UW Health in Northern Illinois
IS Cybersecurity Engineer (Hybrid)
UW Health in Northern Illinois, Rockford, Illinois, United States, 61103
Pay Range:
$87,900.00 - $131,900.00 / year
Additional components of compensation may include: Evening & night shift differential Overtime On-call pay
Benefits information:
https://careers.uwhealth.org/benefits/
At UW Health in northern Illinois, you will have : • Competitive pay and comprehensive benefits package including: PTO, Medical, Dental, Vision, retirement, short and long-term disability, paternity leave, adoption assistance, tuition assistance • Annual wellness reimbursement • Opportunity for on-site day care through UW Health Kids • Tuition reimbursement for career advancement--ask about our fully funded programs! • Abundant career growth opportunities to nurture professional development • Strong shared governance structure • Commitment to employee voice
POSITION SUMMARY:
The UW Health Cybersecurity Engineer is the guardian of all enterprise data, including data subject to the HIPAA Security Rule, and other sensitive or restricted electronic information, for which UW Health is the custodian. The Cybersecurity Engineer is responsible for the confidentiality, integrity, and availability of the network and systems that store data.
The Cybersecurity Engineer independently maintains and troubleshoots a variety of technologies, cybersecurity problems, and network issues. The Cybersecurity Engineer specializes in at least one technology and is a member of a team that supports deterrent, detective, and responsive systems. Some of these technologies include vulnerability assessment, security information and event management (SIEM), cloud security tools, encryption, identity access management and identity governance (IAM/IG), endpoint detection and response (EDR), URL filtering, firewall security controls, intrusion detection and prevention systems (IDS/IPS), and modern/mobile device management (MDM). The Cybersecurity Engineer participates in building Zero Trust environments, incident response, disaster recovery and business continuity.
The Cybersecurity Engineer proposes, develops, deploys, and supports complex, enterprise class solutions consistent with established security best practices, and corporate values and standards. The Cybersecurity Engineer leads small to medium scale projects, maintains team and organization level responsibilities, and collaborates with employees and leaders across UW Health, the UW School of Medicine and Public Health (SMPH), and our partners and affiliates.
As part of supporting a 24x7x365 environment, the Cybersecurity Engineer assures ongoing operations and security for a facility that operates continuously to provide the best possible care to the patients served.
EDUCATION/TRAINING:
Minimum:
Associate degree in healthcare, information technology, business, or related field Two (2) years of relevant experience may be considered in lieu of degree Preferred:
Bachelor's degree in computer science, information systems, healthcare, cybersecurity, information technology, engineering, business, or related field. LICENSURE/CERTIFICATION:
Minimum:
N/A Preferred:
Advanced certifications such as CISSP, CEH, CISM, CISA, CRISC, CCSP, and/or specific training and certification in Cloud, Microsoft 365, SIEM, MDM, Federation, IAM & IG, PAM, or other information security specialty. EXPERIENCE:
Minimum:
Demonstrated success in use of vulnerability scanners, SIEM, cloud security tools, identity access management systems, encryption technologies, firewall management, IDS/IPS, URL filtering, or endpoint detection and response tools. Demonstrated success assessing, testing, and implementing security controls. Preferred:
Five (5) years of progressively responsible experience in a healthcare setting, using technologies such as Microsoft 365, Azure Cloud, Active Directory, Cisco and Palo Alto Product Lines, VPN, Intrusion Prevention, Detection and Response, IAM & IG, PAM, LogRhythm/SIEM, Federation/SAML, or Qualys/Vulnerability Management. REQUIRED SKILLS, KNOWLEDGE, AND ABILITIES:
Information Services (IS) Core Competencies:
Intermediate competency in the following areas:
Communication Effective team member Critical thinking Mentoring and teaching Organizational Awareness / Understanding Security infrastructure, including two or more: Firewalls, VPN, Data Loss Prevention, IDS/IPS, URL filtering, Security Audits, SIEM, endpoint detection and response, federation, vulnerability management. Emerging competency in the following areas:
Leading without direct authority Leading highly empowered, self-directed teams including cross-functional teams Technical leadership of applicable products or platforms Applying lean management tools Applying agile methodologies Technology Awareness & Strategic Planning Leadership includes leads with integrity, maintains strategic orientation, demonstrates business & financial acumen, champions innovation, manages execution, leads & develops people Emerging competency in two of the following areas:
Application Security Enterprise Security, Privacy, & Info Sharing Identity Management Legal, Government, and Compliance Threat Analysis Other Skills, Knowledge, Abilities:
Ability to analyze data and information with a detailed understanding of cybersecurity methodologies. Methodical attention to detail Relevant problem-solving skills Ability to work comfortably under pressure and deliver on tight deadlines Effectively handle changes in direction
Our Commitment to Diversity, Equity, and Inclusion
UW Health is committed to being a diverse, inclusive and anti-racist workplace and is an Equal Employment Opportunity, Affirmative Action employer. Our integrity shines through in patient care interactions and our daily work practices as we work to embrace the knowledge, unique perspectives and qualities each employee and faculty member brings to work each day. Applications from Black, Indigenous and People of Color (BIPOC) individuals, LGBTQ+ and non-binary identities, women, persons with disabilities, military service members and veterans are strongly encouraged. EOE, including disability/veterans.
$87,900.00 - $131,900.00 / year
Additional components of compensation may include: Evening & night shift differential Overtime On-call pay
Benefits information:
https://careers.uwhealth.org/benefits/
At UW Health in northern Illinois, you will have : • Competitive pay and comprehensive benefits package including: PTO, Medical, Dental, Vision, retirement, short and long-term disability, paternity leave, adoption assistance, tuition assistance • Annual wellness reimbursement • Opportunity for on-site day care through UW Health Kids • Tuition reimbursement for career advancement--ask about our fully funded programs! • Abundant career growth opportunities to nurture professional development • Strong shared governance structure • Commitment to employee voice
POSITION SUMMARY:
The UW Health Cybersecurity Engineer is the guardian of all enterprise data, including data subject to the HIPAA Security Rule, and other sensitive or restricted electronic information, for which UW Health is the custodian. The Cybersecurity Engineer is responsible for the confidentiality, integrity, and availability of the network and systems that store data.
The Cybersecurity Engineer independently maintains and troubleshoots a variety of technologies, cybersecurity problems, and network issues. The Cybersecurity Engineer specializes in at least one technology and is a member of a team that supports deterrent, detective, and responsive systems. Some of these technologies include vulnerability assessment, security information and event management (SIEM), cloud security tools, encryption, identity access management and identity governance (IAM/IG), endpoint detection and response (EDR), URL filtering, firewall security controls, intrusion detection and prevention systems (IDS/IPS), and modern/mobile device management (MDM). The Cybersecurity Engineer participates in building Zero Trust environments, incident response, disaster recovery and business continuity.
The Cybersecurity Engineer proposes, develops, deploys, and supports complex, enterprise class solutions consistent with established security best practices, and corporate values and standards. The Cybersecurity Engineer leads small to medium scale projects, maintains team and organization level responsibilities, and collaborates with employees and leaders across UW Health, the UW School of Medicine and Public Health (SMPH), and our partners and affiliates.
As part of supporting a 24x7x365 environment, the Cybersecurity Engineer assures ongoing operations and security for a facility that operates continuously to provide the best possible care to the patients served.
EDUCATION/TRAINING:
Minimum:
Associate degree in healthcare, information technology, business, or related field Two (2) years of relevant experience may be considered in lieu of degree Preferred:
Bachelor's degree in computer science, information systems, healthcare, cybersecurity, information technology, engineering, business, or related field. LICENSURE/CERTIFICATION:
Minimum:
N/A Preferred:
Advanced certifications such as CISSP, CEH, CISM, CISA, CRISC, CCSP, and/or specific training and certification in Cloud, Microsoft 365, SIEM, MDM, Federation, IAM & IG, PAM, or other information security specialty. EXPERIENCE:
Minimum:
Demonstrated success in use of vulnerability scanners, SIEM, cloud security tools, identity access management systems, encryption technologies, firewall management, IDS/IPS, URL filtering, or endpoint detection and response tools. Demonstrated success assessing, testing, and implementing security controls. Preferred:
Five (5) years of progressively responsible experience in a healthcare setting, using technologies such as Microsoft 365, Azure Cloud, Active Directory, Cisco and Palo Alto Product Lines, VPN, Intrusion Prevention, Detection and Response, IAM & IG, PAM, LogRhythm/SIEM, Federation/SAML, or Qualys/Vulnerability Management. REQUIRED SKILLS, KNOWLEDGE, AND ABILITIES:
Information Services (IS) Core Competencies:
Intermediate competency in the following areas:
Communication Effective team member Critical thinking Mentoring and teaching Organizational Awareness / Understanding Security infrastructure, including two or more: Firewalls, VPN, Data Loss Prevention, IDS/IPS, URL filtering, Security Audits, SIEM, endpoint detection and response, federation, vulnerability management. Emerging competency in the following areas:
Leading without direct authority Leading highly empowered, self-directed teams including cross-functional teams Technical leadership of applicable products or platforms Applying lean management tools Applying agile methodologies Technology Awareness & Strategic Planning Leadership includes leads with integrity, maintains strategic orientation, demonstrates business & financial acumen, champions innovation, manages execution, leads & develops people Emerging competency in two of the following areas:
Application Security Enterprise Security, Privacy, & Info Sharing Identity Management Legal, Government, and Compliance Threat Analysis Other Skills, Knowledge, Abilities:
Ability to analyze data and information with a detailed understanding of cybersecurity methodologies. Methodical attention to detail Relevant problem-solving skills Ability to work comfortably under pressure and deliver on tight deadlines Effectively handle changes in direction
Our Commitment to Diversity, Equity, and Inclusion
UW Health is committed to being a diverse, inclusive and anti-racist workplace and is an Equal Employment Opportunity, Affirmative Action employer. Our integrity shines through in patient care interactions and our daily work practices as we work to embrace the knowledge, unique perspectives and qualities each employee and faculty member brings to work each day. Applications from Black, Indigenous and People of Color (BIPOC) individuals, LGBTQ+ and non-binary identities, women, persons with disabilities, military service members and veterans are strongly encouraged. EOE, including disability/veterans.