Information Security Spec
Methodist Health System Omaha, NE
Purpose of Job
The Information Security Specialist functions as a member of the Information Security SOC and Incident Response Team, performing on-going monitoring of the environment and responding to events identified through IT tickets, security information and event management (events) and/or other security technology consoles, in addition to assisting other IT groups with information security related inquiries, tasks and support.
Not neccessary for the position (0%):
Occasionally Performed (1%-33%):
Frequently Performed (34%-66%):
Constantly Performed (67%-100%):
Chemical agents (Toxic, Corrosive, Flammable, Latex)
Biological agents (primary air born and blood born viruses) (Jobs with Patient contact) (BBF)
Physical hazards (noise, temperature, lighting, wet floors, outdoors, sharps) (more than ordinary office environment)
Explosives (pressurized gas)
Radiation Alpha, Beta and Gamma (particles such as X-ray, Cat Scan, Gamma Knife, etc)
Radiation Non-Ionizing (Ultraviolet, visible light, infrared and microwaves that causes injuries to tissue or thermal or photochemical means)
Mechanical moving parts/vibrations
Essential Job Functions
Essential Functions I
Ensure the up-time, health and efficiency of the production security technologies.
Performs vulnerability network scanning, analyzes results, and assigns remediation to the appropriate resource(s).
Manages and monitors intrusion detection systems, creates incidents for anomalous activity, performs independent analysis of incidents, reviews performance metrics; produces periodic management reports.
Share on-call responsibilities, night and weekend project, and support work as required.
Perform daily tasks including contributing to investigation of high alerts, determining the source of the threats and determining the extent to which an asset has been compromised through 'eyes on glass' real-time monitoring and analysis of security events from multiple sources including but not limited to events from SIEM tools, network and host based IDS, firewall logs, system logs (Unix and Windows), mainframes, midrange, applications and databases.
Performs system and network analysis of intrusions to the network infrastructure, applications, operating systems, firewalls, proxy devices, malware detection and data encryption and other security measures.
Assist with maintenance and improving internal tools for network and server security monitoring and maintenance.
Identifies methods, solutions, and provides project assistance in order to provide a high level of security.
Performs in-depth network security analysis including preliminary incident response, event analysis, threat intelligence and log reviews.
Investigate and trouble shoot system and user issues related to information security technologies.
Assist with the development, implementation, and execution of standard procedures for the administration, content management, change management, version/patch management, and lifecycle management of the SIEM platform and other technologies maintained by the information security team.
Monitor security technology performance in order to determine whether adjustments need to be made, and to determine where changes will need to be made in the future.
Pull metrics, information, and other required data necessary to prepare operational reports, governance reports that will be present to the business stakeholders, Information Security & Risk Steering Committee (ISRC) and appropriate business representatives.
Performing vulnerability scanning, complete incident tickets, and support IT groups' information security requests.
Positions reports directly to the Information Security Manager.
Assist in build-out of new information security infrastructure for new locations.
Install, upgrade, and patch OS and application software for Information Security technologies.
Maintain professional and technical knowledge by attending educational workshops; reviewing professional publications; establishing personal networks; benchmarking state-of-the-art practices; participating in professional societies.
Practices and promote teamwork at all times.
Maintains ability to travel to all locations as well as the ability to travel overnight, as needed for meetings, projects, seminars, etc. when necessary.
Essential Functions II
Participates in mandatory in-services and/or CE programs as mandated by policies and procedures/external agencies and as directed by management.
Follows and understands the mission, vision, core values, Employee Standards of Behavior and company policies/procedures.
Other duties as assigned.
| Date Posted
December 3, 2018
| Date Closes
February 1, 2019
| Located In
| Work At
NE Methodist Health System Inc
8am - 5pm hours per week
| SOC Category