IS Security Engineer - Privacy & Security

  • MaineHealth
  • Westbrook, ME 04092, USA
  • Jan 05, 2021

Job Description

Summary

  • Position Summary
    • The IT Security Engineer role is the second level of a three level career path. The IT Security Engineer, under general supervision, is responsible for the implementation and maintenance of information security systems and processes. This position will focus on third party security and risk, conducting, or working with others to conduct, risk‑based technical security and compliance audits or assessments.  This position requires both a strategic and tactical focus, with strong technical and compliance knowledge including, but not limited to, network, platform, and application security technologies as well as, HIPAA, HITRUST, Security/Privacy, Business Continuity/Disaster Recovery, NIST based security and risk management standards, and industry best practice security standards. Other activities include maintaining and ensuring compliance with security policies, procedures and standards related to the performance of technical activities in support of the security program service levels.
    •  
  • Required Minimum Knowledge, Skills, and Abilities (KSAs)
    • Associates degree in a related field of study or equivalent work experience.
    • 3 years IT experience in complex environments and a working knowledge of computer networking and platforms, including (but not limited to) network operating systems; firewalls; intrusion detection/prevention systems; wireless security including wireless intrusion prevention systems; web proxies; vulnerability scanning technologies; VPN's; Windows and Unix-based platforms; identity management; IT incident response; and network architecture.
    • Professional certification in either technical security or within a relevant networking or platform technology
    • Knowledge of application security concepts from a secure coding, secure design, and ongoing change management and monitoring perspective.
    • A high level of demonstrated organizational skill supporting business and process analysis and process implementation in moderately complex environments.
    • Strong prioritization skills and able to handle multiple tasks effectively.
    • Facilitation skills.
    • Active problem solver, working across multiple IS and business teams for solutions.
    • Strong business knowledge / acumen.
    • Ability to partner with others to overcome obstacles.
    • Articulate appropriately both in written and oral form, and collaborate with multiple teams regarding security and privacy obligations and duties.