The IT Security Engineer role is the second level of a three level career path. The IT Security Engineer, under general supervision, is responsible for the implementation and maintenance of information security systems and processes. This position will focus on third party security and risk, conducting, or working with others to conduct, risk‑based technical security and compliance audits or assessments. This position requires both a strategic and tactical focus, with strong technical and compliance knowledge including, but not limited to, network, platform, and application security technologies as well as, HIPAA, HITRUST, Security/Privacy, Business Continuity/Disaster Recovery, NIST based security and risk management standards, and industry best practice security standards. Other activities include maintaining and ensuring compliance with security policies, procedures and standards related to the performance of technical activities in support of the security program service levels.
Required Minimum Knowledge, Skills, and Abilities (KSAs)
Associates degree in a related field of study or equivalent work experience.
3 years IT experience in complex environments and a working knowledge of computer networking and platforms, including (but not limited to) network operating systems; firewalls; intrusion detection/prevention systems; wireless security including wireless intrusion prevention systems; web proxies; vulnerability scanning technologies; VPN's; Windows and Unix-based platforms; identity management; IT incident response; and network architecture.
Professional certification in either technical security or within a relevant networking or platform technology
Knowledge of application security concepts from a secure coding, secure design, and ongoing change management and monitoring perspective.
A high level of demonstrated organizational skill supporting business and process analysis and process implementation in moderately complex environments.
Strong prioritization skills and able to handle multiple tasks effectively.
Active problem solver, working across multiple IS and business teams for solutions.
Strong business knowledge / acumen.
Ability to partner with others to overcome obstacles.
Articulate appropriately both in written and oral form, and collaborate with multiple teams regarding security and privacy obligations and duties.
Committed to being the trusted source for quality care – and careers.
At MaineHealth, exceptional people using the latest in advanced innovations help ensure that our northern New England communities are the healthiest they can be. From a full array of telehealth programs to the most sophisticated electronic medical records system, our clinical technology is second to none. But it’s our people who bring these medical advancements to life as they change the lives of the people in the communities we’re proud to serve.
As a non-profit family of high-quality healthcare providers, we’re working together to create strong, vibrant and healthy partnerships. We are an integrated healthcare delivery system made up of the state’s only academic medical center (and largest hospital), a large bio-medical research center, community hospitals, home care agencies, physician practices, an outpatient lab, and diagnostic and surgery centers. In addition to our clinical opportunities, MaineHealth also offers a variety of fulfilling careers in finance, human resources, information services, marketing, support services, and more!
The MaineHealth family of hospitals and healthcare organizations offers outstanding opportunities to work and live in one of the most spectacular areas of our nation. Our ongoing growth and focus on compassionate care mean a choice of challenging and rewarding career opportunities throughout our system – from mid-sized cities and small towns in the mountains to beautiful coastal communities.
The MaineHealth integrated health system includes: