Job Specifications
General Summary
Responsible for analyzing threats and vulnerabilities in systems, software and processes and then researching cybersecurity solutions to defend against hackers, cyber-attacks and other persistent threats. Engages in monitoring of those solutions, continually making sure that all of the implemented defenses are providing usable data, analyzing data outputs and making recommendations. Works closely with multiple stakeholders and third party vendors to produce, review and analyze data from various solutions required to protect critical assets such as information technology and other systems. Monitors and reports cybersecurity activity while protecting the organization against cybersecurity threats.
Principal Job Functions
*Commits to the mission, vision, beliefs and consistently demonstrates our core values.
*Maintains and updates cybersecurity plans, policies and response playbooks using established security frameworks.
*Maintains and improves secure system configuration, supporting multiple platforms and applications.
Analyzes vulnerability assessments and works across the organization to ensure appropriate fixes are tested and implemented where applicable.
*Identifies and monitors core projective measures necessary to mitigate risks and identified threats.
*Analyzes, investigates and documents system and/or network security breaches as well as root causes of issues.
*Analyzes and reviews user and device security logs, identifies any trends or indicators of compromise and reports appropriately.
* Analyzes network and systems logs, identifies any trends or indicators of compromise and reports appropriately.
Audits system backups and air gap backup solutions for proper utilization.
Works with department staff to create processes and standards to deploy new technologies.
Supports incident response activities, including steps to identify indicators of compromise, incident containment, and conducts technical analysis to assist in determinating response and recovery requirements.
*Ability to assist in detection, prevention and analysis of security threats.
Enters restricted access areas, without supervision, to perform assigned work.
Maintains professional growth and development through seminars, workshops, and professional affiliations to keep abreast of latest trends in field of expertise.
Participates in meetings, committees and department projects as assigned.
Performs other related projects and duties as assigned.
(Essential Job functions are marked with an asterisk "*").
Required Knowledge, Skills And Abilities
Knowledge of operating systems, network and cloud security.
Knowledge and experience in maintaining anti-virus software, intrusion detection, firewalls and content filtering.
Knowledge of risk assessment and methods for risk mitigation.
Skill in analyzing technical security controls and security systems logs.
Skill in use of vulnerability and security configuration tools.
Skill in critical thinking and attention to detail.
Ability to assess security and network issues to provide insight to complex problems.
Ability to communicate effectively both verbally and in writing.
Ability to identify and evaluate alternative and innovative solutions to problems.
Ability to create appropriate security and systems documentation.
Ability to establish and manage priorities.
Ability to maintain confidentiality relevant to sensitive information.
Ability to prioritize work demands and work with minimal supervision.
Ability to establish and maintain effective working relationships with all levels of personnel and medical staff.
Ability to problem solve and engage independent critical thinking skills.
Ability to grasp complex technical and business systems, processes and principles across IT functions and relationships in support of organizational goals.
Ability to maintain regular and punctual attendance.
Education And Experience
Associate's degree in Computer Science, Information Systems, or equivalent field of study required. Bachelor's degree preferred. Minimum of two (2) years' experience with Windows and/or other operating systems, Active Directory, OSI model and TCP/IP networking protocols and concepts required. One (1) year experience in various cyber security related systems (vulnerability management, firewalls, virus management, etc.) preferred.
Other Credentials / Certifications
CISA, GCSA, CySA+ or similar industry certification preferred.
Physical Requirements
(Physical Requirements are based on federal criteria and assigned by Human Resources upon review of the Principal Job Functions.)
(DOT) - Characterized as sedentary work requiring exertion up to 10 pounds of force occasionally and/or a negligible amount of force frequently to lift, carry, push, pull or otherwise move objects, including the human body.
Sedentary work involves sitting most of the time, but may involve walking or standing for brief periods of time.
About the Company
Forward. Together. We're a Nebraska governed, non-profit health system that cares for patients, educates tomorrow's health care providers and motivates our community with fitness and health programs. Our award-winning network of doctors, hospitals and medical providers offers effective care; works with industry leaders to introduce leading-edge, proven treatments to our region; and serves rural communities through outreach clinics, mobile services and telemedicine care. We're always focused on providing the personalized care...
Know more