Job Description Summary:
The Senior Information Security Engineer will be responsible for analysis, design and support of information security control systems including, but not limited to, end point (EDR/ATP), cloud, network, and access control technologies in a Microsoft and Palo Alto based infrastructure
. • Experience designing secure networks architectures
• Experience designing secure system architectures
• Experience designing secure cloud architectures
• Ability to troubleshoot cloud security issue. • Ensure continuous monitoring of system and data security
• Respond to network security operational incidents and complete standard move, add, change tasks
• Respond to system and data security operational incidents and complete standard move, add, change tasks
• Provide security guidance to OhioHealth leaders and personnel to assist with technology decisions and use
• Assist with all security activities to insure PCI, GDPR, and HIPAA compliance
• Work collaboratively with other IT and Information Security teams to efficiently move projects forward and efficiently resolve support issues. • Working knowledge of Linux Operating System and Linux administration best practices
• Working knowledge of Windows Operating System and Windows administration best practices
• Working knowledge of Active Directory Operating System and Active Directory administration best practices
• Working knowledge of regulatory and contractual compliance, including PCI, and HIPAA requirements for information systems, security and privacy. • Knowledge of information security principles and processes-
• Knowledge of routing, switching, and load balancing
• Working knowledge system hardening techniques
• Working knowledge of IT Risk Assessment techniques, tools, and methodologies
• Working knowledge of Identity Management (SSO, MFA)
• Knowledge of disaster recovery, computer forensic tools, technologies and methods
QUALTIFICATIONS
• Skill in assessing the robustness of security systems, data controls, and designs. • Skill in assessing the robustness of security networks, network controls, and designs. • Skill in detecting network based intrusions via intrusion detection technologies. • Skill in conducting vulnerability scans and guiding remediation efforts to security systems and networks. • Skill troubleshooting network security technology issues
• Skill troubleshooting system and data security technology issues
• Skill to create multiple technical solutions to business security problems
• Skill Scripting using Python, Powershell
• Skillful at estimating the financial impact of security initiatives
• Skillful at prioritizing tasks to deliver highest priority efforts in timely manner. Working knowledge of LAN/WAN equipment, network security applications, and related services A broad background in technical infrastructure, including servers, networking devices, and storage is very desirable.
