Sutter Health
Cyber Security Consultant - Incident Response
Sutter Health, Sacramento, California, United States, 95828
We are so glad you are interested in joining Sutter Health!Organization:
SHSO-Sutter Health System Office-ValleyPosition Overview:
Candidate must also be available to come on site as needed for meetings, etc. Responsible for providing data security support and guidance to Sutter Health operating units and affiliates for multi-faceted protection. Monitors data from the security solutions, and provides hands-on security administration of a broad range of security duties and requires a high level of technical experience. Duties and responsibilities include, but are not limited to, oversight of design, engineering, analysis, research, testing and monitoring. Serve as the most senior advisor to the Privacy and Information Security leadership as a subject matter expert on end point security, vulnerability management, Security Information and Event Management (SIEM) and/or Network Security.Job Description :EDUCATIONEquivalent experience will be accepted in lieu of the required degree or diploma.Bachelor's: Business, Cyber Security, Risk Management, Information Technology, Computer Science or related field or equivalent education/experiencePREFERRED EXPERIENCE AS TYPICALLY ACQUIRED IN:8 years experienceExperience providing cyber security support by planning, coordinating, integrating and synchronizing cyber defense and prevention activities preferred.Experience creating comprehensive and accurate reports that are used to communicate risk profile impact to peers and management preferred.Experience ensuring compliance with all applicable state and federal cyber laws and regulations preferred.Incident Command experience preferredSKILLS AND KNOWLEDGEThorough knowledge of information systems security concepts and current information security trends and practices including security processes and methods.General knowledge of Federal and State IS security and privacy-related regulatory requirements and laws.General knowledge regarding National Institute of Standards and Technology (NIST), Health Insurance Portability and Accountability Act (HIPAA), Federal Information Processing Standards (FIPS), and other recognized industry security standards and best practices.Detailed understanding of end point security technologies (Antivirus, Forensics, Anti-malware, HIPS)Detailed understanding of end point operating systems (Windows and Linux)In depth knowledge of cyber security solutions, policies and technologiesUnderstanding of the lifecycle of a network threat and network vulnerability exploitation in a healthcare environmentWorking understanding of the anatomy of a cyber attack: advanced level of skill using Microsoft windows workstation and server, UNIX/Linux and network operating systems, proven ability to use internet technologies including DNS, routing, smtp, http, DHCP, and ftp etc.Technical skills in planning, administration, and management of information systems, operational and technical security controls, and security risk analysis and managementWritten/verbal interpersonal communication skills with the ability to interact effectively with a broad and diverse group of peers, users, and executives.Proven ability to prioritize work while multi-tasking on assigned work.Demonstrated ability to acquire images, either remote or local, to a workstation or server.Proven ability to conduct forensics activities in the context of an active attack.Technical skills in end point security controls, such as access control lists, host intrusion prevention system, registry, logging, and forensics.Ability to perform and conduct incident response and participate in security incident and post incident response processProven ability to break down highly complex technical topics into language and diagrams understandable to a wide audience.Job Shift:
DaysSchedule:
Full TimeShift Hours:
8Days of the Week:
Monday - FridayWeekend Requirements:
As NeededBenefits:
YesUnions:
NoPosition Status:
ExemptWeekly Hours:
40Employee Status:
RegularPay Range:
$68.59 to $109.75 / hourThe salary range for this role may vary above or below the posted range as determined by location. This range has not been adjusted for any specific geographic differential applicable by area where the position may be filled. Compensation takes into account several factors including but not limited to a candidate’s experience, education, skills, licensure and certifications, department equity, training and organizational needs. Base pay is just one piece of the total rewards program offered by Sutter Health. Eligible roles also qualify for a comprehensive benefits package.
#J-18808-Ljbffr
SHSO-Sutter Health System Office-ValleyPosition Overview:
Candidate must also be available to come on site as needed for meetings, etc. Responsible for providing data security support and guidance to Sutter Health operating units and affiliates for multi-faceted protection. Monitors data from the security solutions, and provides hands-on security administration of a broad range of security duties and requires a high level of technical experience. Duties and responsibilities include, but are not limited to, oversight of design, engineering, analysis, research, testing and monitoring. Serve as the most senior advisor to the Privacy and Information Security leadership as a subject matter expert on end point security, vulnerability management, Security Information and Event Management (SIEM) and/or Network Security.Job Description :EDUCATIONEquivalent experience will be accepted in lieu of the required degree or diploma.Bachelor's: Business, Cyber Security, Risk Management, Information Technology, Computer Science or related field or equivalent education/experiencePREFERRED EXPERIENCE AS TYPICALLY ACQUIRED IN:8 years experienceExperience providing cyber security support by planning, coordinating, integrating and synchronizing cyber defense and prevention activities preferred.Experience creating comprehensive and accurate reports that are used to communicate risk profile impact to peers and management preferred.Experience ensuring compliance with all applicable state and federal cyber laws and regulations preferred.Incident Command experience preferredSKILLS AND KNOWLEDGEThorough knowledge of information systems security concepts and current information security trends and practices including security processes and methods.General knowledge of Federal and State IS security and privacy-related regulatory requirements and laws.General knowledge regarding National Institute of Standards and Technology (NIST), Health Insurance Portability and Accountability Act (HIPAA), Federal Information Processing Standards (FIPS), and other recognized industry security standards and best practices.Detailed understanding of end point security technologies (Antivirus, Forensics, Anti-malware, HIPS)Detailed understanding of end point operating systems (Windows and Linux)In depth knowledge of cyber security solutions, policies and technologiesUnderstanding of the lifecycle of a network threat and network vulnerability exploitation in a healthcare environmentWorking understanding of the anatomy of a cyber attack: advanced level of skill using Microsoft windows workstation and server, UNIX/Linux and network operating systems, proven ability to use internet technologies including DNS, routing, smtp, http, DHCP, and ftp etc.Technical skills in planning, administration, and management of information systems, operational and technical security controls, and security risk analysis and managementWritten/verbal interpersonal communication skills with the ability to interact effectively with a broad and diverse group of peers, users, and executives.Proven ability to prioritize work while multi-tasking on assigned work.Demonstrated ability to acquire images, either remote or local, to a workstation or server.Proven ability to conduct forensics activities in the context of an active attack.Technical skills in end point security controls, such as access control lists, host intrusion prevention system, registry, logging, and forensics.Ability to perform and conduct incident response and participate in security incident and post incident response processProven ability to break down highly complex technical topics into language and diagrams understandable to a wide audience.Job Shift:
DaysSchedule:
Full TimeShift Hours:
8Days of the Week:
Monday - FridayWeekend Requirements:
As NeededBenefits:
YesUnions:
NoPosition Status:
ExemptWeekly Hours:
40Employee Status:
RegularPay Range:
$68.59 to $109.75 / hourThe salary range for this role may vary above or below the posted range as determined by location. This range has not been adjusted for any specific geographic differential applicable by area where the position may be filled. Compensation takes into account several factors including but not limited to a candidate’s experience, education, skills, licensure and certifications, department equity, training and organizational needs. Base pay is just one piece of the total rewards program offered by Sutter Health. Eligible roles also qualify for a comprehensive benefits package.
#J-18808-Ljbffr