Sr Information Security Engineer

Job Title: Sr Information Security (InfoSec) Engineer

Requisition #: 10321

POSITION SUMMARY & KEY RESPONSIBILITIES:

The Senior Information Security Engineer performs technical and operational tasks to design, develop, implement and maintain information security solutions using technologies and processes to uphold the confidentiality, integrity and availability of City of Hope's information assets

  • Will conduct protocol and traffic analysis, has the ability to execute effective countermeasures to current threats to systems and networks, has comprehensive knowledge of the inter-relationship between operating systems, Active Directory, IDS-IPS, vulnerability detection tools, SQL, TCP/IP, encryption, VPNs, and DMZs
  • Requires strong knowledge of information security exploits and incident handling
  • Lead engineering projects to implement the information security infrastructure, as well as assist other projects enhancing the Information Security Program, including recommendations on technology strategies that monitor and alert on anomalies

MANAGERIAL RESPONSIBILITIES:

  • Monitors information security risk management and mitigationthrough strict governance processes and procedures
  • Lead or assist in the planning, implementation and introduction of projects for new systems and technologies
  • Moderate experience with skilled collaboration with business partners and executive leadership to ensure alignment of expectations for installation and maintenance of security controls
  • Ensures adherence to project schedules; aggressively monitors project budgets; and reallocates resources to avoid budget or schedule variances
  • Collaborates with assigned vendors to build effective relationships and collaborative team environments
  • Continually evaluates methods of undertaking and completing projects more efficiently with new modeling and information engineering techniques and different technology platforms

TECHNICAL SKILLS & EXPERIENCE:

  • Knowledge of design, implementation, and maintenance of:security incident and event management (SIEM),local area networks and firewalls, Active Directory, group policy objects, scripting, vulnerability scanning, encryption, IDS/IPS, web filtering, LDAP, multi-factor authentication systems, identity and access management systems, exploits and hacker techniques, and, network and operating system security principles
  • Proactively preparecountermeasures to defend information systemsagainst known attack techniques: backdoors and Trojan horses, buffer overflows, covering tracks in Unix-Linux, on the network, using steganography, denial-of-service, Netcat, format string attacks, IP address spoofing, kernel-mode rootkits, user-mode rootkits, network sniffing, password attacks, passive fingerprinting, war-dialing, web application attacks, worms, bots and bot-nets, and session hijacking
  • Manage the implementation and ongoing capabilities of a SIEM (Security Incident and Event Management)
  • Lead the analysis of theintrusion prevention system (IPS)events
  • Provideforensic analysis of security violations
  • Conduct periodic self-assessment and gap analysis related to information security controls and manage the remediation to correct the gaps
  • Verify network, wireless and firewall security systemsby conducting reviews and policy assessments
  • Support and maintain information security related technologies and architectures, such as, but not limited to, IDS (intrusion detection systems), VPNs (virtual private networks), data loss prevention tools, VLANs, firewall architectures, proxy servers, internet access policy servers, authentication systems, and content screening servers
  • Ensure compliance to regulations, business requirements and City of Hope policies, standards, and procedures
  • Design, document, and support network security design changes including wireless network
  • Document and execute integration processes and standards
  • Document and report performance measurements for information security related products in service
  • Conduct system security and vulnerability analyses and risk assessments
  • Perform special projects as assigned by the CISO

EDUCATION / CERTIFICATIONS:

  • Bachelor's Degree (or 2-year degree with work experience and a Bachelor's degree in progress)
  • Master's Degree (Preferred)
  • CISSP Certified Information System Security Professional (or within 12 months of hire)
  • GCIH Certified Incident Handler (or within 12 months of hire)
  • GSEC GIAC's Security Essentials Certification (or within 6 months of hire)
  • CEH Certified Ethical Hacker (or within 12 months of hire)

WHY CHOOSE CITY OF HOPE?

  • One of only 45 comprehensive cancer centers, the highest designation bestowed by the National Cancer Institute
  • Ranked as one of America's Best Hospitals in cancer by US News & World Report
  • We value workplace diversity and are committed to the training and development of our employees
  • We offer a comprehensive benefit and total rewards package

City of Hope strongly supports and values the uniqueness of all individuals and promotes a work environment where diversity is embraced. City of Hope is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with disability. LI-DA | CB-DA


Meet Some of City of Hope's Employees

Libby F.

Sr Prospect Research Analyst

Working within the Foundation and Relations Department, Libby prepares and provides frontline fundraisers with prospective donor profiles—financing City of Hope’s outstanding patient care and clinical research.

Sharee D.

Organization Development Training & Data Analyst

Sharee assesses data and devises the most effective means of achieving City of Hope’s virtuous health care goals. She explores all options available to assure the very best possible outcomes for patients in need.


Back to top