Job Details

ID #21352522
State North Dakota
City Bismarck
Full-time
Salary USD TBD TBD
Source Sanford Health
Showed 2021-10-18
Date 2021-10-19
Deadline 2021-12-17
Category Et cetera
Create resume

Senior IT Security Specialist - Security Risk Management

North Dakota, Bismarck, 58501 Bismarck USA

Vacancy expired!

Create Your Career With Us!Sanford Health is one of the largest and fastest-growing not-for-profit health systems in the United States. We're proud to offer many development and advancement opportunities to our nearly 50,000 members of the Sanford Family who are dedicated to the work of health and healing across our broad footprint.Facility: Expressway Business Office Location: Bismarck, ND Address: 1833 E Bismarck Expy, Bismarck, ND 58504, USA Shift: Day Job Schedule: Full time Weekly Hours: 40.00 Starting Rate: $31.00Job SummaryThe Senior IT Security Specialist will be a member of Sanford’s IT Security Risk Management team. The senior security specialist will work closely with the SOC, Security Engineering, Technology Solutions, and other stakeholders to ensure that Sanford has appropriate technical controls in place that align with industry standard control frameworks including HIPAA and NIST. The senior security specialist will perform technical security assessments, perform third party security assessments, develop security metrics, manage security exceptions including identifying appropriate compensating controls, and assist with security program governance. Responsibilities:Perform technical security assessments including validation and testing that technical security controls are functioningPerform vendor security assessments including both for compliance with Sanford’s policies as well as technical implementationProvide senior level guidance on security policies and standards ensuring alignment to industry best practicesPerform technical assessment of applications and infrastructure ensuring it meets Sanford’s technical security requirementsAssist with the development and management of key risk indicators and operational metrics to monitor the effectiveness of current controlsReview requests for security exceptions and work with the business to dimension the level of risk and identify and recommend technical compensating controls to reduce riskDirect periodic risk and threat assessments to provide a realistic overview of current and future risks and threatsAssist and coordinate periodic internal and external auditsMonitor and report on compliance with security policies, as well as the enforcement of policies within the IT department.Qualifications:In-depth knowledge and understanding of information risk concepts and principles as a means of relating business needs to security controls, an excellent understanding of information security concepts, protocols, industry best practices and strategies.Familiarity with common industry standard security frameworks and health care industry compliance and regulatory requirements including NIST and HIPAAStrong technical background with the ability to assess the technical implementation of various platforms to ensure the security of the platformExperience performing one or more of the following: technical security assessments, audits, vendor risk assessments, policy managementPrevious experience working in security operations or security engineering with technical expertise in more than one of the following domains: network security, data protection, application security, security logging/monitoring, authentication/authorization, incident management, email security, and infrastructure protection.The ability to understand complex technical concepts while simultaneously interacting with non-technical users.The ability to interact with Sanford personnel, build strong relationships across business units and organizations, and understand business imperatives.A strong understanding of the business impact of security tools, technologies, policies, and practices.Excellent verbal, written and interpersonal communication skills, including the ability to communicate effectively with the technology solutions organization, project and application development teams, management and business personnelQualificationsBachelor's degree in a IT related field or minimum five years' equivalent work experience.Must have a thorough knowledge of information security principles and techniques necessary to develop, monitor, and document an integrated information security system. Must have a comprehensive knowledge of the interactions of information security.BenefitsSanford Health offers an attractive benefits package for qualifying full-time and part-time employees. Depending on eligibility, a variety of benefits include health insurance, dental insurance, vision insurance, life insurance, a 401(k) retirement plan, work/life balance benefits, sick leave and paid time off. To review your benefit eligibility, visit https://sanfordhealth.jobs/benefits .Sanford is an EEO/AA Employer M/F/Disability/Vet. If you are an individual with a disability and would like to request an accommodation for help with your online application, please call 1-877-673-0854 or send an email to talent@sanfordhealth.org .Sanford Health has a Drug Free Workplace Policy. An accepted offer will require a drug screen and pre-employment background screening as a condition of employment.Job Function: Information Technology Req Number: R-78265 Featured: No

Vacancy expired!

Subscribe Report job