Job Description

Employment Type:

Shift:

Description:

SUMMARY:

Trinity Health's Enterprise Information Security group is seeking to add more experts to our cyber security program.  We are looking for experienced individuals who have demonstrable experience configuring security monitoring tools in support of the ongoing development and refinement of advance analytic models to detect cyber security threats ranging from sophisticated malware to employee misuse. This position will work on a team of dedicated cyber security professionals reporting directly into the Security Operations Center manager.  As part of a growing cyber security program, you will have an opportunity to put your skills to the test in defending a large enterprise network and safeguarding information assets while supporting the needs of our patients, physicians, colleagues and other key stakeholders.

The primary responsibilities include defining data collection requirements, developing and testing analytic models, measuring the detection success rate, and refining the model to improve accuracy. The development of analytic models will require the application of Boolean logic, statistical methods, data mining concepts, and behavior-based machine learning techniques. This position will work closely with the cyber threat intelligence team to understand emerging threats, security monitoring, and incident response teams to identify log collection requirements.

PREFERRED SKILLS AND EXPERIENCE:

• Establishing and enhancing cyber security analytics reporting capabilities for use by the operational areas of the Cyber Fusion Center to detect and respond to security events
• Acting as a cyber security analytics subject matter expert to teams across Enterprise Information Security and Trinity Health and leverage analytic capabilities to help solve specific business/compliance requirements
• Participating in recurring meetings that review emerging threats and identify opportunities to leverage analytic capabilities to improve detection across the organization
• Proactively identifying emerging data sources that improve detection capabilities and work with the cyber security analytics data management team to enable data collection
• Prioritizing future data collection requirements based on the value of detecting a particular situation, availability of required data source(s) and related data retention costs, and the ability eliminate false positive detections
• Developing and refining analytic models to improve detection capabilities using various statistical, data mining, and machine learning approaches
• Developing automated and self-service reporting capabilities to ensure information is readily available to the intended audience
• Maintaining awareness of industry trends and emerging technologies, such as user behavior analytics, and research opportunities to improve cyber security analytic capabilities
• Participating in Incident Response activities with a focus on identifying deficiencies in security monitoring capabilities and/or analytics.

ESSENTIAL FUNCTIONS

• Knows, understands, incorporates and demonstrates the Trinity Health Mission, Vision, and Values in behaviors, practices and decisions.
• Provides advanced system management, monitoring, support, troubleshooting, and resolution of all network security issues within the enterprise network. Provides advanced technical support and manages technology implementations of network security systems in the system office and  enterprise LAN/WAN environments.
• Provides in-depth knowledge and techniques for second level support to all service groups with network security dependencies, such as DMZ and Internet services, VPN services and firewall services.
View Orignal JOB on: italents.net
• Performs root cause analysis for all related network security device outage and performance issues.
• Assists in the development of a technology architecture plan with a network security focus, in order to ensure integration and support of overall business requirements and strategic business objectives.
• Supports all new project planning initiatives and project time-line development. Provides assistance in technology design and deployment. Develops and coordinates project implementation tasks and plans.
• Keeps abreast of current industry best practices; develops knowledge through self-study in order to increase expertise as subject matter expert for understanding, designing, and implementing network security solutions.
• Educates and mentors network security analysts.
• Performs other duties as assigned.
• Maintains a working knowledge of applicable Federal, State and local laws/regulations; the Trinity Health Integrity and Compliance Program and Code of Conduct; as well as other policies and procedures in order to ensure adherence in a manner that reflects honest, ethical and professional behavior.

MINIMUM QUALIFICATIONS

• Bachelor’s degree with five (5) to seven (7) years of related experience in infrastructure environments performing enterprise level network security management and administration using hardware and software security solutions for LANs and WANs with latest technology or equivalent combination of education and applicable experience.
• Must be committed to continual personal and profession growth, possess a pro-active approach with a willingness to “go the extra mile”, every time for the customer.
• Must possess advanced administrative experience with Next Generation firewall systems, including advanced functionality in VPN technologies, policy management systems, and firewall clustering. Experience with Check Point is preferred.
• Must have experience with available management & troubleshooting tools such as WireShark, TCPDump and NetStat.
• Related experience with intrusion prevention systems and monitoring, including event correlation through Security Information Event Management system (SIEM) is preferred.
• Must possess experience in creating technical documentation, network diagrams, and job-aids with Microsoft applications Visio, Word, Excel and PowerPoint.
• Demonstrated leadership ability and detailed project management skills.
• Ability to work independently, manage multiple priorities and to effectively adapt to rapidly changing technology and business needs with demonstrated ability to prioritize projects & work load.
• Must be able to set and organize own work priorities, and adapt to them as they change frequently.
• Certification designation is a plus. (CISSP with a security engineering focus, CCNP or CCSE).
• Must be team oriented, supportive, and committed to excellence and possess high level of initiative and self-motivation with demonstrated work ethic.
• Must be committed to continual personal and profession growth, possess a pro-active approach with a willingness to “go the extra mile”, every time for the customer.
• Must be comfortable operating in a collaborative, shared leadership environment.
• Must possess a personal presence that is characterized by a sense of honesty, integrity, and caring with the ability to inspire and motivate others to promote the philosophy, mission, vision, goals, and values of Trinity Health.

PHYSICAL AND MENTAL REQUIREMENTS AND WORKING CONDITIONS

• This position operates in a typical office environment.  The area is well lit, temperature-controlled and free from hazards. 
• Incumbent communicates frequently, in person and over the telephone, with people in a number of different locations on technical issues. 
• Manual dexterity is needed in order to operate a keyboard. Hearing is needed for extensive telephone and in person communications. 
• The environment in which the incumbent will work requires the ability to concentrate, meet deadlines, work on several projects at the same period and adapt to interruptions. 
• The incumbent must be capable of traveling in the course of completing project assignments. 
• Must be available for on-call rotations to support 24x7x365 service availability.
• Must be able to travel to the various Trinity Health sites (up to 20%) as needed (may or may not apply).

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification.  They are not to be constructed as an exhaustive list of duties so assigned.

Our Commitment to Diversity and Inclusion
 

Trinity Health is one of the largest not-for-profit, Catholic healthcare systems in the nation. Built on the foundation of our Mission and Core Values, we integrate diversity, equity, and inclusion in all that we do. Our colleagues have different lived experiences, customs, abilities, and talents. Together, we become our best selves. A diverse and inclusive workforce provides the most accessible and equitable care for those we serve. Trinity Health is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other status protected by law.