Lead Security Engineer

I have a full time opportunity for a IT Security Lead for one of our leading healthcare organizations. This role will be part of the Cyber Defense Operations and Engineering team and work with the Strategic Threat Intelligence Center for incidents and remediation. Acting as an escalation point for major security incidents and other stakeholders from incident inception to remediation. Please see the job description below and feel free to reach out with questions.This role has a hybrid work schedule with some days at home as well as in the office.

• Develops security strategies and solutions to improve, augment and enhance the posture of IT Security.
• Engineer, install, upgrade, maintain, and/or support a variety of security tools.
• Assists in the coordination and completion of applicable IT security SOP's.
• Periodically reviews, modifies corporate IT Security standards and procedures as required by changes in technologies, business activities, and regulations.
• Work with IT leadership to develop strategies and plans to enforce security requirements and address identified risks.
• Is a subject matter expert in the area of IT Security and provides technical guidance on any IT projects.
• Develops and maintains detailed knowledge of security products, tools, regulations, and best practices.
• Reports to IT management concerning risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance.
• Plays a consultative role in application development and lead security role in acquisition/merger projects to assess security requirements and controls and to ensure that security controls are implemented as planned.
• Collaborates on critical IT projects to ensure that IT security issues are addressed throughout the project life cycle.
• Fully understand security policies, standards, processes, and procedures, and supports service-level agreements to ensure that security controls are managed and maintained.
• Researches, evaluates, and recommends IT and information-security-related hardware and software, including developing business cases for security investments.

• Minimum 10 years' experience with the implementation and support of an IT Security program including aspects of threat and vulnerability management, security management, and application security related products, projects, procedures, and processes.
• This person should be able to perform a variety of technical tasks, including, for example, the installation of security software, configuration of software, and problem determination and resolution.
• Experience with Cisco ASA VPN, McAfee and Zscaler, Network Access Control with Cisco Client, Wireless 8021.1x
• Experience with Fortinet Firewall and Intrusion prevention governance

• DNS security management and operations – Cisco Umbrella
• Security Analytics operations support and investigations –
  LogRhythm
• Experience with
  zero trust architecture and governance
• Experience with
  EDR Crowdstrike or similar tool
• Network Anomaly IA Analytics with Darktrace, configuration, design, and operations or similar
• Familiar with management frameworks, such as International Organization for Standardization (ISO) 2700x, ITIL, COBIT, PCI, HIPAA and National Institute of Standards and Technology (NIST).
• Expertise in performing
  vulnerability assessments including
  network, system and/or application vulnerability scanning, penetration testing and remediation methods.
• Technical knowledge of; mainstream operating systems including, for example, Microsoft Windows, UNIX and Linux; a wide range of security technologies, such as, for example, network security appliances, identity and access management (IAM) systems, anti-malware solutions, automated policy compliance tools, and desktop security tools.
• B.S. Degree in Cybersecurity, Computer Systems Engineering, Computer Science, Computer Information Systems or equivalent education and experience required.
• Security related certifications preferred such as CISSP, SSCP, and GIAC.