Engineer-Information Systems Security Senior Advisory
Job ID: 26596
Job Category: Information Systems
Job Type: Non Clinical
Work Type: Full Time
Work Schedule: Days
Facility: BMHCC Corporate Office
Location:
Memphis,
TN
Summary The Senior Advisory Security Engineer role is responsible for maintaining the security of enterprise systems, data and patients/employees through the design, implementation and operational support of security systems, processes, and procedures. Specifically, the Sr. Advisory Security Engineer will leverage their skills and experience to ensure clinical operations can run securely through the effective use of tools that provide protection, detection and response capabilities. Additionally, a Senior Security Engineer will be subject matter expert, ensuring their skills and experience can be shared to enhance the overall maturity of the security program.
Responsibilities - Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives, and develops solutions to remediate identified threats.
- Designs, tests, and manages firewalls, intrusion detection systems, enterprise anti-virus systems, data loss prevention controls, security monitoring system, privileged account management systems, and software deployment tools/capabilities with a focus on the identification and implementation of system enhancements.
- Provides tier III complex engineering analysis and support for firewalls, networks and operating systems.
- Provides expert-level security to assess and propose solutions to the Baptist Security tools set as well as provide senior-level problem solving engineering skills.
- Engineers, implements and oversees user access process to ensure operational integrity of enterprise security systems.
- Develops and performs technical and programmatic assessments, evaluates engineering and integration initiatives, and provides technical support to assess security policies, standards and guidelines.
- Develops, implements, enforces, and communicates security policies and/or plans for data, software applications, hardware and telecommunications.
- Performs complex product evaluations, recommends, and implements products/services for information security.
- Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies.
- Completes all other duties as assigned.
Requirements, Preferences and Experience Education Minimum: BS Degree or equivalent years experience
Experience Preferred:
- Preferred experience assessing and managing the security of a large IT enterprise.
- Preferred experience managing the technical aspects of an enterprise infrastructure (server, network, PCs, Active Directory)
- Preferred experience in healthcare and academia.
- Preferred experience with disaster recovery and business continuity planning.
Minimum:
- 15 years security experience
Licensure, Registration, Certification Preferred: Preferred Certified Information Systems Security Professional (CISSP), or related certification.
Special Skills Preferred: !!!!!!!!!!!!!!!!Preferred demonstrated security research, seminar/conference, writing, or community-oriented leadership activities.
Minimum:
- Proven ability to provide project management and technical leadership of the implementation of department level critical security initiatives from inception to successful implementation.
- Ability to serve as key communication point person for security activities, incidents and projects
- Strong listening, verbal, written, and interpersonal communication skills. Ability to constructively resolve technical issues and conflicts as they arise.
- Excellent problem analysis skills and articulate communicator of complex technical and business topics.
- Experience with security incident response planning and execution.
- Continuing awareness of evolving technology threats and vulnerabilities.
- Ability to work within deadlines and with multiple priorities; ability to adapt to changing priorities.
- Must be able and willing to provide 24x7 support for organizational incidents and event.
Training Preferred: !!!!!!!!
Minimum:
- Experience with security auditing, reverse engineering, penetration testing (vulnerability scanning, application security testing, penetration testing, etc.)
- Significant experience with security system engineering and administrative activities (e.g., firewalls, IDS/IPS, operating system audit logs, application or database audit logs, AV, etc.).
- Significant experience with security system monitoring and response activities to support protect/defend/respond/recover requirements.
- Excellent knowledge of computer networking, application and operating system security, administration and/or forensics (Windows, Unix/Linux, Macintosh).
- Experience with security risk assessment and risk management.
About Baptist Memorial Health Care At Baptist, we owe our success to our colleagues, who have both technical expertise and a compassionate attitude. Every day they carry out Christ's three-fold ministry-healing, preaching and teaching. And, we reward their efforts with compensation and benefits packages that are highly competitive in the Mid-South health care community. For two consecutive years, Baptist has won a Best in Benefits award for offering the best benefit plans compared with their peer groups. Winners are chosen based on plan designs, premiums and the results of a Benefits Benchmarking Survey.
At Baptist, We Offer: - Competitive salaries
- Paid vacation/time off
- Continuing education opportunities
- Generous retirement plan
- Health insurance, including dental and vision
- Sick leave
- Service awards
- Free parking
- Short-term disability
- Life insurance
- Health care and dependent care spending accounts
- Education assistance/continuing education
- Employee referral program
Job Summary: Position: 20217 - Engineer-Information Systems Security Senior Advisory
Facility: BMHCC Corporate Office
Department: HS IS Admin Corporate
Category: Information Systems
Type: Non Clinical
Work Type: Full Time
Work Schedule: Days
Location: US:TN:Memphis
Located in the Memphis metro area