Network/Firewall Security Engineer - Information Tech (Onsite) (Days) Job Opening in Carrollton, GA at Tanner Health

What are the responsibilities and job description for the Network/Firewall Security Engineer - Information Tech (Onsite) (Days) position at Tanner Health?

The IT Security Engineer develops and maintains enterprise-wide security architecture and strategies for all aspects of the security domain in alignment with the business strategy and goals. He she provides technical and security expertise to IT and business teams to understand technical constraints, identify security technology solutions, and develop security reference architectures and strategies to achieve business results. The IT Security Engineer identifies and drives remediation for vulnerabilities discovered across Tanner Medical Center's systems and applications. He she builds on platforms to automate processes for triage, as well as prioritize security deviations for closure and to provide insight into the state of security at Tanner Medical Center. In this role, the IT Security Engineer will also act as a consultant to other analysts and development teams for planning and implementation of IT initiatives across the Tanner Business Units.

Required Knowledge & Skills

Education: Bachelor's Degree plus at least one year of training in a specialty resulting in certification

Experience: Six years of related experience. Requires advanced knowledge in highly specialized systems and procedures.

Licenses and Certifications

*NONE REQUIRED

Qualifications

*Bachelor's degree in computer science or IT Technology

*Prior experience performing in the role of an IT Security Engineer.

*Prior experience working in IT within the healthcare industry.

*Understanding of Information Security frameworks and good practices (e.g. ISO, NIST, MITRE ATT&CK), and ability to strike a balance between an academic and pragmatic approach.

*Understanding of computer, application and network exploits and vulnerabilities.

*Knowledge of authentication, authorization, and access control methods.

*Knowledge of Identity Management Protocols and Software (e.g. ADFS, SAML, OKTA)

*Knowledge of cryptography and cryptographic key management concepts.

*Working knowledge of how system components are installed, integrated, and optimized.

*Working knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

*Demonstrated experience in applying cybersecurity methods, such as firewalls, demilitarized zones, and encryption.

*Working knowledge of network access, identity, and access controls.

*Working knowledge of network protocols such as TCP IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.

*Knowledge of network design processes, to include understanding of security objectives, operational objectives, and tradeoffs.

*Working knowledge of key concepts in security management (e.g., Release Management, Patch Management, etc.)

*Working knowledge of configuration management techniques.

*Working knowledge of device and client firewall policies within endpoint management systems targeting Windows, iOS, Android, MacOS, and ChromeOS devices.

*Ability to create technical procedural documentation.

*Experience working with Security Information Event Management (SIEM) and event log management.

*Experience working with Privileged Access Management Systems (PAM).

*Experience working with Vulnerability Management, Managed Detection and Response, and Intrusion Detection Prevention Systems.

*Experience in incident response processes and procedures related to cyber incidents and forensic investigations.

*Strategic thinking and strong tactical execution.

*Strong written and verbal skills

*Strong customer service skills during interactions with clinical staff, end-users, contractors, and vendors.

*Preferred Licenses and Certifications: CISSP, GIAC

Qualifications:

Statement Of Employment Philosophy

Being a part of Tanner Health System is more than a job, it is a promise we make to treat every patient with exceptional service every time they walk through our doors. Service excellence is the foundation of our organizational culture and the expectations we all set for each other, our patients, physicians and our community. All employees agree to abide by a set of service standards. These standards are the promise we make to provide the best care possible, and represent our beliefs, values and who we strive to become. We each commit to making Tanner Health System a great place for our employees to work, for patients to receive care and for physicians to practice medicine.

Functions

Area of Responsibilities

*Provides technical and security expertise to IT and business teams to identify security technology solutions and implements security reference architectures and strategies to achieve business results. Ensures appropriate implementation of security technology and reference architectures within both the development and production environments.

*Works with IT Security Team to further develop cybersecurity designs for systems and networks with multilevel security requirements or requirements.

*Provides input on security requirements to be included in statements of work and other appropriate procurement documents.

*Provides technical guidance and security expertise in the areas of secure application development, security risk management and assessment, security policies and standards, and security implementations.

*Provides technology and security expertise and advice to leadership in the development of strategic security technology and plans to support business strategies, translating those proposed capabilities into technical requirements.

*Establishes, maintains, and enhances relationships with business and technology partners. Communicates status to key stakeholders on a regular basis.

*Implements, troubleshoots, and maintains perimeter and network segmentation firewalls.

*Configuration of device and client firewall policies within endpoint management systems targeting Windows, iOS, Android, MacOS, and ChromeOS devices.

*Maintains awareness of trends and issues in area of security expertise, evaluates new security technologies or technology opportunities, and provides analysis of their potential impact to advantage the business.

*Develops and maintains security policies, procedures, and guides encompassing the systems used by Tanner Health System.

*Works across multiple technologies and major platforms to perform vulnerability impact assessments, root cause analyses, and to identify strategic opportunities for security posture.

*Develops, deploys, and maintains services and third-party tools that detect vulnerabilities and drives remediation.

*Provides subject matter expertise for vulnerability management processes and controls for multiple compliance frameworks.

*Independently analyzes the Tanner Health System environment to proactively identify critical exposure points.

Compliance Statement

Employee performs within the prescribed limits of Tanner Health System's Ethics and Compliance program. Is responsible to detect, observe, and report compliance variances to their immediate supervisor, the Compliance Officer, or the Hotline.

Required Knowledge & Skills

Education: Bachelor's Degree plus at least one year of training in a specialty resulting in certification

Experience: Six years of related experience. Requires advanced knowledge in highly specialized systems and procedures.

Licenses and Certifications

*NONE REQUIRED

Supervision

*Exercises no supervision, work direction, or instruction of other employees or students.