Tampa General Hospital
Cyber Security Engineer Job at Tampa General Hospital in Tampa
Tampa General Hospital, Tampa, FL, United States
Job Summary
The Cyber Security Engineer is a member of Security Operations Center (SOC), Cyber Security Department and performs technical activities for delivering effective host, network, data, and application security services. This position will have primary responsibility for security platforms in the production environment, as well as development, quality-assurance and staging environments.
The Security Engineer's responsibilities include security system deployments, configuration, monitoring and reporting. This position will have a lead role in performing vulnerability assessments, security testing, and working with operations and development teams on remediation and mitigation of findings. This position will have a role on the Computer Security Incident Response Team (CSIRT). The Security Engineer provides support to security controls which safeguard and monitor events for systems, applications and data security.
Responsibilities include but not limited to:
Maintain, configure, and analyze network and host-based security platforms. Developing remediation and mitigation plans, and creating packages for the implementation of those plans. Lead Threat Hunting activities and EDR Administration. Evaluate systems using vulnerability scanners and manual techniques to verify system security settings and configurations. Provide reoccurring reports for network and host-based security solutions. Provide CSIRT support as needed in response to information security related events. Maintain and update relevant system and process documentation and develop ad-hoc reports as needed. Assist the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes and standards. Establish and maintain a strong working relationship with all team members. Provide off-hours support on an infrequent, but as needed basis. Successfully manage time and technical responsibilities, set accurate expectations and meet deliverable deadlines while working in a team and information sharing environment Qualifications
Bachelor's degree in Computer Science, Information Technology or related field or a combination of education and experience. Three years Information Systems or related experience with at least one year focused directly on IT Security Must have direct experience administering EDR platforms, Next Gen Anti-Virus Must have direct experience with initiating Threat Hunting events Must have direct experiencing administering Single Sign On/ADFS platforms Must have working knowledge and administrative experience with CASB or other reverse proxy security platforms Must possess or obtain within 12 months from date of hire, an industry recognized InfoSec certification, such as CISSP, SSCP, CEH, or equivalent Administrative experience with IT Security tools, such as: vulnerability scanning, firewall, application firewall, antivirus & malware protections, EDR Platforms, proxy, IDS/IPS, log correlation, SIEM, DLP, NAC Knowledgeable of Windows, Unix, Linux operating systems Possesses basic knowledge of security risk management, tools and methodologies based on national standards. Complete Understanding of the system hardening processes, tools, guidelines, and benchmarks Strong Analytical, conceptual, problem solving, and written/verbal communication skills, ability to think outside of the box Ability to perform job related tasks with little to no direct supervision Knowledge of HIPAA, HiTRUST,NIST,PCI-DSS, SOX, and/or other federal/state regulatory environment
The Cyber Security Engineer is a member of Security Operations Center (SOC), Cyber Security Department and performs technical activities for delivering effective host, network, data, and application security services. This position will have primary responsibility for security platforms in the production environment, as well as development, quality-assurance and staging environments.
The Security Engineer's responsibilities include security system deployments, configuration, monitoring and reporting. This position will have a lead role in performing vulnerability assessments, security testing, and working with operations and development teams on remediation and mitigation of findings. This position will have a role on the Computer Security Incident Response Team (CSIRT). The Security Engineer provides support to security controls which safeguard and monitor events for systems, applications and data security.
Responsibilities include but not limited to:
Maintain, configure, and analyze network and host-based security platforms. Developing remediation and mitigation plans, and creating packages for the implementation of those plans. Lead Threat Hunting activities and EDR Administration. Evaluate systems using vulnerability scanners and manual techniques to verify system security settings and configurations. Provide reoccurring reports for network and host-based security solutions. Provide CSIRT support as needed in response to information security related events. Maintain and update relevant system and process documentation and develop ad-hoc reports as needed. Assist the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes and standards. Establish and maintain a strong working relationship with all team members. Provide off-hours support on an infrequent, but as needed basis. Successfully manage time and technical responsibilities, set accurate expectations and meet deliverable deadlines while working in a team and information sharing environment Qualifications
Bachelor's degree in Computer Science, Information Technology or related field or a combination of education and experience. Three years Information Systems or related experience with at least one year focused directly on IT Security Must have direct experience administering EDR platforms, Next Gen Anti-Virus Must have direct experience with initiating Threat Hunting events Must have direct experiencing administering Single Sign On/ADFS platforms Must have working knowledge and administrative experience with CASB or other reverse proxy security platforms Must possess or obtain within 12 months from date of hire, an industry recognized InfoSec certification, such as CISSP, SSCP, CEH, or equivalent Administrative experience with IT Security tools, such as: vulnerability scanning, firewall, application firewall, antivirus & malware protections, EDR Platforms, proxy, IDS/IPS, log correlation, SIEM, DLP, NAC Knowledgeable of Windows, Unix, Linux operating systems Possesses basic knowledge of security risk management, tools and methodologies based on national standards. Complete Understanding of the system hardening processes, tools, guidelines, and benchmarks Strong Analytical, conceptual, problem solving, and written/verbal communication skills, ability to think outside of the box Ability to perform job related tasks with little to no direct supervision Knowledge of HIPAA, HiTRUST,NIST,PCI-DSS, SOX, and/or other federal/state regulatory environment