Security Engineer II

Thank you for considering a career at Bon Secours Mercy Health!

• Perform system upgrades to authentication and access technology platform.
• Provision admin and user accounts, as needed, thru ticketing system.
• Monitor system and optimize performance for a range of application workflows.
• Monitor system license requirements and communicate findings on a timely basis.
• Implement operational and technical security controls adhering to organizational security polices and procedures.
• Work effectively with application teams to improve or adapt application workflows.
• Support security architecture review. Support joint "Purple Team" cybersecurity exercises.
• Support data loss prevention configuration, security information and event management configuration and administration
• Work effectively with others in the Information & Technology organization, operations in support of security policies and standards.
• Complete technical documentation to include network security diagrams, build of materials (BOMS), incident response playbooks, procedures in support of Payment Card Industry Compliance Data Security Standard (PCI-DSS), Health Information Trust Alliance (HITRUST), Health Insurance Portability and Accountability Act (HIPAA), and cybersecurity defense and protection due-diligence and due care.
• Work with Network Operations Center to ensure security measures are consistent with network architecture.
• Travel 10% of the time to support cybersecurity enterprise incident response and technology expansion to other BSMH markets.
• Support cybersecurity architecture to include defense in-depth designs for network security monitoring (NSM) continuous security monitoring (CSM) to proactively detect and prevent advanced persistent threats, ransomware, and data exfiltration. Complete reverse malware engineering analysis and identify TPP's for internal and external threats.
• Support after hours' system tuning configuration changes in compliance with the Bon Secours Mercy Health change management policy.
• Participate in rotating on-call schedule.

• Associates or Bachelor's degree in Electrical Engineering, Information Security, Information Assurance, Cybersecurity, Computer Science, Information Technology, Information System, Business Management preferred.
• 3+ years professional work experience in information technology preferred
• Certifications such as ISC2 (CISSP, SSCP), CompTIA (Security+, Network+, Server+, CySA+, Linux+), SANS (GSE, GWAPT, GPEN, GCIH, GCFA, GCIA, GMON), Microsoft 365 Certified Security Administrator Associate, CEH, CHFI, CND, Cisco CCNA Security,, VMware Certified (VCP, VCPA, VCDX), CWSP preferred.
• Experience with sniffer protocol analyzer and analyzing and interpreting TCP packets data flows.
• Experience sub netting IPv4, IPv6.
• Experience creating Visio network, and data flow diagrams.
• Experience in certificate management.
• Knowledge of Microsoft Active Directory Group Policy management.
• Knowledge of routing protocols OSPF, BGP, IBGP, VRRP, EIGRP.
• Knowledge of vulnerability assessments and penetrations testing.
• Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
• Knowledge network firewall and intrusion prevention appliance order of operations.
• Excellent communication skills to effectively annotate findings in both written and oral form
• Ability to communicate clearly and present security findings with technical staff as well as non-technical colleagues.
• Sensitivity to accuracy, timeliness, and professionalism in all areas of support activity is imperative.
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
• Knowledge of cybersecurity and privacy principles.
• Knowledge of cyber threats and vulnerabilities.
• Knowledge of specific operational impacts of cybersecurity lapses.
• Core Knowledge of measures or indicators of system performance and availability.
• Core Knowledge of performance tuning tools and techniques.
• Additional Knowledge of server and client operating systems.
• Core Knowledge of systems administration concepts.
• Additional Knowledge of the type and frequency of routine hardware maintenance.
• Additional Knowledge of Virtual Private Network (VPN) security.
• Core Knowledge of virtualization technologies and virtual machine development and maintenance.
• Core Knowledge of organizational information technology (IT) user security policies (e.g., account creation, password rules, access control).
• Core Knowledge of system administration, network, and operating system hardening techniques.
• Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
• Knowledge of Personally Identifiable Information (PII) data security standards.
• Knowledge of Payment Card Industry (PCI) data security standards.
• Knowledge of Personal Health Information (PHI) data security standards.
• Knowledge of system/server diagnostic tools and fault identification techniques.
• Knowledge of operating system command-line tools.
• Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
• Core Knowledge of principles and methods for integrating system components.

• Comprehensive, affordable medical, dental and vision plans
• Prescription drug coverage
• Flexible spending accounts
• Life insurance w/AD&D
• Employer contributions to retirement savings plan when eligible
• Paid time off
• Educational Assistance
• And much more