards.
Performs related duties as assigned.
EDUCATION: Bachelor's degree or equivalent work experience in Computer Science, Information Management, or related technology field.
EXPERIENCE: Five (5) years of information security experience, four (4) years experience with network, server, or application security technologies and concepts, and four (4) years experience installing, maintaining, and troubleshooting information security solutions and devices including Firewalls, Data Loss Prevention, Web Filtration, Intrusion Detection/Prevention Systems, VPN solutions. Two (2) years experience performing penetration tests. One (1) year experience in healthcare IT desirable.
LICENSURE OR CERTIFICATION: Current CISSP (Certified Information Systems Security Professional), GCIH (GIAC Certified Incident Handler) or GPEN (GIAC Penetration Tester) certification preferred. Additional information security or related certifications desirable.
KNOWLEDGE, SKILLS AND ABILITIES:
Experience with Windows and Linux Operating Systems.
In-depth understanding and experience with network protocols and network security measures.
In-depth understanding of security incident identification and remediation methodologies.
Detailed understanding of information security best practices and solutions.
In-depth understanding, experience, and proficiency in information security solutions such as firewalls, IPS, DLP, etc.
Skill in SIEM, Firewall, IPS and other security device log interpretation and tuning to improve TMC security incident prevention and identification.
Skill in assessing needs and determining through documentation what the best technical approach might be.
Skill at problem definition and data collection by establishing facts, drawing valid conclusions.
Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures, or governmental regulations.
Ability to write reports, business correspondence, and procedure manuals.
Ability to calculate figures and compute rate, ratio, and percent and to draw and interpret bar graphs; ability to apply basic algebraic concepts.
Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists.
Ability to interpret a variety of instructions furnished in written, oral, diagram, or schedule form.