Tampa General Hospital
Cyber Security Engineer
Tampa General Hospital, Tampa, Florida, us, 33646
Job Summary
The Cyber Security Engineer is a member of Security Operations Center (SOC), Cyber Security Department and performs technical activities for delivering effective host, network, data, and application security services. This position will have primary responsibility for security platforms in the production environment, as well as development, quality-assurance and staging environments.
The Security Engineer's responsibilities include security system deployments, configuration, monitoring and reporting. This position will have a lead role in performing vulnerability assessments, security testing, and working with operations and development teams on remediation and mitigation of findings. This position will have a role on the Computer Security Incident Response Team (CSIRT). The Security Engineer provides support to security controls which safeguard and monitor events for systems, applications and data security.
Responsibilities include but not limited to:
Maintain, configure, and analyze network and host-based security platforms.Developing remediation and mitigation plans, and creating packages for the implementation of those plans.Lead Threat Hunting activities and EDR Administration.Evaluate systems using vulnerability scanners and manual techniques to verify system security settings and configurations.Provide reoccurring reports for network and host-based security solutions.Provide CSIRT support as needed in response to information security related events. Maintain and update relevant system and process documentation and develop ad-hoc reports as needed.Assist the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes and standards.Establish and maintain a strong working relationship with all team members.Provide off-hours support on an infrequent, but as needed basis.Successfully manage time and technical responsibilities, set accurate expectations and meet deliverable deadlines while working in a team and information sharing environmentQualifications
Bachelor's degree in Computer Science, Information Technology or related field or a combination of education and experience.Three years Information Systems or related experience with at least one year focused directly on IT SecurityMust have direct experience administering EDR platforms, Next Gen Anti-VirusMust have direct experience with initiating Threat Hunting eventsMust have direct experiencing administering Single Sign On/ADFS platformsMust have working knowledge and administrative experience with CASB or other reverse proxy security platformsMust possess or obtain within 12 months from date of hire, an industry recognized InfoSec certification, such as CISSP, SSCP, CEH, or equivalentAdministrative experience with IT Security tools, such as: vulnerability scanning, firewall, application firewall, antivirus & malware protections, EDR Platforms, proxy, IDS/IPS, log correlation, SIEM, DLP, NACKnowledgeable of Windows, Unix, Linux operating systemsPossesses basic knowledge of security risk management, tools and methodologies based on national standards.Complete Understanding of the system hardening processes, tools, guidelines, and benchmarksStrong Analytical, conceptual, problem solving, and written/verbal communication skills, ability to think outside of the boxAbility to perform job related tasks with little to no direct supervisionKnowledge of HIPAA, HiTRUST,NIST,PCI-DSS, SOX, and/or other federal/state regulatory environment
The Cyber Security Engineer is a member of Security Operations Center (SOC), Cyber Security Department and performs technical activities for delivering effective host, network, data, and application security services. This position will have primary responsibility for security platforms in the production environment, as well as development, quality-assurance and staging environments.
The Security Engineer's responsibilities include security system deployments, configuration, monitoring and reporting. This position will have a lead role in performing vulnerability assessments, security testing, and working with operations and development teams on remediation and mitigation of findings. This position will have a role on the Computer Security Incident Response Team (CSIRT). The Security Engineer provides support to security controls which safeguard and monitor events for systems, applications and data security.
Responsibilities include but not limited to:
Maintain, configure, and analyze network and host-based security platforms.Developing remediation and mitigation plans, and creating packages for the implementation of those plans.Lead Threat Hunting activities and EDR Administration.Evaluate systems using vulnerability scanners and manual techniques to verify system security settings and configurations.Provide reoccurring reports for network and host-based security solutions.Provide CSIRT support as needed in response to information security related events. Maintain and update relevant system and process documentation and develop ad-hoc reports as needed.Assist the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes and standards.Establish and maintain a strong working relationship with all team members.Provide off-hours support on an infrequent, but as needed basis.Successfully manage time and technical responsibilities, set accurate expectations and meet deliverable deadlines while working in a team and information sharing environmentQualifications
Bachelor's degree in Computer Science, Information Technology or related field or a combination of education and experience.Three years Information Systems or related experience with at least one year focused directly on IT SecurityMust have direct experience administering EDR platforms, Next Gen Anti-VirusMust have direct experience with initiating Threat Hunting eventsMust have direct experiencing administering Single Sign On/ADFS platformsMust have working knowledge and administrative experience with CASB or other reverse proxy security platformsMust possess or obtain within 12 months from date of hire, an industry recognized InfoSec certification, such as CISSP, SSCP, CEH, or equivalentAdministrative experience with IT Security tools, such as: vulnerability scanning, firewall, application firewall, antivirus & malware protections, EDR Platforms, proxy, IDS/IPS, log correlation, SIEM, DLP, NACKnowledgeable of Windows, Unix, Linux operating systemsPossesses basic knowledge of security risk management, tools and methodologies based on national standards.Complete Understanding of the system hardening processes, tools, guidelines, and benchmarksStrong Analytical, conceptual, problem solving, and written/verbal communication skills, ability to think outside of the boxAbility to perform job related tasks with little to no direct supervisionKnowledge of HIPAA, HiTRUST,NIST,PCI-DSS, SOX, and/or other federal/state regulatory environment