Back to Search New Search

Information Security Spec

Methodist Health System Omaha, NE

Job Description

  • Purpose of Job
    • The Information Security Specialist functions as a member of the Information Security SOC and Incident Response Team, performing on-going monitoring of the environment and responding to events identified through IT tickets, security information and event management (events) and/or other security technology consoles, in addition to assisting other IT groups with information security related inquiries, tasks and support.
  • Job Requirements
    • Education
      • High School Diploma or General Educational Development (G.E.D) required
      • Associate's Degree in Computer Science, Business Information Systems, Information Technology, Information Security, or a related field is preferred.

    • Experience
      • Minimum of 2-3 years information security experience in a combination of information security, risk management and IT roles required.
      • Previous experience in areas such as, Security Operations Center, Network Operations Center, System Administrator, Platform/Tool Support Engineer, IT Helpdesk support preferred.
      • Prior experience of Active Directory, distributing Group Policy and building Organizational Units to manage network security preferred.
      • LogRhythm platform user or administrator previous experience is highly desirable.

    • License/Certifications
      • CISSP (Certified Information Systems Security Professional) or ability to attain certification within 2 years required.
      • Industry certification from vendors: GIAC, EC-Council, Cisco, Juniper, CompTIA, ITIL, Unix, Microsoft, Oracle, etc. preferred.

    • Skills/Knowledge/Abilities
      • Knowledgeable in the use of security information and event management (SIEM) platforms.
      • Knowledge of SIEM administration and customization such as report and alert creation.
      • Knowledgeable in information security incident handling.
      • Ability to provide training for the Information Security SOC and Incident Response team and non-information Security personnel with authorized access to the SIEM.
      • Superior analytical abilities; both technical and functional.
      • Ability to deal with complex functional specifications and determine how to best implement them technically.
      • Strong verbal and written communications skills and the ability to work with a wide variety of individuals.
      • Ability to work effectively in a collegiate, consensus driven organization environment.
      • Ability to condense and interpret complex issues.
      • Ability to prioritize and process multiple complex projects; deadlines, and processes with attention to detail and accuracy.
      • Knowledge of designing and configuring analog and digital CCTV systems or peripherals.
      • Ability to work with third-party integrators during installation and configuration of new CCTV cameras and peripherals.
      • Ability to maintain and upgrade existing analog and digital CCTV systems as needed.
      • Ability to establish working relationships with vendors and contractors pertaining to CCTV systems.
      • Ability to troubleshoot cameras, DVRs, NVRs, computers, peripherals, and other hardware.
      • Ability to provide technical support to end users covering all software and hardware related issues.
  • Physical Requirements
    • Weight Demands
      • Light Work - Exerting up to 20 pounds of force.

    • Physical Activity
      • Not neccessary for the position (0%):
        • Climbing
        • Crawling
        • Kneeling
      • Occasionally Performed (1%-33%):
        • Balancing
        • Carrying
        • Crouching
        • Distinguish colors
        • Grasping
        • Lifting
        • Pulling/Pushing
        • Speaking/talking
        • Standing
        • Stooping/bending
        • Twisting
        • Walking
      • Frequently Performed (34%-66%):
        • Fingering/Touching
        • Keyboarding/typing
        • Reaching
        • Repetitive Motions
        • Sitting
      • Constantly Performed (67%-100%):
        • Hearing
        • Seeing/Visual

    • Job Hazards
      • Not Related:
        • Chemical agents (Toxic, Corrosive, Flammable, Latex)
        • Biological agents (primary air born and blood born viruses) (Jobs with Patient contact) (BBF)
        • Physical hazards (noise, temperature, lighting, wet floors, outdoors, sharps) (more than ordinary office environment)
        • Equipment/Machinery/Tools
        • Explosives (pressurized gas)
        • Electrical Shock/Static
        • Radiation Alpha, Beta and Gamma (particles such as X-ray, Cat Scan, Gamma Knife, etc)
        • Radiation Non-Ionizing (Ultraviolet, visible light, infrared and microwaves that causes injuries to tissue or thermal or photochemical means)
        • Mechanical moving parts/vibrations
  • Essential Job Functions
    • Essential Functions I

      • Ensure the up-time, health and efficiency of the production security technologies.
        • Performs vulnerability network scanning, analyzes results, and assigns remediation to the appropriate resource(s).
        • Manages and monitors intrusion detection systems, creates incidents for anomalous activity, performs independent analysis of incidents, reviews performance metrics; produces periodic management reports.
        • Share on-call responsibilities, night and weekend project, and support work as required.
        • Perform daily tasks including contributing to investigation of high alerts, determining the source of the threats and determining the extent to which an asset has been compromised through 'eyes on glass' real-time monitoring and analysis of security events from multiple sources including but not limited to events from SIEM tools, network and host based IDS, firewall logs, system logs (Unix and Windows), mainframes, midrange, applications and databases.
        • Performs system and network analysis of intrusions to the network infrastructure, applications, operating systems, firewalls, proxy devices, malware detection and data encryption and other security measures.
        • Assist with maintenance and improving internal tools for network and server security monitoring and maintenance.

      • Identifies methods, solutions, and provides project assistance in order to provide a high level of security.
        • Performs in-depth network security analysis including preliminary incident response, event analysis, threat intelligence and log reviews.
        • Investigate and trouble shoot system and user issues related to information security technologies.
        • Assist with the development, implementation, and execution of standard procedures for the administration, content management, change management, version/patch management, and lifecycle management of the SIEM platform and other technologies maintained by the information security team.

      • Monitor security technology performance in order to determine whether adjustments need to be made, and to determine where changes will need to be made in the future.
        • Pull metrics, information, and other required data necessary to prepare operational reports, governance reports that will be present to the business stakeholders, Information Security & Risk Steering Committee (ISRC) and appropriate business representatives.
        • Performing vulnerability scanning, complete incident tickets, and support IT groups' information security requests.
        • Positions reports directly to the Information Security Manager.

      • Assist in build-out of new information security infrastructure for new locations.

      • Install, upgrade, and patch OS and application software for Information Security technologies.
        • Assist with information technology patching.

      • Maintain professional and technical knowledge by attending educational workshops; reviewing professional publications; establishing personal networks; benchmarking state-of-the-art practices; participating in professional societies.

      • Practices and promote teamwork at all times.

      • Maintains ability to travel to all locations as well as the ability to travel overnight, as needed for meetings, projects, seminars, etc. when necessary.

    • Essential Functions II

      • Participates in mandatory in-services and/or CE programs as mandated by policies and procedures/external agencies and as directed by management.

      • Follows and understands the mission, vision, core values, Employee Standards of Behavior and company policies/procedures.

      • Other duties as assigned.

Job Details

Date Posted December 3, 2018
Date Closes February 1, 2019
Requisition 11663
Located In Omaha, NE
Work At NE Methodist Health System Inc
Department IT Security
Shift Daytime
Hours 8am - 5pm hours per week
SOC Category 00-0000.00